Aaron Ng

Aaron is a Senior Systems Engineer at CrowdStrike where he advises customers on their security needs and solutions. He is currently based in Dubai, and is responsible for the CrowdStrike business across the Middle East, Turkey, and Africa (META) region. Prior to his current stint, Aaron served as a Strategic Threat Advisor where he actively evangelised for the value and pertinence of Cyber Threat Intelligence to organisations across the public and private sectors in the Asia Pacific (APAC) and META regions. Aaron represented CrowdStrike Intelligence, speaking at various Security Conferences including BlackHat MEA, MENA ISC, GovWare, RootCon, AVAR, BSides SG, and SINCON.

Prior to joining the Cybersecurity industry, Aaron served 12 years of Active Duty in the Singapore Armed Forces as a Military Intelligence Officer. He served in multiple command appointments in classified Intelligence units, and garnered staff experience in the areas of strategic planning and policy development. In his penultimate tour of duty, Aaron was instrumental in developing the masterplan for the Digital and Intelligence Service (DIS), the military branch responsible for providing military intelligence to the armed forces, building up Singapore's digital defence capabilities, and protecting the psychological defence of its military personnel.

ar33zy

Ariz spearheads the Theos Red Team as an accomplished security consultant with over seven years of experience in Incident Response, Penetration Testing, and Red Teaming. He has successfully led numerous VAPT and Red Teaming engagements for a wide array of clients, including significant corporations in various regions. Additionally, Ariz is a Senior Content Engineer at TryHackme, an online platform that uses gamified labs to teach cybersecurity skills, where he shares his expertise by creating cybersecurity training materials and capture-the-flag challenges. Furthermore, Ariz plays a pivotal role in the Philippine security community by founding and leading the Red Teaming Village at ROOTCON. Through this platform, they organize various activities, presentations, and training sessions aimed at enhancing the Red Teaming knowledge in the country.

Dennis Goh

Dennis Goh (@RFIDGroup) is the co-founder of the RFID Research Group, where he plays a pivotal role in advancing radio-frequency identification technology.

Under his leadership, the team has developed innovative tools that serve the needs of researchers and professionals in the RFID field. Notable creations include Proxmark3 Rdv4.01, which enhances RFID research capabilities, USBninja—a versatile BadUSB for security tasks—and both ChameleonTiny and ChameleonUltra, which provide powerful functionalities for emulating and testing RFID systems.

In addition to his contributions to RFID technology, Dennis is actively involved in the cybersecurity community. He regularly attends and hosts RFID villages at cybersecurity conferences around the world, fostering collaboration and knowledge sharing among experts. His commitment to education and outreach was highlighted by his role as an arsenal presenter at BlackHat Asia 2024, where he shared insights into advanced RFID applications and their security implications.

Through his work, Dennis strives to push the boundaries of RFID technology and contribute to a safer digital landscape, providing robust solutions that empower users to explore and expand their understanding of the field.

Georgy Kucherin

Georgy Kucherin is a Security Researcher at Kaspersky’s renowned Global Research and Analysis Team. Georgy demonstrates an unwavering passion for unraveling the intricacies of complex malware and employing reverse engineering techniques to analyze and understand its inner workings. With a strong background in cybersecurity research, Georgy has contributed significantly to the field through his comprehensive investigations into advanced persistent threats (APTs) such as Operation Triangulation, FinFisher, APT41, and Lazarus. Georgy actively shares his research findings at prominent conferences, where his presentations captivate audiences and contribute to the collective knowledge of the cybersecurity community.

Ignacio Navarro

Ignacio Navarro, an Ethical Hacker and Security Researcher from Cordoba, Argentina. With around 6 years in the cybersecurity game, he's currently working as an Application Security. Their interests include code analysis, web application security, and cloud security. o Speaker at DEFCON, H2HC, Troopers, LeHACK, NorthSec, TyphoonCon, Security Fest, SASCON, 8.8 among others.

Karl Biron

Karl Biron is a Security Researcher in the SpiderLabs Database Security team at Trustwave, bringing nine years of hands-on technical experience across the cybersecurity landscape. He holds multiple industry-recognized certifications and has built a global perspective through his work in Singapore, the United Arab Emirates, and the Philippines. Karl is the lead author of two IEEE peer-reviewed publications covering diverse topics such as cybersecurity and data science. He is also an experienced IEEE speaker, having delivered technical presentations that bridge research and practical application.

Over the past year, Karl has authored multiple in-depth technical blogs for Trustwave SpiderLabs, each providing detailed, hands-on walkthroughs that are accessible and actionable for practitioners and researchers alike. These blogs span a wide range of topics, including exploitable vulnerabilities (e.g., MariaDB RCE CVE), anonymous data corruption campaigns (e.g., Meow Attack), ransomware threats (e.g., Xbash Malware), offensive security tool evaluations (e.g., OracleDB vs ODAT), security feature simulations (e.g., Elasticsearch X-Pack Security Plugin), and Modbus attack simulations using his in-house-built CLI tool (Using M.A.T.R.I.X to Learn About Modbus Vulnerabilities).

OfflineIsNewLuxury

Jeffrey is a Vice President of Consulting Services at DACTA Global, specializing in Offensive Security, with more than a decade of experience in Penetration Testing, Vulnerability Management, Cyber Threat Intelligence, and Security Operations. He has led and delivered security assessments for businesses, enterprises, and government agencies, identifying and mitigating critical vulnerabilities across networks, Active Directory, web applications, APIs, wireless networks, and mobile platforms (iOS & Android).

As a recognized expert, Jeffrey actively participates in bug bounty programs and has been acknowledged by top organizations, including Apple, Oracle, Toyota, and Morgan Stanley. His research has contributed to the discovery of multiple vulnerabilities, earning him four CVE IDs.

In May 2024, he presented an API security tool at the Black Hat Arsenal in Singapore, showcasing an API scanning tool designed to enhance security and detect vulnerabilities in API applications.

Parameswaran Ganesan

Parameswaran Ganesan is the Lead of Presales at DACTA Global and a cybersecurity strategist with 9+ years of experience securing enterprises, governments, and OT environments across APAC. He leads complex security transformations, from EDR and SIEM rollouts to regional SOC deployments and threat intelligence integrations. A passionate researcher, Parameswaran authored two notable papers:
“Exploring Cyber Threats in the Financial Sector”, analyzing real-world APT campaigns; and
“Demystifying Deep Learning in Side-Channel Analysis”, where he pioneered explainable AI techniques for cryptographic attack modeling.

He holds a Master’s in Cybersecurity from NTU and is pursuing a PhD at SUTD, focusing on AI and Threat Intelligence. Parameswaran also delivers cybersecurity training, builds red-blue team simulations, and advises on AI-driven security strategies.

Pengfei “BigZaddy” Yu

Pengfei is the APJ & SAARC Regional Customer Success Manager at Picus Security. Previously, he worked as a Cybersecurity Engineer in GovTech's GCSOC team, where he led the implementation of continuous purple teaming across the Whole-of-Government. Before this role, he served on GovTech's red team, mainly dabbling in VAPT and Adversary Simulation. Pengfei is certified with OSCP, eMAPT, Crest CRT, CCSK V4, etc. He has conducted research on emerging cybersecurity technologies and presented his findings at renowned conferences like Black Hat USA & Asia, DEFCON, SINCON, ROOTCON, etc.

Sergio García

Sergio García is a Cloud Security Engineer and the main maintainer of Prowler, an open-source cloud security tool. With a strong background in cloud security and automation, he is passionate about securing cloud environments and contributing to the open-source community. Sergio shares insights on best practices, risk management, and innovative security solutions to help organizations strengthen their cloud security posture.

Wilson Chua

Wilson L. Chua is an accomplished cybersecurity and operations leader, recognized for excellence and innovation in both the private and academic sectors. A Gold Medal Awardee from the National University of Singapore (NUS) and a Distinguished Alumni of the University of the Philippines Cesar Virata School of Business, Wilson brings a rare blend of strategic insight and hands-on expertise across multiple domains.

With a solid track record as a Chief Information Security Officer (CISO), Wilson has led cybersecurity programs that balance compliance, risk management, operational resilience and leveraging on ML/AI. Beyond cybersecurity, Wilson has also held key leadership roles in Call Center Operations, Network Operations, and Big Data Analytics, driving digital transformation and operational efficiency across large-scale enterprises.

With a unique mix of academic excellence and real-world experience, Wilson is passionate about building secure, data-driven organizations that thrive in today’s fast-evolving digital landscape"