BSides Orlando Pre-Conference Workshops
All workshops are held on Friday, Sept 26th and require pre-registration and a separate registration from the conference. Register for pre-conference Friday workshops here
-
Defeating Modern Malware with Volatility 3
Malware deployed by APT and ransomware groups operates in a memory only manner, requiring the use of memory forensics for detection and response. In this workshop, students gain hands on experience using Volatility 3 to automatically detect and triage sophisticated malware techniques from the wild.
112 - Track 3Fri 9:00 am - 1:00 pm -
Threat Modelling Starter Training
This threat modelling training is geared towards beginner to intermediate audiences with software engineering and security engineer/pentester backgrounds who have never done any sort of threat modelling work but are trying to get into it. Practically, anyone can join this class even if they do not have those backgrounds, but at least some basic idea of how programs work on a code level, basic cybersecurity issues and threats and anybody interested in learning them.
The main goal of this training is to equip participants with understanding the importance of threat modelling in dealing and understanding cyber threats to their applications and networks. The trainer's goal is to prevent more software security bugs from inception by teaching students whether they build more secure software or find underlying security flaws and bugs and minimizing the risks and impact of the engineered software. Participants will be immersed with STRIDE and DREAD methodologies for threat modelling and they will create their own threat models during the training.
At the end of the training, students shall expect themselves to be able to do a quick threat model of any function/method that they wish to implement in their software, realize the threats that they could introduce or deal with, and finally be able to write a full and complete threat model on their own from start to finish including recommendations, threat scenarios and related risk ratings.113 - Career VillageFri 9:00 am - 1:00 pm -
Operationalizing MITRE ATTACK: Hands-On ML for Event Enrichment & Correlation
Turn noisy logs, events, and alerts into MITRE-mapped attack stories. In this hands-on workshop, you’ll use open-source ML to enrich & map data to MITRE ATT&CK Techniques, as well as form contextual groupings & chain full killchains or MITRE ATT&CK Flows, no black-box AI, just practical workflows to reveal attack stories, hiding in the noise of false positives and lone incidents.
130 - CTFFri 9:00 am - 1:00 pm -
Digital Portfolio Framework to Navigate the Tech Career Maze
in the rapidly evolving realm of technology, professionals often find themselves at a crossroads, navigating through a complex maze of opportunities and challenges. This talk introduces the 'Digital Portfolio Framework', a strategic guide designed to empower individuals in their technology careers. This framework is not only a tool for job hunting and personal branding but also a lens through which the vast landscape of open source software communities can be explored and utilized.
131 - Lock Pick VillageFri 9:00 am - 1:00 pm -
Building Assured Software Supply Chains: Live Threat Modelling for Financial Services
This interactive, scenario-led workshop helps organisations design and secure their software supply chain (SSC) through collaborative threat modelling. Aligned with industry standard SSC security initiatives, the session guides participants in identifying, evaluating, and mitigating risks across the entire SDLC, from source control and dependency management to build pipelines, CI/CD workflows, deployment, and runtime environments.
With a particular focus on Dependency Management, we’ll collaboratively define an end-to-end software supply chain for a representative financial use case, identifying key risks at every stage. As we model the system we’ll map potential attack paths, assess adversarial threats and motivations, and apply security controls from well-established frameworks (such as the CNCF Software Supply Chain Whitepaper and SLSA) to mitigate risks like dependency poisoning, build compromise, artefact tampering, and more.
By the end of the session, attendees will leave with a reusable SSC threat modeling framework tailored to financial services, along with practical, threat-driven techniques for designing and operating assured software supply chains that are secure by design, auditable, and resilient, in alignment with industry best practices.112 - Track 3Fri 2:00 pm - 6:00 pm -
From Datasheet to .data Section
This fast-paced workshop teaches you how to red team microcontroller code protection features. You will analyze a real-world consumer device microcontroller, review the datasheet, discover a flawed configuration, write custom tooling to recover the protected internal flash, and load it into a disassembler to reverse engineer.
113 - Career VillageFri 2:00 pm - 6:00 pm -
Introduction to IoT Security: Hands-On CTF Style Lab
Step into the world of ethical hacking and uncover the unseen vulnerabilities in everyday smart devices. This immersive, beginner-friendly lab introduces participants to IoT (Internet of Things) security through an exciting Capture The Flag (CTF) format. In just a few hours, attendees will explore hidden backdoors, decode digital signals, and experiment with real-world tools used by professional security researchers.
No experience is necessary—just bring your curiosity. Whether you're a student, a tech enthusiast, or someone interested in cybersecurity careers, this lab makes learning accessible, engaging, and impactful.130 - CTFFri 2:00 pm - 6:00 pm
Looking for BSides Orlando conference schedule for Saturday? Get more information here