Ringzer0 COUNTERMEASURE FALL//2026

Virtual Training: October 26-31
In Person Training: November 2-4
Conference: November 5-6 // Ottawa 🇨🇦

EARLY BIRD REGISTRATION

Ringzer0 COUNTERMEASURE

Ringzer0 COUNTERMEASURE bridges the gap between the private sector and public institutions by bringing together world-class researchers, government agencies, law enforcement, and academic experts to tackle today's most complex cybersecurity challenges.

While content spans a broad spectrum of technical and strategic topics, Countermeasure places particular focus on the evolving threats and priorities facing governments and critical infrastructure around the world.

The event features a blend of virtual and in-person training, ending with a focused, two-day conference. It is a unique platform for professional development, knowledge sharing, and meaningful networking within the global cyber security community.

Virtual Training

October 26-31

BOOK NOW

List of Virtual Training Courses

Exploiting 10x Faster: AI Agents for Vulnerability Finding and Exploitation
32‑hour hands‑on course for experienced vulnerability researchers to harness AI agents, Skills/Subagents, and MCP with Ghidra/IDA/GDB. Build a Multi‑Agent vulnerability finder, attack a real USB stack, and complete a VM‑escape exploit exercise. Practical checklists; no AI pre‑req.

INSTRUCTORS: Omri Ben-Bassat, Vladimir Tokarev // 32 Hours // October 26-31

Vulnerability Research and Exploitation on Edge Devices: Memory Corruption Edition
Participants will research and exploit vulnerabilities on a real-world embedded edge device in Fortune 500 environments, advancing from restrictive shells to fuzzing, crash triage, root-cause analysis, and weaponizing memory-corruption bugs for remote code execution.

INSTRUCTOR: Marco Ortisi // 32 Hours // October 26-31

IoT Emulation and Vulnerability Research with LLMs - From Assisted Device Design to Vulnerability Discovery
Participants will learn about the fundamentals of emulation and fuzzing, how to emulate a custom device in QEMU from the ground up, and how to instrument it for fuzzing and vulnerability research.

INSTRUCTORS: Antonio Nappa, Eduardo Blázquez // 32 Hours // October 26-31

Building Agentic RE: Automating Reverse Engineering & Vulnerability Research with AI
Join this 32-hour course to master reverse engineering in the Agentic Era. Build private AI stacks, develop custom MCP servers, and orchestrate workflows with LLMs as autonomous collaborators. Gain skills to design agentic workflows for analysing binaries and validating results.

INSTRUCTOR: John McIntosh // 32 Hours // October 26-31

Emulation and Fuzzing for Baseband Firmware
In this training, you will learn how to reverse engineer mobile baseband firmware, create fuzzing harnesses, and find bugs via fuzzing!

INSTRUCTORS: Tobias Scharnowski, Marius Muench // 32 Hours // October 26-31

Applied AI/LLM for Mobile App Reversing and Analysis
This course covers AI-augmented static and dynamic analysis for iOS and Android apps. It includes modules on Jadx, Ghidra, Frida, and AI tools like GPT-4 and Claude. The course culminates in a hands-on project analysing a complex app.

INSTRUCTORS: Guerric Eloi, Nabih Benazzouz // 32 Hours // October 26-31

Deconstructing Rust Binaries
Deconstructing Rust Binaries is the first comprehensive training course focused solely on reverse engineering Rust binaries. This course is for any reverse engineer who needs a rapid, practical upskill in your ability to analyze Rust binaries.

INSTRUCTOR: Cindy Xiao // 16 Hours // October 26-31

Virtual Training Prices

Pricing
Model
16h
Training
Virtual
32h
Training
Virtual
Early Bird
(Till Jul 31)
USD 2100 USD 4000
Standard
(Aug 1 - Sep 30)
USD 2300 USD 4200
Late
(Oct 1 - Oct 26)
USD 2500 USD 4400

In-Person Training

November 2-4 // Ottawa

BOOK NOW

List of In-Person Training Courses

Windows Kernel Exploitation
3-day lab-driven course on Windows kernel internals, memory management, and privilege escalation. Explore real-world vulnerabilities, exploitability analysis, data-only attacks, and modern mitigations to understand how Windows security boundaries break and how to defend them.

INSTRUCTOR: Erik Egsgard, Field Effect // 3 days // November 2-4

Practical Web Application Penetration Testing: From Fundamentals to Exploitation
Hands-on web app pentesting course for security analysts moving into offensive security. Learn to find and exploit common vulnerabilities in modern web apps and APIs through guided labs, using industry tools, open-source frameworks, and LLM-assisted testing workflows.

INSTRUCTOR: Jonathan Machnee, Field Effect // 3 days // November 2-4

Modern x64 Reverse Engineering for AI-Assisted Malware Analysis
Hands-on course teaching modern x64 reverse engineering foundations for effective AI-assisted analysis. Analyze 64-bit Windows binaries with Ghidra, IDA Free, x64dbg, WinDbg, and Python—learn to guide AI tools, challenge results, and validate against real behavior.

INSTRUCTOR: Karim Nathoo // 3 days // November 2-4

Practical Threat Hunting
Learn practical cyber threat intelligence, build a repeatable hunt methodology, hunt with endpoint data, and measure effectiveness. Hands-on labs develop hypotheses across social engineering, network/system compromise, and APT scenarios using CLI, Jupyter, and Velociraptor.

INSTRUCTOR: Mandiant // 3 days // November 2-4

Windows Enterprise Incident Response: A MITRE ATT&CK & Unified Kill Chain Approach
Learn DFIR investigative tradecraft for Windows enterprise intrusions using two open frameworks: Unified Kill Chain for the full attack narrative and MITRE ATT&CK for evidence-backed TTPs. Practice backward/forward scoping from triaged host to enterprise threat hunting; methods transfer.

INSTRUCTOR: Field Effect // 3 days // November 2-4

In-Person Training and Conference Prices

Pricing
Model
3 day Training
+Conference
Conference
Only
Early Bird
(Till Jul 31)
CAD 4700 CAD 750
Standard
(Aug 1 - Sep 30)
CAD 4900 CAD 850
Late
(Oct 1 - Oct 26)
CAD 5100 CAD 950

Ringzer0 COUNTERMEASURE Fall 2026 Conference

November 5,6 // Ottawa

BOOK NOW

List of Talks and Workshops

KEYNOTE by Bruce Dang, Calif
Keynote by Bruce Dang

KEYNOTE: Bruce Dang, Calif

TALK: The Edge Is Burning
Examines perimeter device compromises through a real-world edge appliance intrusion, showing how attacker tactics have evolved, why these cases are hard to investigate, and how defenders can improve visibility, readiness, and response.

SPEAKER: Matthew Graves, CSE

Ringzer0 COUNTERMEASURE Advisory Board

Meet Our Advisors
SPRING 2026 // FALL 2026
Great! Next, complete checkout for full access to Ringzer0
Welcome back! You've successfully signed in
You've successfully subscribed to Ringzer0
Success! Your account is fully activated, you now have access to all content
Success! Your billing info has been updated
Your billing was not updated