Insomni'Hack

Talks 2025

Thursday, March 13th

Time	CAMPUS (AUDITORIUM B)	CLOUD (AUDITORIUM C)	GARDEN (ROOM 1ABC)	SIDE EVENTS (ROOM 2C)
09:00 - 09:50	(KEYNOTE) Advanced Android Archaeology: Baffled By Bloated Complexityby Mathias Payer		CLOSED
10:00 - 10:30	COFFEE
10:30 - 11:20	Beyond LSASS: Cutting-Edge Techniques for Undetectable Threat Emulationby Priyank Nigam	Captain MassJacker Sparrow: Uncovering the Malware's Buried Treasureby Ari Novick	CLOSED	EU-CH Cybersecurity Regulatory Landscape (FR)by Soheila Firouz Kouhi
11:30 - 12:20	You can't touch this: Secure Enclaves for Offensive Operationsby Matteo Malvica & Cedric Van Bockhaven	Ghost in the RaaS: Ransomware-as-a-Service from the perspective of an affiliateby Carlos Ishimaru	What if I told you that Security is here to help? (a.k.a. The 7 habits of Highly Effective Security Leaders)by Sebastian Avarvarei	(continued)
12:30 - 13:30	LUNCH
13:30 - 14:20	Demystifying Automated City Shuttles: Blessing or Cybersecurity Nightmare?by Anastasija Collen	Code to Cloud: Exploiting Modern Web Applications to Breach Cloud Environmentsby Christophe Tafani-Dereeper	(Panel) Next-Gen Hiring Meets AI, Cybersecurity, and Inclusionby Nathalie Brodard & Line Pillet & Lennig Pedron & Nagib Aouini
14:30 - 15:20	Pioneering zero days at Pwn2Own Automotive 2024by Alex Plaskett & McCaulay Hudson	Double Agent: Exploiting Pass-through Authentication Credential Validation in Azure ADby Ilan Kalendarov & Elad Beber	(Panel) Cyber Innovationby Laurent Balmelli & Hugo Flayac & Aziz Belkhiria & Olivier Crochat & Lennig Pedron	EU-CH Cybersecurity Regulatory Landscape (EN)by Soheila Firouz Kouhi
15:30 - 16:00	COFFEE
16:00 - 16:50	Access Granted: Uncovering RFID Readers Vulnerabilities & Bypassing Physical Access Controlsby Julia Zduńczyk	EL3XIR: Fuzzing COTS Secure Monitorsby Marcel Busch & Christian Lindenmeier	Stop making nonsense – Cutting through compliance complexityby Mat Caplan	16:30 Présentation (avant-première) Offre Micro-SOCby Orange Cyberdefense Switzerland
17:00 - 17:50	Unlocking the Cybersecurity Secrets of Modern Vehiclesby YUQIAO NING	Hack, Patch, Repeat: Insider Tales from Android’s Bug Bountyby Maria Uretsky & Olivier Tuchon	CLOSED

Friday, March 14th

Time	CAMPUS (AUDITORIUM B)	CLOUD (AUDITORIUM C)	GARDEN (ROOM 1ABC)	SIDE EVENTS (ROOM 2C)
09:00 - 09:50	Introduction by Raphaël Conz (SPEI, Canton de Vaud) (KEYNOTE) The AI Paradox: Safety vs Performance by Rachid Guerraoui		CLOSED
10:00 - 10:30	COFFEE
10:30 - 11:20	The Rise of AI-Driven Malware: Threats, Myths, and Defensesby Candid Wuest	The Spy Who Flashed Me: Exploring and defeating physical access control systemsby Michael Rodger	20 years of cybersecurity automation: has AI restored balance to the force?by Raphaël Marichez (Palo Alto Networks)
11:30 - 12:20	Good Models Gone Bad: Visualizing Data Poisoningby Maria Khodak	Cache Me If You Can: Smuggling Payloads via Browser Caching Systemsby Aurélien Chalot	CLOSED	Présentation (avant-première) Offre Micro-SOCby Orange Cyberdefense Switzerland
12:30 - 13:30	LUNCH
13:30 - 14:20	“A Slice of” Modern Program Analysisby Kyle Martin	The Art of Malware Smuggling (Unmasking SVG-Based Attack Techniques)by Dhiraj Mishra	CLOSED
14:30 - 15:20	Don't let Jia Tan have all the fun: hacking into Fedora and OpenSUSEby Thomas Chauchefoin & Maxime Rinaudo	Malware analysis with R2AIby Axelle Apvrille	CLOSED
15:30 - 16:00	COFFEE
16:00 - 16:50	Your Identity is Mine: Techniques and Insights from OS Identity Providers Researchby Maor Abutbul	Data Sets That Can Make A Difference: Improving Your Hunting and Detection in Entra ID and O365by John Stoner	CLOSED
17:00 - 17:50	Go Parser Footgunsby Vasco Franco	Beyond the Surface: Exploring Attacker Persistence Strategies in Kubernetesby Rory McCune	CLOSED
18:00 - 05:00	CTF (AUDITORIUM A)

Organized by

Sponsors

Technology partners

Partner events