AI security, hardware exploitation, offensive operations, cloud and infrastructure pentesting, reverse engineering, strategic leadership. Pulled from the Nullcon Goa 2026 and Hardwear.io USA 2026 trainer networks.

Nikhil Joshi
A 3-day course covering both the fundamentals of how AI systems are built and the security vulnerabilities they introduce. Part 1 builds intuition on ML algorithms (CNN, LLMs, RAG, Agentic AI); Part 2 dives into adversarial attacks, model stealing, data poisoning, prompt injection, jailbreaks, and attacks against agentic AI and MCPs.
Jitendra Chauhan & Jayant Sharma
A 3-day advanced offensive and defensive AI security workshop covering automated red teaming, OWASP Top 10 LLM risks, AI agent attack surfaces, and defensive architectures. Day 1 focuses on jailbreaking and automated model evaluation; Day 2 covers OWASP LLM app testing and data poisoning; Day 3 targets AI agents and adversarial testing with a hackathon.
Riddhi Shree
A hands-on 3-day journey into embedded and IoT firmware security covering secure coding fundamentals, vulnerability discovery, and incident response. Participants gain skills to identify and mitigate common firmware risks, implement secure update mechanisms, and harden devices using real lab exercises.
Abraham Aranguren, Anirudh Anand & Ashwin Shenoi
A comprehensive 3-day practical course covering penetration testing of modern web applications (Node.js/JavaScript frameworks) and Electron desktop apps. Students learn to identify attack surfaces, exploit vulnerability patterns at runtime and source-code level, bypass protections, and use CTF challenges to sharpen skills. Includes lifetime access to training portal.
Chandrapal Badshah
A defensive-focused 3-day hands-on training on securing Kubernetes and cloud-native infrastructure by studying real attack patterns and building multi-layered defenses. Participants implement RBAC, network policies, policy engines (OPA/Kyverno), supply chain security (SLSA), and runtime detection via eBPF (Tetragon). Each participant receives a dedicated Kubernetes cluster.
Prashant Mahajan & Sebastian Neef
An advanced 3-day infrastructure penetration testing course covering manual exploit development, Active Directory attacks, and modern evasion techniques in enterprise environments. Participants exploit hardened web apps, bypass network isolation, perform AD reconnaissance and lateral movement (Pass-the-Hash, Kerberoasting, DCSync), and attack hybrid cloud (Entra ID).
Manish Gupta & Yash Bharadwaj
A 3-day advanced red team tradecraft course covering APT TTPs, OPSEC-safe infrastructure, custom offensive tooling development, and EDR/host/network control bypasses. Students build resilient phishing infrastructure, develop offensive C# tooling, bypass AMSI/CLM/ASR rules, and conduct stealthy operations. Includes 30-day access to a simulated HealthCare Cyber Range.
Markus Vervier & JJ
A 3-day advanced application security research course teaching static and dynamic analysis techniques for discovering vulnerabilities in large software projects. Day 1 covers fuzzing with AFL++ and libfuzzer; Day 2 covers static analysis (Clang, CPPCHECK, COCCINELLE); Day 3 covers CodeQL, semantic grep, and combining techniques.
Vishal Raj
A 3-day hands-on Azure red teaming and pentesting course covering the full attack lifecycle against Azure and Entra ID environments including hybrid identity scenarios. Participants execute attacks in live multi-tenant labs across recon, initial access, enumeration, privilege escalation, lateral movement, persistence, and data mining.
Rahul Binjve & Darshit Ashara
A 3-day hands-on CTI course progressing from intelligence lifecycle fundamentals through OSINT collection, Python-based automation, malware and darknet analysis, to operationalizing CTI in SOC/SIEM workflows. Covers CTI frameworks (MITRE ATT&CK, Kill Chain, Diamond Model), automation (MISP, TAXII), and threat hunting (YARA/Sigma).
Abizer Naseem & Prathamesh Patil
A 3-day bootcamp combining advanced malware execution concepts with deep phishing and deception infrastructure tradecraft. Day 1 covers Windows internals, shellcode execution, MOTW, ClickOnce abuse, and a live BYOVD EDR bypass demo. Days 2-3 focus on Evilginx, domain reputation engineering, custom phishlet engineering, BITB attacks, and APT toolkit analysis.
Ali Jujara
A 3-day Android application penetration testing course going beyond OWASP Top 10 to cover hands-on reverse engineering, Frida-based dynamic analysis, and bypass of real-world security controls. Day 1 covers Android internals and setup; Day 2 covers reverse engineering with JadX/Smali, root and SSL pinning bypasses; Day 3 covers OWASP MASTG/MASVS challenges.
Ajay SK, Hemant Sonkar & Shubham Thorat
A comprehensive 3-day IoT security course covering hardware, firmware, and radio protocol attack surfaces using real devices (including DIVA-IoT, a custom vulnerable IoT sensor). Participants attack hardware debug ports (UART, JTAG), extract and analyze firmware (SPI/I2C flash), perform ARM assembly analysis, and execute BLE radio protocol attacks.
Sudhakar Verma
A 3-day workshop on reverse engineering fundamentals through advanced malware analysis and vulnerability research techniques. Day 1 covers binary formats, x86-64 assembly, OS internals, and RE tooling; Day 2 covers connecting assembly to C/C++, static analysis, and debugging; Day 3 covers scripting, bypassing malware evasion, and full RE workflows.
Staff Instructor
An executive-level training for current and aspiring CISOs covering the strategic, operational, and leadership aspects of running an enterprise security program. Topics include board communication, budget justification, team building, vendor management, and measuring program effectiveness.
Staff Instructor
An engaging, interactive security awareness training designed for non-technical employees. Covers the most common attack vectors targeting organizations today including phishing, social engineering, credential attacks, and insider threats. Customizable to your industry and compliance requirements.
Staff Instructor
A practical training on implementing governance, risk, and compliance frameworks. Students learn to assess organizational maturity, select and map frameworks, build policies and controls, and prepare for certification audits. Includes case studies from healthcare, fintech, and SaaS environments.

Joe Grand
The industry's premier hardware hacking training — 2-day core + exclusive bonus day. Students learn hands-on techniques for product teardown, component identification, circuit board reverse engineering, soldering, signal monitoring with logic analyzers, and memory extraction. The bonus third day covers advanced hardware hacking and espionage techniques not available elsewhere.
Marcel Busch
An advanced, offensive-focused exploration of ARM TrustZone Trusted Execution Environment vulnerabilities. Students analyze, fuzz, and exploit TEE implementations used in smartphones, IoT devices, and automotive systems through an integrated CTF experience on a 64-bit ARM emulated platform.
Marcus Richerson
A hands-on, CTF-style training to identify, exploit, and remediate critical vulnerabilities across the full medical device attack surface — hardware, firmware, software, wireless, and cloud. Grounded in FDA Cybersecurity Premarket Guidance, the course covers PCB depotting and JTAG extraction to BLE and custom radio protocol attacks.
Todd Keller
A non-traditional ICS/SCADA security course built around a formal PLC penetration testing methodology. This training teaches deep-level exploitation of PLCs including controller logic, fieldbus protocols, network communications, and proprietary vendor interfaces — every attendee takes home a real PLC with non-expiring software.
Philippe AZALBERT
A 3-day course teaching hands-on penetration testing of connected vehicle ECUs with a focus on In-Vehicle Infotainment (IVI) units and Telematics Control Units (TCUs). Participants build their own automotive test bench, extract ECU filesystems, exploit hardware protections, and intercept/mimic backend server communications over LTE.
Nathan Smith & Matthew Domanic
A comprehensive advanced course covering the full embedded system attack chain: visual PCB inspection and reverse engineering, firmware extraction via hardware debugging protocols, and in-depth firmware analysis with Ghidra and specialized plugins. Each attendee receives a custom SolaSec development board as the training target.
Olivier Thomas
A specialized advanced training on optical and analytical extraction of ROM content from integrated circuits at the transistor level — directly applicable to extracting cryptographic material, boot code, and hidden device modes. Participants work with SEM images, Python scripts, Fiji/ImageJ, and VHDL to reconstruct scrambled ROM binaries.
Sébastien Dudek
Using Software-Defined Radio, this advanced training covers the full attack lifecycle against LoRa PHY-based communications across industrial systems, IoT, Meshtastic mesh networks, LoRaWAN infrastructure, and FPV drone control links (ELRS). Each attendee receives a complete RF kit (HydraSDR RFOne + antennas).
Whether you need a single workshop or a full program — we match you with the right expert and handle everything from contracts to delivery.