SANS Rocky Mountain Fall is Live Online! Join us Nov 2-7 MT for 17 interactive courses + NetWars. Save $300 thru 10/7.


Subscribe to SANS Newsletters

Join the SANS Community to receive the latest curated cyber security news, vulnerabilities and mitigations, training opportunities, and our webcast schedule.

SANS Institute Pen Test Hackfest Summit: Focus on hacking back and attacker tracking

  • Berlin
  • 2 July 2019

SANS Institute, the global leader in cyber security training and certifications, announces the 2019 Pen Test Hackfest Summit in Berlin, part of the Pen Test Berlin training event. The Summit will be held on Monday 22 July at the Berlin Mariottt Hotel, where international experts will share the latest techniques for penetration testing of web applications, cars and IoT devices as well as the use of AI and machine learning. A number of speakers will address the topic of hacking back and the difficulties encountered when attempting to assign responsibility.

Highlights of the summit include:

  • 9:45 - 10:30 am – Keynote by James Lyne, CTO at SANS Institute
  • 10:30 - 11:05 – Blame Wars: How to Attribute Responsibility by David Fuhr, Head of Research at HiSolutions AG
  • 12:10 - 12:45 – A Journey Through Adversary Emulation by Jonas Bauters, Senior Security Consultant at NVISO
  • 14:20 - 14:55 – Pentesting Cars by Oliver Nettinger, R&D at NVISO

The complete summit agenda can be found here:

“I’m delighted to be hosting this year’s SANS Pen Test Hackfest Europe Summit in Berlin” said Erik van Buggenhout, SANS certified instructor and author, “The event brings together cyber security professionals of all disciplines to explore how cyber offence can help dramatically improve an organisation’s cyber defences. From learning how to perform a full automotive pen test, to finding web vulnerabilities using just a search engine, integrating adversary emulation using MITRE’s ATT&CK framework, or discussing blame attribution, the SANS Pen Test Hackfest will also provide participants with the opportunity to network with industry peers, as well as discussing the latest pen testing technologies and techniques. The summit is followed by a full week of SANS courses focused on cyber offence, as well as the chance to take part in NetWars.”

In addition to the summit, six SANS pen test training courses will be running from 23-28 July, as well as the SANS NetWars event, which is very popular among course participants and will take place in the evening on Tuesday 23rd and Wednesday 24th July.

The courses offered following the summit are as follows:

SEC504: Hacker Tools, Techniques, Exploits, and Incident Handling by Chris Dale

SEC560: Network Penetration Testing and Ethical Hacking by Jorge Orchilles

SEC575: Mobile Device Security and Ethical Hacking by Christopher Crowley

SEC599: Defeating Advanced Adversaries - Purple Team Tactics & Kill Chain Defenses by Erik van Buggenhout

SEC617: Wireless Penetration Testing and Ethical Hacking by James Leyte-Vidal

SEC642: Advanced Web App Penetration Testing, Ethical Hacking, and Exploitation Techniques by Adrien de Beaupre

You can read more about Pen Test Berlin here:

About SANS Institute

The SANS Institute was established in 1989 as a cooperative research and education organization. Today, SANS is the most trusted and, by far, the largest provider of cyber security training and certification to professionals in government and commercial institutions worldwide. Renowned SANS instructors teach more than 60 courses at In-Person and Live Online cyber security training events, and more than 50 courses are available anytime, anywhere with our OnDemand platform. GIAC, an affiliate of the SANS Institute, validates practitioner skills through more than 35 hands-on, technical certifications in cyber security. The SANS Technology Institute, a regionally accredited independent subsidiary, offers a master’s degree, graduate certificates, and an undergraduate certificate in cyber security. SANS Security Awareness, a division of SANS, provides organizations with a complete and comprehensive security awareness solution, enabling them to easily and effectively manage their ‘human’ cybersecurity risk. SANS also delivers a wide variety of free resources to the InfoSec community including consensus projects, research reports, webcasts, podcasts, and newsletters; it also operates the Internet's early warning system – the Internet Storm Center. At the heart of SANS are the many security practitioners, representing varied global organizations from corporations to universities, working together to support and educate the global information security community. (