We’re thrilled to present a powerhouse lineup of cybersecurity experts, thought leaders, and industry pioneers at Offensive X! While we can’t reveal all the speakers just yet, rest assured that we’re diligently curating an exceptional roster that will redefine the boundaries of IT security.
Dr. Yiannis Pavlosoglou
@KibernaSecurity
Vice Governor of the National Cybersecurity Authority of Greece
Renaud Feil
@Synacktiv
CEO | Co-founder of Synacktiv
Speakers
Will Schroeder
@Harmj0y
Will Schroeder is a member of the R&D team at SpecterOps, where he helps research and develop new offensive techniques and capabilities. He has spoken at a number of industry conferences including Black Hat and DEF CON on topics spanning AV-evasion, Active Directory, post-exploitation, red team tradecraft, BloodHound, malicious access control, malware, and offensive PowerShell. He is also the cofounder of numerous open source projects including Empire, BloodHound, GhostPack, and more.
Lee Chagolla-Christensen
@tifkin_
Lee Chagolla-Christensen is a member of the R&D team at SpecterOps, where he helps research and develop new offensive techniques and capabilities. He has an extensive background in offensive security, particularly enjoying research of Windows, Active Directory, and the components commonly found inside them. His research has resulted in several CVEs and new offensive tradecraft used throughout the industry. In addition, Lee has contributed to many open-source tools including GhostPack, BloodHound, SpoolSample, UnmanagedPowerShell, and KeeThief.
Rio Sherri
@0x09AL
Rio Sherri is an offensive security professional with over 10 years of experience in the field. He is currently a member of the NetSPI Red Team, where he utilizes his expertise in adversary simulation to improve the security of organizations. He has made significant contributions to the community by developing open-source offensive security tools that are used by many organizations to simulate attacks and strengthen their security posture. Another area of interest for Rio is exploitation and reverse engineering, where he has discovered several vulnerabilities in world leading vendors like Google, Microsoft, Spotify, Symantec, Imperva and many more. In addition to his technical pursuits, he actively contributes to the security community by organizing a range of events, including workshops, Capture the Flag (CTF) competitions, and a local BSides conference.
Charles Hamilton
@MrUn1k0d3r
Charles Hamilton is a Red Teamer with over twelve years of experience delivering offensive testing services for various clients. In recent years, Charles has specialized in covert Red Team operations targeting complex and highly secured environments. These operations have enabled him to refine his skills in stealthily navigating client networks without detection. Since 2014, he has been the founder and operator of the RingZer0 Team website, a platform dedicated to teaching hacking fundamentals. Charles is also a prolific toolsmith and trainer who has delivered this training more than 20 times, both online and onsite. He is a speaker in the InfoSec industry, known under the handle Mr.Un1k0d3r.
Amat Cama
@amatcama
Amat Cama is an independent security researcher specializing in reverse engineering, vulnerability research, and exploit development. With a deep interest in low-level software, he gained recognition through his success in hacking competitions like Pwn2Own. He has worked at security research companies, contributing to various aspects of the vulnerability research process.
Dirk-Jan Mollema
@_dirkjan
Dirk-jan Mollema is a security researcher focusing on Active Directory and Microsoft Entra (Azure AD) security. In 2022 he started his own company, Outsider Security, where he performs penetration tests and reviews of enterprise networks and cloud environments. He blogs at dirkjanm.io, where he publishes his research, and shares updates on the many open source security tools he has written over the years. He presented previously at TROOPERS, DEF CON, Black Hat and BlueHat, is a current Microsoft MVP and has been awarded as one of Microsoft’s Most Valuable Researchers multiple times.
Oddvar Moe
@oddvarmoe
Oddvar has over 24 years of experience in the IT industry, specializing in Windows Security. As a seasoned Red Teamer working for TrustedSec, he performs engagements with Fortune 100 companies on a regular basis and through that gaining insights into some of the world's most secure environments. Oddvar is a Microsoft Most Valuable Professional (MVP) in Security for nine consecutive years, recognized for his expertise and contributions to the security community. He has spoken at leading conferences, including DerbyCon, Paranoia, HackCon, and Nordic Infrastructure Conference, and is known for his work on LOLBins/LOLBAS, the Ultimate AppLocker Bypasslist and discovery of Pre2k accounts in Active Directory. Additionally, he has discovered multiple Windows OS vulnerabilities (CVEs) and persistence techniques adopted by APT groups.
Matthijs Gielen
Matthijs Gielen is a cybersecurity professional with over 10 years of experience. He initially worked in cyber forensics before moving on to red teaming. His expertise lies in red team automation. In his personal life, Matthijs enjoys reading science fiction books, (board) gaming and snowboarding.
Siddhant Prakash
@siddhubadhe
Siddhant Prakash is a Security Researcher with core interest in Vulnerability Research, Penetration Testing, and Malware Analysis - 9 years total experience
Leonidas Tsaousis
@laripping
Leo is a Senior Security Consultant at WithSecure where he leads the Attack Path Mapping service. His current role involves planning and conducting offensive security assessments, while building the team globally and pushing the boundaries of threat simulation. Every now and then, his passion for technical research leads to the discovery of vulnerabilities in products ranging from mobile applications to enterprise systems, with CVEs assigned by IBM, Cisco and Xiaomi. When he’s not helping SOC teams or leading purple teams for WithSecure’s clients, you will find Leo presenting in security conferences around the world including DEF CON, SO-CON, DEATHcon, ROOTCON and BSides.
Ruben Boonen
@FuzzySec
Ruben Boonen has over a decade of industry experience in the United Kingdom and the USA. He has a broad background in Security Consulting, Research & Development and Defence. He previously achieved a number of industry recognized certifications like CREST CCT and OSEE. Additionally, he has presented or delivered training at many international conferences, including, Black Hat, DefCon, BlueHat IL, HackInParis, and DerbyCon. Currently Ruben works on the Adversary Services team at IBM as CNE Capability Development Lead. He is mostly focused on post-exploitation capability development, vulnerability research and all things Windows.
Tamil Mathi Tamil Thurai
@Hash_Byte
With over 7 years of hands-on experience, I specialize in securing diverse ecosystems, including IoT, Web, Cloud and Mobile. A former Synack Red Team member and competitive CTF participant, I thrive in the world of security. My expertise spans red teaming, and secure architecture design. Currently, I’m focused on revolutionizing medical device security by designing cutting-edge, robust secure solutions to safeguard critical healthcare technologies
Linfeng Xiao
@0xp0kerface
Core Security Researcher at Xiaomi, has led IoT security and smart vehicle cybersecurity research since 2021. Recognized by Meta, MediaTek, Baidu and Huawei for vulnerability discoveries, he was inducted into the Meta Security Hall of Fame (2024) and GeekPwn Hall of Fame. His breakthroughs in device exploitation have been presented at CanSecWest and HITBSecConf.A FIA-certified racing driver, his dual expertise enables unique capabilities in addressing cross-disciplinary cybersecurity challenges, particularly in connected vehicles and IoT ecosystems.
Qican Ma
Qican Ma is a Security Researcher at Xiaomi ShadowBlade Security Lab, focusing on IoT, Automotive and AI security. He has contributed to the discovery of multiple vulnerabilities in these domains and has shared his research at international security conferences including CanSecWest. As a competitor in GeekPwn hacking competitions, he has demonstrated practical exploitation techniques across various platforms. His work combines technical expertise in vulnerability discovery with hands-on experience in security auditing, particularly in connected device ecosystems.
Dimitris Glynos
@dfunc
Dimitris Glynos is the Director of intWave, a company that specializes in Cybersecurity Consulting for technology products. Dimitris comes with 15+ years of experience in product security assessments of software and embedded systems, consulting customers worldwide - from startups to Fortune 500s. His research interests include systems security, application security and AI. Dimitris holds a PhD in Computer Science and in spring semesters teaches the Software Security MSc module at the University of Piraeus.
James Henderson
James is a security consultant based in the UK, who enjoys tinkering with digital systems, accidentally breaking them, but learning something new in the process. He currently leads the Purple Team service at WithSecure, where he designs and leads collaborative exercises with SOC teams to improve organisations' detection capabilities. James loves deep technical research, and has had the opportunity to present his findings at conferences including Disobey, SnoopCon and SO-CON.
Submit a Talk