PraSec is a private IT security event based in Prague. The event is brought to you by:


  JAN  

 MAREK 

  DAN  

 PETR 

Invite-only

It is not possible to get the tickets unless you have received an invitation. The decision to keep this event invite-only was made for following reasons:

  • Keep the number of attendees limited.
  • Create a conflict-free experience by inviting only cool people.
  • Create family-like atmosphere.

We express our gratitude to following sponsors
for supporting PraSec 10:







Conference topics

We do not have a strict topic (like Red team or WebSec only), we will rather aim for the best talks which were submitted to us. It means that you can look forward to expand your knowledge across multiple areas of IT security.

QUESTIONS

I'm invited, how to proceed?
Part of the invitation email is a link to registration form, use that to secure your spot.

I would like to bring "+1"...
All invited comrades have an opportunity to bring "+1", you can use the same link where you registered to register your "+1".

I'm a speaker, do you cover my expenses?
Yes, we cover your flight and 1 night in a hotel.

Where/when do I learn about location and date?
Exact time and place of the event will be sent in the email, that you will recieve 1-2 weeks before the event. In case, that you need to book the hotel, the venue will take place in the Prague center close to yellow metro line.

Did you shamelessly steal (were you inspired) by WarCon?
Most definitely!

Basic rules to follow

Follow Chatham rules.
No photos of people and slides (unless permission specifically given).
No sexual harrasment of any kind.
Ethical hacking topics only.
No physical or mental abuse
If in doubt, feel free to contact organizers.

Agenda

Friday
9:45 PraSec Crew Intro
10:00 Frederik Braun Beyond CORS - When and How to Use COEP, COOP and CORP for Cross-Origin Isolation
11:00 Sébastien Dudek Car Hacking: With and Without Wires for Tires
14:00 Jakub Urbanec, Radoslav Bodó The State of the IT Security Today 07.00 Sharp (but last year)
15:00 Michał Kowalczyk *Talk's name not disclosed*
16:00 Jan Rubín, Jakub Souček A Peek Under the Surface of Modern AVs
17:00 *Speaker's name not disclosed* *Talk's name not disclosed*
Saturday
10:00 Martin Haller Microsoft Entra ID: Gateway to Global Supply Chain Attacks?
11:00 Mario Heiderich The Dark Side of HTML - Mutation XSS in 2024, Things are Getting Worse
14:00 Reversity Hijacking the flow: Exploring Dynamic Library Injection
11:00 Timo Longin SMTP Smuggling Revisited - Still Smuggling Emails Worldwide?!
16:00 @abh4t @DartheIncarnate The (False) Sense of Checklist Security
17:00 Davide Meacci Serial Thrills: Exploiting Deserialization Bugs Like a Ninja