appsec.fyi

Talks — A Practical Guide

A curated AppSec resource library covering XSS, SQLi, SSRF, IDOR, RCE, XXE, OSINT, and more.

Talks: A Practical Guide

Curated and synthesized by . Last updated 2026-06-29. Synthesized from 85 of 85 curated resources. Browse all 85 Talks resources →

The Evolving Landscape of Application Security Talks

The cybersecurity conference circuit is a primary venue for deep technical dives into application security. For experienced practitioners, these talks represent a critical opportunity to learn about emerging threats, novel exploitation techniques, and cutting-edge defensive strategies that are often not yet documented in widely available literature. The rapid evolution of technology, particularly cloud-native architectures and the pervasive influence of Artificial Intelligence, means that the topics covered at these events are constantly shifting.

Key Conference Venues for AppSec Practitioners

Major conferences like Black Hat and DEF CON serve as perennial hubs for application security content. Black Hat USA, for example, consistently features tracks on vulnerabilities, cloud security, and increasingly, AI security [1][2][3]. DEF CON, with its reputation for more hands-on, grassroots content, also provides significant value, often showcasing practical exploitation techniques and emerging threats through its various "villages" and the highly competitive DEF CON CTF [4][5][6][7][8][9].

KubeCon + CloudNativeCon, while focused on cloud-native technologies, has also become a significant venue for application security talks, especially concerning Kubernetes security, container image security, and eBPF capabilities [10][11]. OWASP, through its Global AppSec conferences (USA and EU), remains a cornerstone for application security discussions, covering topics from secure coding practices to DevSecOps and AI security [12][13][14][15][16][17][18][19][20]. Other notable events include AppSec Israel [21], Infosecurity Europe [21], and community-driven events like BSides conferences [8][22].

Problem Framing: The Shifting Attack Surface

The core problem that application security talks address is the ever-expanding and evolving attack surface of modern software. Applications are no longer monolithic entities but complex ecosystems often composed of microservices, third-party libraries, AI-generated code, and deployed across multi-cloud environments [23]. This complexity introduces new vulnerabilities and attack vectors that practitioners must understand and mitigate.

AI's Impact on Development and Security

The integration of AI tools into the software development lifecycle (SDLC) presents a dual-edged sword. While AI can accelerate development velocity, it also introduces the challenge of both secure and insecure code entering the pipeline at an unprecedented speed [23]. Furthermore, AI itself has become a new attack surface. Talks increasingly focus on securing AI models, understanding AI-powered threats, defending AI systems, and leveraging AI for defense [1]. This includes topics like prompt injections, model backdoors, securing LLMs and their training infrastructure, and the risks associated with AI-generated phishing and malware [1]. The concept of "Shadow AI," where unsanctioned AI tools are used within an organization, adds another layer of complexity that security teams are scrambling to track [24].

Cloud-Native Complexity

The proliferation of cloud-native architectures, particularly Kubernetes, has introduced intricate security challenges. Securing Kubernetes clusters at scale, understanding the limitations and capabilities of technologies like eBPF for security, and securing container images are recurring themes [10]. Attacks targeting initial access vectors into clusters, privilege escalation tactics, and post-compromise activities within the cluster are also frequently discussed [10]. The security of managed Kubernetes services (GKE, AKS, EKS) and the abuse of existing services within these environments are also critical areas of concern [10].

Software Supply Chain Risks

The reliance on third-party code, open-source components, and AI-generated code means that the software supply chain is a significant attack vector. Talks address how to enhance the resilience of Software Composition Analysis (SCA) tools against obfuscation techniques and propose improvements for SBOM generation [11]. The risks associated with dependency concentration, secret leakage, and CI/CD attack paths are also prominent [25].

Core Mechanics: Understanding Threat Vectors and Exploitation

Application security talks often delve into the fundamental mechanics of how vulnerabilities are discovered and exploited. This involves understanding the underlying principles of software architecture, common coding flaws, and the techniques attackers employ to leverage them.

Vulnerability Classes and Exploitation Paths

Discussions often revolve around well-established vulnerability classes such as SQL injection, cross-site scripting (XSS), and insecure deserialization. However, the focus shifts to how these classic vulnerabilities can be chained with other weaknesses or combined with newer techniques to achieve more impactful results, such as Remote Code Execution (RCE) or data exfiltration [26]. Talks also explore more nuanced vulnerabilities like Insecure Direct Object References (IDORs) and how to predict identifiers to exploit them [27].

Exploiting Modern Architectures

With microservices and complex cloud-native deployments, new exploitation paths emerge. Privilege escalation within Kubernetes clusters is a significant area of research, with talks detailing tactics used in real-world engagements [10]. This can involve abusing misconfigurations, exploiting vulnerable container runtimes, or leveraging service account misuses. Living off the land techniques in managed Kubernetes clusters, where attackers abuse existing services and components, are also a subject of interest [10].

AI-Specific Attack Vectors

The rise of AI has spawned a new set of attack mechanics. Prompt injection remains a critical area, where specially crafted inputs can manipulate AI models into performing unintended actions or revealing sensitive information [1][28][14][29][30]. Jailbreaking techniques aim to bypass AI safety guardrails and content filters. Furthermore, vulnerabilities in the training infrastructure and supply chain attacks targeting AI models themselves are becoming more prevalent [1]. Researchers are exploring attacks that can lead to model manipulation, such as poisoning or backdoor insertion, and privacy breaches through data leakage or membership inference [28].

Notable Techniques and Trends

The content of security talks is dynamic, reflecting the latest offensive and defensive innovations. Several recurring themes and specific techniques emerge from recent conferences.

AI Agent Security and Exploitation

A significant portion of current research focuses on the security of AI agents. Talks explore how to identify and exploit vulnerabilities in agentic systems, including prompt injection, excessive agency, tool misuse, and Model Context Protocol (MCP) based supply chain attacks [28][30]. The challenge of securing AI agents that can autonomously perform tasks by invoking tools and APIs is a key topic [30]. This includes understanding agent architectures, tool orchestration, and the security implications of Retrieval-Augmented Generation (RAG) pipelines [30]. Attackers are exploring ways to hijack agents through simple prompts or poisoned documents to execute unintended actions or misuse their tools [30].

Kubernetes and Cloud Security Exploits

Privilege escalation within Kubernetes remains a critical focus. Talks often demonstrate techniques derived from real-world engagements, detailing how attackers gain unauthorized access and move laterally within a cluster [10]. This can involve exploiting vulnerabilities in admission controllers, container runtimes, or network configurations. For instance, the NVIDIA Container Toolkit has been identified as a potential vector for container escapes and cluster takeovers [1]. Abuse of cloud services, such as AWS Lambda Function URLs for command and control relays, or OIDC issuer vulnerabilities for hijacking cloud identities, represent other critical areas explored [25][21].

Supply Chain and Dependency Risks

The security of the software supply chain is a persistent concern. Talks highlight the limitations of current SCA tools against image obfuscation techniques and propose improvements for SBOM generation [11]. The risks associated with open-source dependencies, build pipelines, and code repositories are frequently discussed. For example, a bug in VS Code's Jupyter notebook integration could lead to GitHub token theft by chaining a Jupyter notebook payload that exploits event forwarding [25].

Browser Extension and Client-Side Attacks

Research into browser extension security continues to surface, detailing methods to attack content scripts and service workers through DOM manipulation, CSS injection, clickjacking, and exploiting message-passing APIs [31]. Understanding the threat model of extensions and how to access their source code are foundational elements discussed [31].

Red Teaming and Offensive Tooling

The development and application of new red teaming tools and methodologies are consistently featured. Talks often showcase custom tooling for vulnerability discovery and exploitation, including approaches for automating penetration testing and discovering vulnerabilities in complex environments [32][33]. The use of AI agents for offensive security, aiming to slash false positives and improve efficiency, is a growing trend [32].

Detection and Prevention Strategies

Beyond identifying vulnerabilities, effective application security relies on robust detection and prevention mechanisms. Talks often bridge the gap between offensive research and defensive countermeasures.

Shift-Left and Developer Empowerment

A key theme is shifting security further left in the SDLC, empowering developers with the tools and knowledge to build secure software from the outset [23]. This involves providing immediate feedback on security issues during development, fostering a culture of security ownership, and automating security hygiene tasks to reduce developer friction [23]. Tools that provide rapid analysis and remediation guidance are crucial in this approach [23].

Policy as Code and Admission Control

For cloud-native environments, implementing security policies at scale is paramount. Talks detail practical approaches to deploying admission controller policies, such as Pod Security Admission and Validating Admission Policies, highlighting the challenges and benefits of different methods [10]. Policy as Code (PaC) is presented as a mechanism for managing security and compliance across complex environments, with discussions on scaling PaC for both human and AI agents [11].

Securing AI Workloads and Data

Protecting AI systems requires a multi-layered approach. This includes securing the AI workloads themselves, implementing new security layers specific to AI, and addressing vulnerabilities in peripheral components and cloud-cluster integrations [11]. For LLMs, securing prompts and protecting against model backdoors are critical defenses [1]. Measures like sandboxing, isolation, validating actions, robust prompt controls, and comprehensive monitoring and auditing are essential for securing AI agents [30].

Threat Modeling and Risk Prioritization

Effective threat modeling is crucial for understanding the potential impact of vulnerabilities and prioritizing remediation efforts [23]. Talks often present methodologies for identifying and mitigating risks in complex architectures and emerging technologies like AI agents [28][30]. Accurate risk prioritization, considering exploitability and business context, is emphasized over simply generating long lists of vulnerabilities [23].

Continuous Security and Automation

The goal of many talks is to advocate for continuous security integration throughout the SDLC. This involves automating security testing, vulnerability management, and incident response. For example, automating the generation of security scanner rules for community submissions can transform manual review bottlenecks into automated trust-building processes [34].

Tooling and Infrastructure

The development and application of specialized tools are central to both offensive and defensive application security practices. Talks frequently introduce or showcase new tools, techniques, and frameworks.

AI Security Tooling

The rapid evolution of AI has led to the development of new tooling for both attacking and defending AI systems. This includes platforms for AI red teaming, such as XBOW, which uses AI agents to discover vulnerabilities with reduced false positives [32]. Tools for securing LLMs, managing AI governance, and detecting AI-driven threats are also emerging [1][24][29]. OWASP's GenAI Security Project is actively developing frameworks and tools to address AI security risks [14].

Cloud-Native Security Tools

For Kubernetes and cloud environments, tools that provide visibility, policy enforcement, and threat detection are vital. eBPF-based sensors are being explored for collecting and disseminating threat intelligence within Kubernetes [10]. Tools for managing network policies, identifying misconfigurations, and securing container images are also prevalent.

Developer-Focused Security Tools

To support the shift-left movement, tools that integrate seamlessly into developer workflows are essential. Snyk, for example, is highlighted for its role in providing immediate feedback and analysis to developers, empowering them to fix issues early [23]. Tools that automate security hygiene and simplify vulnerability management are key to improving developer experience [23].

Offensive Security Tools and Frameworks

The cybersecurity conference circuit is a rich source for discovering new offensive tools. Presentations often feature custom scripts, frameworks, and exploit development techniques. Tools for fuzzing network protocols [35], GraphQL hacking [36], and reverse engineering are commonly demonstrated. For AI red teaming, frameworks and notebooks are being developed to provide structured approaches to identifying and exploiting AI vulnerabilities [28][37][29].

Recent Developments and Future Trends

The landscape of application security is in constant flux. Several recent developments and anticipated future trends are shaping the content of security talks.

The Dominance of AI Security

AI security is no longer a niche topic but a dominant theme across major conferences. Discussions range from the ethical implications of AI in cybersecurity to the practicalities of defending against AI-powered attacks and securing AI development pipelines [1][24][34]. The potential for AI to revolutionize exploit development, malware creation, and defensive capabilities is a significant area of ongoing research and presentation.

Agentic AI and Autonomous Systems

The emergence of autonomous AI agents presents new frontiers in both offensive and defensive security. Talks are exploring the security implications of agent-to-agent interactions, delegated access, and the development of robust defenses against sophisticated agent-based attacks [24][30]. The ability of AI agents to perform complex tasks autonomously also means that securing their behavior and preventing misuse is becoming a critical focus [30].

Evolution of Cloud Security

As cloud-native technologies mature, so do the associated security discussions. Beyond Kubernetes, the security of multi-cloud environments, serverless architectures, and the integration of cloud security with traditional on-premises systems remain key topics [23][11]. The evolving threat models for cloud environments demand new types of security controls [11].

Focus on Practicality and Actionability

There's a discernible trend towards more practical, hands-on, and actionable content. While theoretical research remains important, conferences are increasingly featuring talks that provide real-world case studies, detailed exploit walk-throughs, and directly applicable defensive strategies [23][11]. The emphasis is on delivering value that practitioners can immediately implement.

Where to Go Deeper

For those seeking to deepen their understanding of application security through conference content, several avenues exist:

Conference Archives and YouTube Channels

Many major conferences promptly release videos of their talks online. The YouTube channels of Black Hat [38][39], DEF CON [4][40][41], and KubeCon + CloudNativeCon are invaluable resources. OWASP also maintains a video repository [42][43]. Searching for specific topics or speakers within these archives can yield a wealth of knowledge.

Conference Proceedings and Slides

Beyond videos, many conferences make presentation slides and sometimes even white papers publicly available. Websites like Black Hat [2][44][45][46] and DEF CON [9] often host these materials. Following conference-specific hashtags on social media can also lead to shared slide decks and blog recaps.

Community Write-ups and Blogs

Blog posts and write-ups from conference attendees offer supplementary perspectives and often delve into specific talks or challenges in more detail. Following security researchers and companies that present at these events on platforms like LinkedIn and X (formerly Twitter) can provide direct links to these resources.

Capture the Flag (CTF) Events

CTFs are an excellent way to practice the skills discussed in talks. Events like Snyk's Fetch the Flag [47][48] and the DEF CON CTF offer hands-on challenges that mirror real-world attack scenarios. Participating in or reviewing write-ups from these competitions can significantly enhance practical understanding.

Specialized Training and Workshops

Many conferences offer pre-conference training sessions and workshops that provide in-depth, hands-on learning experiences. For example, DEF CON offers specialized training on topics like AI Agent Security [30] and Hacking Android and IoT Apps [49]. These are often more intensive than standard conference talks and provide direct interaction with instructors.

Online Learning Platforms and Resources

Platforms offering curated cybersecurity courses and content, such as those from CodeRed [50] or OWASP's own educational materials [12][13][14][15][16][17][18], can supplement conference learning. Resources like GitHub repositories dedicated to security training, such as genai-security-training [28] and genai-essentials [37], offer structured learning paths for specific domains.

Sources cited in this guide

  1. The insider’s guide to Black Hat 2025 — wiz.io
  2. Black Hat USA 2025 Briefings Schedule — blackhat.com
  3. Cybersecurity Conferences 2026-2027 — infosec-conferences.com
  4. DEF CON 33 Talks - YouTube Playlist — youtube.com
  5. DEF CON 33 Call Index — defcon.org
  6. DEF CON 33 Hacking Conference 2025 — USF — usf.edu
  7. DEF CON 33 (2025) — Security.World — security.world
  8. What to Expect from BSides, Black Hat, and DEF CON 2025 — theregister.com
  9. DEF CON 33 Archive: Videos, Slides, and White Papers — defcon.org
  10. Top security talks from KubeCon Europe 2024 — wiz.io
  11. Top security talks from KubeCon Europe 2025 — wiz.io
  12. BSidesSLC 2026 — sessionize.com
  13. OWASP Global AppSec USA 2025 - CFP — sessionize.com
  14. OWASP Global AppSec EU 2025 - GenAI Focus — genai.owasp.org
  15. OWASP Global AppSec EU 2025 (Barcelona) — owasp.glueup.com
  16. OWASP Global AppSec USA 2025 (Washington DC) — genai.owasp.org
  17. OWASP Global & Regional Events — owasp.org
  18. OWASP 25th Anniversary Virtual Conference — sessionize.com
  19. The Elephant in AppSec Conference — theelephantinappsec.com
  20. Global AppSec San Francisco 2024 — youtube.com
  21. AppSec & Cybersecurity Events Calendar 2026: 60+ Conferences — derscanner.com
  22. Frans Rosén Keynote at BSides Ahmedabad - YouTube — youtube.com
  23. Securing next-gen development: Lessons from Trust Bank and TASConnect — snyk.io
  24. 5 Takeaways from Black Hat x DEF CON 2025 — cybersecuritypulse.net
  25. [tl;dr sec] #332 - I've Joined OpenAI, fwd:cloudsec, AWS Well Architected Supply Chain Security — tldrsec.com
  26. How to turn SQL injection into an RCE or a file read? Case study of 128 bug bounty reports — youtube.com
  27. IDOR - how to predict an identifier? Bug bounty case study — youtube.com
  28. GitHub - schwartz1375/genai-security-training — github.com
  29. HTB COAE: Introducing the new standard for AI Red Teaming — youtube.com
  30. AI Agent Security Masterclass: Attacking and Defending Autonomous AI Systems - DEF CON Training — training.defcon.org
  31. [HackerNotes Ep.95 & Ep.96] Cookies, Caching & Attacking Chrome Extensions with MatanBer — blog.criticalthinkingpodcast.io
  32. XBOW at Black Hat & DEF CON: AI Agents for Offensive Security — xbow.com
  33. Introducing the OWASP Nettacker Project - Speaker Deck — speakerdeck.com
  34. DevSecCon Global May — devseccon.com
  35. Fuzzing with Scapy: Introduction to Network Protocol Fuzzing — youtube.com
  36. Slides: GraphQL Hacking — rashahacks.com
  37. GitHub - schwartz1375/genai-essentials — github.com
  38. Black Hat Official YouTube Channel — youtube.com
  39. Black Hat USA 2025 - YouTube Playlist — youtube.com
  40. DEFCON Conference — Official YouTube — youtube.com
  41. DEFCONConference — youtube.com
  42. OWASP Videos — videos.owasp.org
  43. OWASP Videos — videos.owasp.org
  44. Black Hat USA 2025 Briefings Schedule — blackhat.com
  45. Black Hat USA 2026 Training Schedule — blackhat.com
  46. Black Hat Briefings - Wikipedia — en.wikipedia.org
  47. Sneak Peek into Fetch the Flag CTF 2025 — snyk.io
  48. Fetch the Flag CTF 2026: Official Challenge Write-Ups & Community Highlights — snyk.io
  49. Hacking Android and IOT Apps by Example - DEF CON Training LV 2026 — training.defcon.org
  50. AI Mastery for Cybersecurity Professionals — offers.coderedpro.com
📚 This guide is synthesized from the full text of resources curated in the Talks library, and refreshed as new material is added.