We can't wait to meet with you during Hacker Summer Camp! Join us in Las Vegas, August 3–10, for a week of exciting research, community-building, and industry insights during BSides, Black Hat, and DEF CON! Don't miss our talks, onsite teams at every venue, cool swag, and of course, the best mascot in cybersecurity, Zeti the Yeti! See you soon!

Keep scrolling for all the details ↓

Meet with runZero:

Meet us at these events:

See our talks:

Tue, August 4 @ 2:00pm -2:30pm (Florentine A)
Mind the Gap: Bridges, Backplanes, and BloodHound
Network segmentation is a critical final line of defense, but enforcing it at scale is an immense challenge. Join HD Moore as he reveals how attackers routinely bypass firewalls by exploiting overlooked, accidental bridges, from technician laptops and smart thermostats to out-of-band management channels and exposed OT backplanes.

In this session, HD will demonstrate how to leverage identity-correlation techniques to catch dual-homed hosts hiding across multiple networks simultaneously. Discover how to feed this raw data into open-source tools like BloodHound Open Graph to map out the true, unfiltered layout of your network.
Learn More
Wed, August 5 @ 12:00pm - 12:45pm (Florentine F)
I am CVE, AMA!

Tod Beardsley returns to BSides Las Vegas to lead a spirited discussion on the past, present, and future of the CVE Program. Joining him is an expert panel featuring program sponsors Katie Trimble-Noble and Lindsey Cerkovnik, vulnerability managers Lisa Olson (MSRC) and Madison Ficorilli (GitHub Advisory DB), and data scientist Jerry Gamblin (RogoLabs).

This year, the mic belongs to you. Bring your burning questions as the panel tackles the CVE program's role in the global cybersecurity ecosystem, how it handles the onslaught of AI-discovered and AI-created vulnerabilities, and its impact from initial research to downstream applications.

Learn More
Wed, August 5 @ 3:35pm - 4:15pm (Oceanside A)
Lights Out: BMC's are Still Broken and Now We Have the Receipts

HD Moore uncovers the critical, overlooked threats hiding in your server's BMCs. Drawing from a massive scan of over 140,000 devices, HD reveals that three out of four internet-facing IPMI hosts still leak passwords and system data.

Learn how attackers are using these always-on, highly trusted devices to deploy persistent firmware implants that survive OS reinstalls, and gain access to OOBscan, a brand-new open-source IPMI auditing tool released exclusively during this session.

Learn More
Background Image

Come Hang Out with Zeti, our infamous Yeti!

Zeti's adventure continues in Las Vegas... join the fun!

If you're lucky, you might just catch a glimpse of the elusive Zeti as he continues his global escapades! Word on the street is that he’ll be diving into the best that Las Vegas has to offer. He’s on a mission to meet awesome people, take on thrilling adventures, and, as always, spread happiness and good vibes wherever he roams.

If you spot him, snap a pic and share it on the socials! 🚀✨