Tickets are now on sale:

This year at BSidesCbr, both the Main Track and the Off-Main Track will run across all three days. Main Track brings the big research, big ideas, and big names. Off-Main features beginner-friendly talks, deep dives, and unexpected gems—streamed to four theatrettes.

"Protecting the Forest, Starting at the Roots".James Spencer (CrowdStrike) shows how to harden Active Directory using modern native defences - fighting overprivilege, protocol abuse & persistence.

Calling all adventurers!.To match this year’s D&D theme, we’ve got limited edition BSides Canberra dice at the merch desk, perfect for your next campaign or CTF check. Available at cost, while stocks last!

"Atomic Stealer's Dyld Injection Tactics".Tonmoy Jitu breaks down how the Atomic Stealer family abuses DYLD_INSERT_LIBRARIES for stealthy persistence on macOS - and how to detect it. Original research. Step-by-step demos. Real-world defence tips.

"Time Traveling Exploitation".Riley Kidd shows how to achieve RCE in a game protocol from over 10,000 days ago - first using 1997 tools, then with modern techniques. A journey through the evolution of exploitation.

"Abusing Native Cloud Services for C2".Stephen Bradshaw dives into how attackers can hide C2 traffic using legit services from AWS, GCP, and Azure. Cloud-native, but make it malicious. #BSidesCbr2025.

"Picking Flowers and Maybe Chaos".Kendo (Google) unpacks a South-East Asian botnet used for espionage, built on SOHO routers, VPS relays, and layered obfuscation. State-aligned, long-term, and highly organised.

Every BSidesCbr 2025 ticket comes with a complimentary t-shirt - and this year’s design is 🔥.We’ll let the shirt speak for itself 👇.#BSidesCbr2025

☣️ BSidesCbr2025 Talk ☣️. "let’s make malware but it might get caught so the malware gets worse" presented by @mangopdf .

"Is this binary Naughty or Nice?" with Kristin Smith. Find out how Google uses ML, Santa (the macOS tool!), and host logs to detect malware persistence at scale - no reindeer required.

Talk announcement for BSidesCbr2025. "GET into the mainframe" - with Annie Nie. Forget Hollywood tropes. Mainframes still run the world - and yes, they can be hacked. Join us for a live unauth RCE into a mainframe (no dramatic keyboard mashing required).

"Reverse Engineering Sherlock Holmes Style". Join Katie Deakin-Sharpe (@CyberGovAu) as she tackles a mysterious implant with no visible API names- just clues, tools, and deduction.

Back by popular demand!. Kubernetes CTF returns to BSides Canberra 2025. Explore supply chain attacks, misconfigs & full cluster compromise - all in your own sandboxed K8s lab. Bring a laptop. Leave with flags.

Where Did I Put My Keys?.Joshua Padman from Red Hat shares how their team scaled data leak prevention across GitHub and beyond — compressing incident response time and releasing tools to help others do the same. Don’t miss it at BSides Canberra!.

Talk Announcement: Sleepless Strings – Template Injection in Insomnia. At BSidesCbr 2025 @marcioalm & @justinsteven will share their discovery of CVE-2025-1087 – a critical template injection in the Insomnia API client leading to remote code execution.

Dive into hardware hacking at BSides Canberra 2025!. Join the Twin-Core Hardware CTF: solder, hack, and break open-source smart-home & PLC boards over 2 days. No experience needed, just curiosity. Led by Season Cherian & Vivek N J in the Hardware Village.

4-hour training at BSides Canberra 2025 - included with your ticket!. Development of an Implant in C#: Build a custom C2 framework in Python & C#, then explore social engineering delivery. Taught by Jayden Caelli (SilentGrid).

New to malware analysis? Join Unravelling LummaStealer - a 2.5hr beginner workshop at BSides Canberra 2025. Investigate infections, analyse C2 traffic, and uncover threat actor secrets. With Sharath Shamachar (Mastercard). CTF mode optional!.

4-hour training at BSides Canberra 2025!.Active Directory Security: Attack, Defend & Investigate. CrowdStrike DFIR Director Anurag Khanna dives into AD internals, Kerberos attacks, and defence techniques. No extra cost — just BYO laptop.

“What’s the worst that could happen?”.In 2020, @justinsteven registered a legacy S3 bucket once owned by the Linux Vendor Firmware Service. He ended up between 100,000 Linux machines and their updates. Catch the full story at BSidesCbr2025