My First Keynote: A Journey to the Stage at BSides Dehradun
Strong People Lift Others Up
Strong people don’t put others down—they lift them up, empowering and inspiring those around them to rise together. With this philosophy as my guiding light, I embarked on a new chapter in my career: delivering a keynote speech at BSides Dehradun. It was an opportunity not just to share my knowledge but to encourage others, create connections, and empower the cybersecurity community around me.
Giving Insights to Students.
Keynote: Zero-Click Attacks – Unveiling the Unseen Threats
When I think back to Nullcon 2022, one talk that truly resonated with me was the keynote delivered by Dr.-Ing. Mario Heiderich Keynote | Do we get stuff done? We don’t get stuff done? Or do we? Or will we? | Mario Heiderich . It wasn’t just the content that struck a chord, but the way he spoke his passion, his clarity, and the way he brought complex ideas to life for everyone in the room. That experience stayed with me long after the conference ended, and it became a source of inspiration for my own journey into public speaking.
Fast forward to BSides Dehradun, where I had the opportunity to step onto the stage as a keynote speaker myself. Tapping into that same inspiration, I crafted my talk titled “Zero-Click Attacks Everywhere.” I wanted to shine a light on something that most people overlook, the vulnerabilities hiding in plain sight, right within the communication protocols we rely on every day.
As I spoke, I could feel the audience connecting with the material. This wasn’t just another technical talk. It was a conversation about real-world dangers that we’re all facing, often without even realizing it. I shared insights into how these attacks target communication protocols, particularly in IoT, and the significant security risks they pose if we don’t address them now.
Along with major points included
- What we are supposed to do
- Our Intended Role
- What we are doing
Coming to BSidesDehradun Conference:
The overall conference was a success, especially for a first-time initiative. Any challenges encountered have provided valuable insights for enhancing future events. Founders Aman Kumar, Ansh Raj Srivastava, and Sahil Yadav demonstrated great dedication, and the event, held at Graphic Era Hill University, laid a strong foundation. Future conferences will build on this achievement for even greater success.
About Dehradun there is nothing new to explain , Imagine stepping into Dehradun for the first time—you’re surrounded by the cool mountain breeze and the sight of hills touching the sky. Nestled in the Doon Valley, this city instantly feels like a peaceful retreat from the chaos of urban life.
As you explore, it hits you that Dehradun is more than just a pretty place. The city carries a rich history and is home to some of India’s most prestigious institutions, like the Indian Military Academy and the Forest Research Institute. You can sense the academic vibe, almost like the city itself is quietly proud of its legacy as an educational hub.
The conference schedule as follows below.
Schedule
Co-Speakers:
Sagar Tiwari and Shubham Kumar shed light on how attackers can exploit open-source intelligence (OSINT) to breach maritime networks, such as those used by vessels, and urban surveillance infrastructure, including CCTV systems. They illustrated the potential risks through examples and discussed strategies for securing these critical systems.
Inderjeet Singh then took the stage to explore the vulnerabilities in GraphQL APIs. While GraphQL is a powerful tool for accessing web data, it poses security risks if not correctly configured. Inderjeet broke down how malicious actors can penetrate systems through these vulnerabilities and shared guidance for developers on mitigating such threats.
Armaan Sidana addressed the dangers facing satellite uplink systems, which are vital for internet access and GPS services. He detailed how hackers might target these systems and provided actionable advice to strengthen their defenses and prevent breaches.
Wrapping up the talks, Sanjeev Multani, also known as Mr. BOF, delved into the subject of memory corruption, a software flaw that attackers frequently exploit to infiltrate systems. He shared practical examples of how these bugs operate and recommended methods to avoid falling victim to such vulnerabilities.
At the conference, I had the pleasure of meeting some truly remarkable co-speakers: Sanjeev Multani, Sagar Tiwari, and Shubham Kumar, others too. Their career accomplishments were incredibly impressive, and we engaged in some deeply insightful technical discussions. The event wrapped up with a memorable send-off, leaving me inspired by the knowledge and experiences we shared.
Microchip Makeover – The Reballing Realm by my IoTSecurity101 Team:
While my keynote focused on attack vectors and vulnerabilities, my team delivered a highly technical and hands-on session titled “Microchip Makeover: The Reballing Realm.” by Mohammed Saqeeb Shariff and Kartheek Ekanathan
This talk took the audience into the intricate world of microchip reballing, a critical process for repairing and maintaining hardware systems. Reballing refers to the delicate task of replacing solder balls in a microchip, allowing it to function again or even improve its performance.
My team’s goal was to simplify this seemingly complex process for attendees, offering live demonstrations and step-by-step guides. The response from the participants was incredible, with many eager to explore hardware-level repairs and optimizations. The session was both informative and empowering, leaving many in the audience with newfound skills and confidence to tackle hardware issues on their own.
Workshop by Sunita Sharma: Android Hacking
One of the most memorable moments at BSides Dehradun was when my close friend, Sunita Sharma, delivered an outstanding workshop on Android Hacking. Her session provided a deep dive into vulnerabilities within the Android ecosystem, showcasing practical exploits and hacking techniques. She guided participants through various tools and methodologies to understand, analyze, and secure Android devices from potential threats.
Sunita’s workshop was hands-on, engaging, and eye-opening, leaving the participants with a wealth of knowledge on securing mobile platforms. Her ability to simplify complex concepts and encourage active participation embodied the spirit of BSides, fostering learning, collaboration, and innovation.
Game Hacking village by Sanchay Singh
Sanchay Singh led a game hacking workshop that equipped the audience with hands-on skills and a deep understanding of advanced pentesting techniques in video games—his passion for the topic was truly evident. It was a pleasure meeting him, especially as it was my first time experiencing game hacking. I realized how much I lacked knowledge in the gaming field; most of the games discussed were entirely new to me. However, I learned valuable insights to get started, and I am especially grateful to Sanchay for that.
Reflection: A Community Effort
Being a part of BSides Dehradun as a keynote speaker was not only a personal milestone but also a community-driven effort. I am incredibly grateful for my team, who made the experience complete with their deep dive into hardware, and for Sunita, whose passion for teaching shone through her Android Hacking workshop.
This experience wasn’t just about delivering talks—it was about creating a platform for others to grow, learn, and share their own expertise. In the spirit of lifting others up, I left BSides Dehradun with a renewed sense of purpose, energized by the amazing people I had the opportunity to connect with and the collective knowledge we contributed to the community.
See you next year..!
Some Good Reads..!