Communities and People

Here you can find the Communities and People contributing to the RomHack Camp success (the page will be updated as soon as new communities and people confirm their presence)

>>> Check Camp Schedule for calendar view <<<

Call For Action

We encourage communities as well single people to partecipate in the form of talks, workshops, installations - the only limits are your imagination!

Berghem-in-the-Middle

Berghem-in-the-Middle

Berghem-in-the-Middle (BITM) is a non profit association, founded by a group of information security enthusiasts and professionals in north Italy. No Hat has more than 50 members, and its community encompasses more than 400 information security enthusiasts and professionals, in an open and friendly environment fostering technical development and knowledge sharing. Since 2019, BITM hosts No Hat, a recognized conference gathering researchers and specialists from the international InfoSec scene.

During the Camp

  • you can find Berghem-in-the-Middle in the Communities Area

 

[ Telegram | Twitter ]

Cyber Saiyan

Cyber Saiyan

Cyber Saiyan is a nonprofit organization that spreads security awareness. We organize RomHack Camp and Conference 🙂

During the Camp

  • Camp Opening – on Friday, September 23rd @ 10:00 (Cyber Pompieri)
  • The Camp Badge – on Friday, September 23rd @ 12:00 (Aspira Malware)
  • How we made the Camp – on Friday, September 23rd @ 21:00 (Perimetro)
  • Music Party – on Friday 23rd and Saturday 24th starting @ 22:00
  • Camp Closing – on Sunday, September 25th @ 12:00 (Cyber Pompieri)
  • We sell swags and beer 🍻🍻🍻

ESC

ESC

End Summer Camp is a not-for-profit meeting in the form of an hackercamp organized every year, attracting people interested in hacking, open source and DIY. The event’s contents are in continuous evolution and are all contributed by the community, you can check here.

During the Camp

  • you can find ESC in the Communities Area
  • we will “steal” from our ESC friends their soldering skills

[ twitter ]

openSUSE

openSUSE

The openSUSE project is a worldwide effort that promotes the use of Linux everywhere. openSUSE creates one of the world’s best Linux distributions, as well as a variety of tools, such as OBS, OpenQA, Kiwi, YaST, OSEM, working together in an open, transparent and friendly manner as part of the worldwide Free and Open Source Software community.

During the Camp

  • you can find openSUSE in the Communities Area

OWASP Italian Chapter

OWASP Italy

The Open Web Application Security Project (OWASP) is a nonprofit foundation that works to improve the security of software. All of their projects, tools, documents, forums, and chapters are free and open to anyone interested in improving application security.

During the Camp

  • The OWASP Italian Chapter will present OWASP and the on-site CTF on Friday, September 23rd @ 11:00 (Hyper SOC)
  • They will do a workshop on ZAP (OWASP Zed Attack Proxy) on Saturday, September 24th @ 15:00 (Perimetro)

Wireless BattleMesh

Wireless Battlemesh

The Wireless BattleMesh is an event that aims at bringing together people from across the world to test the performance of different routing protocols for wireless ad-hoc networks and talk about related topics. It is a tournament with a social character. If you are a mesh networking enthusiast, community networking activist, or have an interest in mesh networks you might want to check this out!
For 2022, the event will be held in Rome, September 19-22, just before RomHack Camp! More information on www.battlemesh.org

During the Camp

  • you can find Wireless BattleMesh in the Communities Area
  • the battlemeshers will show how to flash routers with OpenWRT, install routing protocol packages and configure them to build a mesh network

[ twitter ]

Gabriel Cirlig

Gabriel Cirlig

Gabriel is a software developer turned rogue, went from developing apps for small businesses to 2M+ DAU Facebook games while keeping an eye for everything shiny and new. For a couple of years he shifted gears and started a career as a security researcher while speaking at various conferences (SAS, AVAR, PHDays) showcasing whatever random stuff he hacked. With a background in electronics engineering and various programming languages, he likes to dismantle and hopefully put back whatever he gets his hands on.

During the Camp

  • One Small step for man, one giant step for researchers – on Friday, September 23rd @ 15:00 (Aspira Malware)
    This will be a simple and short (in the limit of the Camp splot) introduction into Android reverse engineering, taking the student from zero to hero. No previous reversing knowledge is required and all of the tools will be provided in the form of a VM packed with goodies. The course will cover the basics of Android, APK structure, DEX file internals and how this can be exploited in order to decompile and deobfuscate malware. In addition, hands-on exercises will be provided with fresh malware samples where the knowledge can be put to good use in extracting C2s and other interesting information.

 

[ Twitter | LinkedIn ]

Luca Bongiorni

Luca Bongiorni

Luca Bongiorni, has more than 15 years of experience in InfoSec and has been mostly involved into the Offensive side of it. He holds a B.Sc. in Security Networks & Systems and also some certifications (GCFA, GPEN, GRID). He is also actively involved in R&D, where the main fields are: Radio Networks, Hardware Hacking, (Industrial) Internet of Things and Physical Security. He created WHID – We Hack In Disguise – in 2017 with the goal of Prototyping Offensive & Opensource Hardware Implants for conducting HID & Mousejacking Attacks and Bypass AirGapped Environments.

During the camp

  • PhySec Lab Part 1: Lockpicking 101 – on Friday, September 23rd @ 11:00 (Perimetro) and Saturday, September 24th @ 15:00 (Aspira Malware)
    This 2 hours workshop (max 20 people) wants to be an introductory course to the marvelous world of picking locks. After an overview of the most common types of locks and how they operate, the instructor will show you which type of tools are needed to manipulate and open them. In the second part of this training, you will be provided with a lockpicking kit and some practice locks in order to try yourself.

 

 

  • PhySec Lab Part 2: Hacking Physical Access Control Systems – on Friday, September 23rd @ 15:00 (Perimetro) and Saturday, September 24th @ 17:00 (Aspira Malware)
    This 2 hours workshop (max 20 people) is designed to provide the attendees a good grasp on how Physical Access Control Systems work and how they can be defeated. During the course there will be multiple real examples and different offensive techniques will be explained. In the second part, it will be also possible to try exploiting them in live against real targets setup for the occasion.

 

 

OWASP Italian Chapter

OWASP Italy

The Open Web Application Security Project (OWASP) is a nonprofit foundation that works to improve the security of software. All of their projects, tools, documents, forums, and chapters are free and open to anyone interested in improving application security.

During the Camp

  • The OWASP Italian Chapter will present OWASP and the on-site CTF on Friday, September 23rd @ 11:00 (Hyper SOC)
  • They will do a workshop on ZAP (OWASP Zed Attack Proxy) on Saturday, September 24th @ 15:00 (Perimetro)

Rev3rse Security

Rev3rse Security is an online italian community devoted to ICT Security: offensive, hardening, red team, blue team and more – https://www.rev3rse.it/

During the Camp

  • on Friday, September 23rd @ 15:00 (Cyber Pompieri) a defense lab (max 30 people) built on a real AWS envoronment where you will learn howto mitigate 2 real attacks (based on OWASP Automated Threats) to an e-commerse website based on WooCommerce. More information here (in italian)

 

rev3rse security lab

 

[ Twitter | LinkedIN | Telegram | YouTube ]

Tracking Exposed

Tracking Exposed

Tracking Exposed is a European non-profit organization defending digital rights through algorithmic investigations. Since 2016 Tracking Exposed has been pioneering new methodologies to scrutinize the most influential recommender systems, such as those of YouTube, Facebook, Amazon, PornHub and TikTok. The code is released as free software, enabling anyone to use, extend or review it.
Tracking Exposed’s infrastructure and methodologies have been validated in several peer-reviewed publications, and the works of the team have received coverage in major media outlets. Some of its reports have been cited in a United Nations report, a house testimony and a US Congress official letter to YouTube’s CEO.

During the Camp

  • To Be Announced

Cyber Saiyan

Cyber Saiyan

Cyber Saiyan is a nonprofit organization that spreads security awareness. We organize RomHack Camp and Conference 🙂

During the Camp

  • Camp Opening – on Friday, September 23rd @ 10:00 (Cyber Pompieri)
  • The Camp Badge – on Friday, September 23rd @ 12:00 (Aspira Malware)
  • How we made the Camp – on Friday, September 23rd @ 21:00 (Perimetro)
  • Music Party – on Friday 23rd and Saturday 24th starting @ 22:00
  • Camp Closing – on Sunday, September 25th @ 12:00 (Cyber Pompieri)
  • We sell swags and beer 🍻🍻🍻

Guerre di Rete

Guerre di Rete community

Guerre di Rete is an Italian nonprofit association that publishes a weekly infosec newsletter, focusing on the intersection of cyber, human rights, surveillance, privacy.

In 2022, in a joint effort with Cyber Saiyan, maintans the cybersecurity news website guerredirete.it, which aims to publish extensive treatments on cybersecurity topics and their social aspects.

During the Camp

  • discussion panel on “Jobs in Cyber Security” on Saturday, September 24th @ 21:00 (Cyber Pompieri)
  • discussion panel with journalists that contributed to Guerre di Rete project on Sunday, September 25th @ 10:30 (Cyber Pompieri)

 

[ Twitter | LinkedIN | Facebook | Instagram ]

openSUSE

openSUSE

The openSUSE project is a worldwide effort that promotes the use of Linux everywhere. openSUSE creates one of the world’s best Linux distributions, as well as a variety of tools, such as OBS, OpenQA, Kiwi, YaST, OSEM, working together in an open, transparent and friendly manner as part of the worldwide Free and Open Source Software community.

During the Camp

  • you can find openSUSE in the Communities Area

Reando “H4t4way” Veshi

Reando “H4t4way” Vesci

My name is Reando, but you can call me H4t4way. I am a penetration tester and occasional bug hunter. As a lover of WebSec, I always like to find something wrong and fix it !!!! 🙂 I have been passionate about computer science since childhood and have been in the security world for five and a half years. I started studying IT many years ago in school and university where I learned JAVA and C and during my working career PHP, Python, Javascript. I’m founder of Pentesting Made Simple an Italian community where we speak about Pentesting, Bug Bounty and Ethical Hacking in general.

During the Camp

  • Smart Contracts and Security Pitfalls – on Friday, September 23rd @ 21:00 (Cyber Pompieri)
    This talk aims at explaining some of the most common vulnerabilities that are specific to the application level of Blockchain technology by analyzing concrete exploitation case scenarios of these security vulnerabilities. We will also review some of the available tools and applications that detect these vulnerabilities in terms of their approach and effectiveness.

Tracking Exposed

Tracking Exposed

Tracking Exposed is a European non-profit organization defending digital rights through algorithmic investigations. Since 2016 Tracking Exposed has been pioneering new methodologies to scrutinize the most influential recommender systems, such as those of YouTube, Facebook, Amazon, PornHub and TikTok. The code is released as free software, enabling anyone to use, extend or review it.
Tracking Exposed’s infrastructure and methodologies have been validated in several peer-reviewed publications, and the works of the team have received coverage in major media outlets. Some of its reports have been cited in a United Nations report, a house testimony and a US Congress official letter to YouTube’s CEO.

During the Camp

  • To Be Announced

Donne 4.0

Donne4.0

Donne 4.0 is a nonprofit association that supports, with real projects and activities, the empowerment of women in the digital world, thus increasing the full participation of women in the technology area, with the goal to close the gender gap in the IT sector.

During the Camp

  • On Saturday, September 24th @ 14:00 (Hyper SOC), during the RomHack Conference, Donne 4.0 will host a coding event for kids and teens. The event is for all kids from 8 to 14 year old, even without any previous coding experience. Kids and teens will be divided in groups according to their age and knowledge (if any) and will be guided in the development of a nice game in Scratch, a free visual coding language from MIT Media Lab.
    The event will start at 14:00 right after the conference lunch break and will finish around 17:00.

 

[ Facebook | Twitter | Instagram | LinkedIn | YouTube ]

RomHack Camp 2022 Map