• Abian Morina

    Abian Morina

    Threat Researcher

    Abian Morina is a Threat Researcher on Permiso Security’s P0 Labs team. He started his journey with computers at a young age, beginning by hacking video games. At that time, he was unaware that this interest could lead to a specialized field of study in security. During middle school, Abian’s curiosity led him to hack cameras and speakers for fun, which eventually introduced him to the world of cybersecurity.

    He has completed a Bachelor's degree in Computer Science and Engineering and is now pursuing a Master's degree in Computer Science and Engineering.

  • Adin Drabkin

    Adin Drabkin

    Red Team Consultant - Google Cloud

    Adin Drabkin is a Red Team Consultant at Mandiant (Google Cloud) with a focus in Social Engineering, External Attack Surface, Windows Active Directory, and AWS. Adin's educational background includes cybersecurity Bachelor's and Master's degrees from RIT and NYU, along with industry certifications such as OSCP+ and CRTO.

  • Alba Thaqi

    Alba Thaqi

    Master's Student at FIEK - Fakulteti i Inxhinierisë Elektrike dhe Kompjuterike

    Alba Thaqi is a Master's student in Computer and Software Engineering at the University of Prishtina, with a strong background in cybersecurity and networking. She actively contributes to various projects at the intersection of cybersecurity and artificial intelligence. Recently, she published a conference paper in IEEE Access on optimizing the CTF challenge-solving process using OpenAI's LLM.

  • Andi Ahmeti

    Andi Ahmeti

    Threat Researcher at Permiso Security

    Andi Ahmeti is a Threat Researcher on Permiso Security's P0 Labs team with 2 years of experience in offensive security and threat hunting. He now is focused on hunting through product telemetry to identify undetected and underrepresented evil and building tools to enrich extensive collection of cloud focused data.

    He is the author of an open-source threat detection tool called CloudGrappler and co-author of the Cloud Console Cartographer defensive visibility framework. He has presented at numerous conferences around the world including Black Hat Asia, FIRSTCON24, x33fcon, BSides Prishtina.

    Mr. Ahmeti obtained a Bachelor of Science in Computer Engineering from the University of Prishtina Faculty of Computer and Electrical Engineering (2023).

  • Armend Binaku

    Armend Binaku

    offensive security specialist KODE Labs

    Offensive Security Specialist with a strong focus on application security, penetration testing, and vulnerability management. With extensive experience in web, mobile, and API security, i have led security assessments across various industries, helping organizations strengthen their defenses against sophisticated cyber threats.

    Expertise includes SAST, DAST, IAST, Red Teaming, and compliance-driven security assessments (FedRAMP, SOC 2 Type 2). Successfully identified and exploited critical vulnerabilities, including logic flaws, authentication bypasses, and race conditions, leveraging deep understanding of concurrent execution risks in web applications.

    Beyond technical assessments, i have played a key role in integrating security tools into the Software Development Life Cycle (SDLC), working closely with developers to remediate vulnerabilities effectively. hands-on experience with CrowdStrike Falcon, Wazuh, IDPS, and Web Application Firewalls (WAFs) further strengthens my ability to detect and mitigate complex threats.

  • Aytek Aytemur

    Aytek Aytemur

    Blue Team Engineer at Picus Security

    Aytek Aytemur has been actively engaged in cybersecurity since 2020, beginning his journey as a freelance developer specializing in Sigma and Yara rules for the SOC Prime Threat Detection platform, where he contributed over 235 detection rules. His professional background encompasses areas such as detection engineering, threat research, and security R&D.

    Currently, Aytek is a Blue Team Engineer at Picus Security. He focuses on Continuous Threat Exposure Management (CTEM), strengthening cybersecurity defenses, and deploying cutting-edge endpoint security solutions. He also plays a critical role in automating processes and pioneering innovative threat-hunting methodologies.

    Beyond his technical roles, Aytek is deeply committed to studying emerging threats and devising effective mitigation strategies. He strives to advance the cybersecurity landscape through a combination of technical expertise, strategic insights, and a passion for creating safer digital environments.

  • Balazs Bucsay

    Balazs Bucsay

    CEO & Founder @ Mantra Information Security

    Balazs Bucsay is the founder & CEO of Mantra Information Security that offers a variety of consultancy services in the field of IT Security. With decades of offensive security experience, he is focusing his time mainly on research in various fields including red teaming, reverse engineering, embedded devices, firmware emulation and cloud. He gave multiple talks around the globe (Singapore, London, Melbourne, Honolulu) on different advanced topics and released several tools and papers about the latest techniques. He has multiple certifications (OSCE, OSCP, OSWP) related to penetration testing, exploit writing and other low-level topics and degrees in Mathematics and Computer Science. Balazs thinks that sharing knowledge is one of the most important things, so he always shares it with his peers. Because of his passion for technology, he starts the second shift right after work to do some research to find new vulnerabilities.

  • Chris Carlis

    Chris Carlis

    Red Team / Penetration Test / Offensive Security

    Chris Carlis is an unrepentant penetration tester with an extensive background in network, wireless and physical testing. Across his career, Chris has worked to expand the value offensive testing provided via open communication and goal driven engagements. Additionally, Chris has presented at a variety of conferences, including Thotcon, Hushcon, Hackfest, FS-ISAC, and various B-Side events. He is a perennial volunteer at the Thotcon conference in his native Chicago and helps to organize multiple Chicagoland “BurbSec” information security monthly gatherings.

  • Daniel Bohannon

    Daniel Bohannon

    Permiso Security, Principal Threat Researcher

    Daniel Bohannon is a Principal Threat Researcher on Permiso Security's P0 Labs team with over fifteen years of information security experience, including incident response consulting at MANDIANT, security research at FireEye and threat hunting at Microsoft. After a decade of focusing on endpoint security, he now leads a team of Albania- and Kosovo-based cloud and identity threat researchers focused on obfuscation, evasion and detection capabilities in various combinations of PaaS, IaaS, SaaS and IdP solutions.

    He is the author of the Invoke-Obfuscation, Invoke-CradleCrafter and Invoke-DOSfuscation open-source obfuscation frameworks and co-author of the Revoke-Obfuscation PowerShell obfuscation detection framework, the Cloud Console Cartographer defensive visibility framework, Invoke-SkyScalpel cloud policy obfuscation and detection framework and the MaLDAPtive LDAP obfuscation, deobfuscation and detection framework. He has presented at numerous conferences around the world including Black Hat USA, Black Hat Asia, SecTor & DEF CON.

    Mr. Bohannon received a Master of Science in Information Security from the Georgia Institute of Technology (2013) and a Bachelor of Science in Computer Science from The University of Georgia (2010).

  • Ela Dogjani

    Ela Dogjani

    Associate Threat Researcher at Permiso

    Ela Dogjani is an Associate Threat Researcher on Permiso Security’s P0 Labs team. Since the age of 14, Ela has been deeply involved in technology, participating in numerous IT innovation competitions, trainings and cyber security conferences in her home country of Albania. Her passion for cybersecurity and enthusiasm for tackling new security challenges have driven her career forward, making her a valuable asset to the Permiso team.

    Miss Dogjani is finishing her last semester to earn a Bachelor of Science in Software Engineering from the Canadian Institute of Technology.

  • Evan Pena

    Evan Pena

    Global Offensive Security Services Function Lead at Mandiant (Google Cloud)

    Evan Pena is the Global Offensive Security Services Function Lead at Mandiant (Google Cloud).

    Evan has years of experience in enterprise information technology administration, leading covert red team operations to evaluate incident response procedures, and assessing enterprise network defense capabilities from the perspective of an attacker. In addition, Evan participates in security diverse assessments of large government agencies and Fortune 500 companies. These networks consist of an online presence of hundreds of thousands of address spaces around the world. Evan developed and is the lead instructor for the “Creative Red Teaming” training course at BlackHat USA in 2017. Evan has also developed several open-source tools that have been released to the security community to enhance awareness in the community.

  • Fatih Erdogan

    Fatih Erdogan

    Senior Blue Team Engineer, Picus Security

    Fatih ERDOĞAN has over seven years of experience in the cybersecurity field, with a strong focus on defensive security and the development of cutting-edge cybersecurity solutions. Throughout his professional journey, he has played a pivotal role in incident response, threat research, and threat hunting teams, consistently contributing to the advancement of organizational security postures.

    Currently, Fatih works as a Senior Blue Team Engineer at Picus Security, where he specializes in Security R&D, detection engineering, threat hunting, and the implementation of advanced endpoint security technologies. His work is driven by a deep commitment to innovation and operational excellence.

    Beyond his professional endeavors, Fatih is deeply passionate about security research, particularly in the realm of macOS security. He often delves deeper into topics within this field and tries to share his findings on his blog.

    As an active member of the cybersecurity community, he has also delivered talks at prominent cybersecurity conferences, including The H@CK Summit, Hacktrick and GDG DevFest.

  • Nick Dunn

    Nick Dunn

    Security Consultant and Breaker of Things

    Coming from software development and architecture, I spent a few years as software developer, architect, team lead, working in secure software for the financial sector
    I moved into security consultancy, fisrt as an in-house penetration tester and code reviewer in online gambling, before moving into security consultancy and working on:
    Code review
    Penetration testing
    Threat modelling, architecture review
    Automating security testing with new tools, scripts, etc.

  • Rrezearta Thaqi

    Rrezearta Thaqi

    Teaching Assistant at the Faculty of Electrical and Computer Engineering, University of Prishtina

    Rrezearta Thaqi has a Bachelor and Master degree in Computer Engineering from the Faculty of Electrical and Computer Engineering at the University of Prishtina. Currently she is doing her PhD studies in the same faculty in the cybersecurity field.
    She began her professional journey as a Backend Developer to continue as a DevOps Engineer at Raiffeisen Bank Kosovo.
    Additionally, she joined the University of Prishtina as a Teaching Assistant at the Faculty of Electrical and Computer Engineering in October 2023. Her technical expertise spans a range of technologies, including AWS, Docker, Kubernetes and so on.
    Rrezearta's dedication to her field is further highlighted by her numerous certifications and trainings in cybersecurity and DevOps field. Recognized for her academic excellence, she has received multiple scholarships and awards, including the prestigious “Diploma of the Year” award at the Albanian ICT Awards and also The cyber security women GAME CHANGER award from Albanian Cyber Association in the CYBER ZERO conference.
    Rrezearta has authored significant papers in scientific journals, including topics on machine learning for cybersecurity and cloud-based cyber attack detection.

  • Tim Makram Ghatas

    Tim Makram Ghatas

    Senior Consultant @BishopFox

    Timothy Makram Ghatas is a Senior Security Analyst at Bishop Fox. His primary focus is adversary simulation and red teaming exercises.

  • Vinnie Vanhoecke

    Vinnie Vanhoecke

    Senior Security Consultant

    Vinnie Vanhoecke (OSCE, OSCP) is currently a freelance Senior Security Consultant, where he focuses on web application assessments (static and dynamic), external and internal network penetration testing, and cloud security assessments. He also has extensive experience in red teaming and mobile application assessments for Android.

    Vinnie holds a Bachelor of Computer Science with a Computer and Cybercrime Professional specialization from Howest in Bruges, Belgium.

Session and Speaker Management powered by Sessionize.com