BSidesDayton 2026 Schedule

FLIGHT OPS // OPS // SCHEDULE

LINK: SECURE

Conference Schedule 2026

Check out the full lineup of talks and villages across multiple tracks so you can plan your day and catch the sessions that matter most to you.

Welcome and Keynote

> Not yet announced.

Don't Look Up: There Are Sensitive Internal Links in the Clear on GEO Satellites

> Annie Dai | 60 Minutes

A broad scan of cleartext IP traffic across dozens of GEO satellites shows how critical infrastructure backhaul is exposed and what that means for defenders.

You've Probably Never Heard of the Reticulum Network

> Guy Royse | 60 Minutes

Reticulum is a cryptography-based stack for resilient, decentralized communication when centralized infrastructure fails or gets cut off.

Lunch

These aren't the Providers you are looking for: Compromising pipelines with Evil Terraform

> Dakota Riley | 60 Minutes

Malicious Terraform providers can steer CI pipelines and deepen access, with attack paths, mitigations, and a live demo.

Definitely Not Secure (DNS)

> Matt Scheurer | 60 Minutes

DNS fundamentals, live demos of common attacks, and practical defensive tactics for people who use DNS every day but rarely treat it as a primary attack surface.

Managing Third-Party Risk

> Dave Hatter | 60 Minutes

Third-party dependencies increase breach, compliance, and disruption risk; the session uses cases like SolarWinds plus assessments, contracts, and monitoring to reduce exposure.

P0wning the Narrative: How I learned to alter reality and why compelling stories are more important than objective truth

> Bryan K. Fite | 60 Minutes

Cognitive warfare, misinformation, and disinformation, from history to AI and deepfakes, with strategies threat actors use and practical defenses.

Closing Address

> Not yet announced.

After Party

> Join us after the conference at Wandering Griffin Brewery & Restaurant.

[ BRIEFING ]

A typhoon of Problems | A short brief on Silk Typhoon's History and TTPs

> Mason Herzner | 60 Minutes

Silk Typhoon history for blue team hunters, covering past campaigns, TTPs, exploits, and malware in a shorter format.

Lunch

Agentic AI Kill Chain

> Martin Voelk | 30 Minutes

Enterprise AI agents in chat apps enable poisoned RAG, malicious link unfurling, and zero-click exfiltration, with guidance on how to test and defend.

Session 4

> uplink pending — not yet announced

You guys are getting paid? A story of how I got into hardware hacking.

> Jeremy Hong | 30 Minutes

A path from a Dayton local meetup into hardware hacking, plus where the tooling stands today.

A Standard For Investigative Playbooks

> Matthew Gracie | 60 Minutes

YAML investigation playbooks that tie alerts and artifacts to methodology and defensive tooling, with a demo in an open monitoring platform.

Call Center Village

> voice-based social engineering — AI call agents, live operators, Escalation Desk CTF, Learning Line, Demarcation Demo, phone booth

[ BRIEFING ]

Radio Village

> software-defined radio, amateur radio, and RF tech with affordable hardware and free tools

[ BRIEFING ]

P25 Radio Village

> APCO P25 systems — DVMProject, Pi hotspots, FNE infrastructure, encryption on retired public-safety gear. Bring your radios.

[ BRIEFING ]

Sticker Heist

> story-driven heist — recon the safe, disable defenses, extract the loot without triggering alarms

[ BRIEFING ]

Reactor Control Village

> hands-on plant simulation — monitor systems, experiment with control logic, guide shutdown before failure

[ BRIEFING ]