"We are not so different, you and I. We've both spent our lives looking for weaknesses in one another's systems."

Cybersecurity Conference and Training

Ottawa's premier cybersecurity training and conference event is back for 2025. November 3-7

Ringzer0 COUNTERMEASURE

Ringzer0 brings the best of offence and defense back to Canada’s capital in 2025. World-class trainers, internationally recognized speakers, cutting edge security research, government focus, community.

November 3 – 7, Ottawa, Canada.

COUNTERMEASURE25 Conference (November 7)

In-Person Training (November 3-6)

Virtual Training (October 26 - November 1)

👉🏼 LIMITED SEATS - REGISTER EARLY

Venue and Hotel

Venue: Ottawa Conference and Event Centre | Hotel: Courtyard by Marriott Ottawa East

Book Your Hotel Room Now

TALK: Dr SharePoint: How I Learned to Stop Worrying and Love the Vuln

On July 19th 2025, Microsoft published two new critical 9.8 CVSS score CVEs covering vulnerabilities in on-prem versions of SharePoint. Follow along as we pull on the thread and unravel a far-ranging campaign including over 40 custom malware samples never before described in public.

TALK: Buttercup and DARPA's AI Cyber Challenge // Henrik Brodin, Ronald Eytchison

Trail of Bits’ Buttercup won $3M in DARPA’s AI Cyber Challenge, autonomously finding and patching 28 vulnerabilities. We’ll demo its open-source multi-agent system using static analysis and AI fuzzing, and share lessons on scaling AI-driven security.

TALK: Best of the Worst: Misadventures in Bug Disclosure // Dustin Childs

A behind-the-scenes look at the wild, frustrating, and comical world of bug disclosures. From face-palm moments to vendor mishaps, this talk shares lessons, farces, and advice to improve how bugs are found, reported, and fixed.

Three Buddy Problem: LIVE // Costin Raiu, Ryan Naraine, Juan Andrés Guerrero-Saade

A special live recording of The Three Buddy Problem podcast, where three industry veterans tackle the complex, the controversial, and the downright weird corners of infosec. Sharp insights, unfiltered takes, current threats, hacker culture, and what's next for the security world.

Emulation and Fuzzing for Baseband Firmware

Over the 4 days of this training, you will learn how to reverse engineer mobile baseband firmware, create fuzzing harnesses, and find bugs via fuzzing!

Practical iOS Reverse Engineering

This 4-day training will equip you with a toolbox of indispensable techniques and methods for diving into the world of hacking apps and discovering system internals on Apple's mobile devices running on the latest iOS 19