BSides Hanoi 2026: Call for Papers

BSides Hanoi 2026 officially returns for its second edition, continuing its mission as a platform where the cybersecurity community comes together to share knowledge, exchange ideas, and shape the future of the industry. In 2026, the event carries the theme “No Human” — reflecting the rapid transformation driven by AI, automation, and autonomous systems that are redefining how digital infrastructures are built, operated, and secured. From offensive security to defense, from threat detection to incident response, technology is steadily reshaping the role of humans across the entire cybersecurity lifecycle.

However, BSides Hanoi 2026 remains an open community-driven platform. We welcome all perspectives, research, and real-world cybersecurity stories — from deep technical research and offensive/defensive techniques to practical enterprise implementation experiences.

Core Cybersecurity Topics

We are looking for presentations, case studies, tools, research, or real-world stories related to (but not limited to) the following topics:

Offensive Security: Topics related to Red Team operations, vulnerability exploitation, post-exploitation, adversary simulation, defense bypass techniques, persistence, privilege escalation, and modern offensive techniques used in enterprise, cloud, and hybrid environments.
Defensive Security: Approaches to building effective defensive capabilities, SOC operations, Detection Engineering, detection rule development, monitoring enhancement, and response strategies against modern threats.
DFIR – Digital Forensics & Incident Response: Practical lessons learned from cyberattack investigations, incident handling, ransomware response, APT investigations, forensic analysis, log analysis, incident response playbooks, and real-world IR experiences.
Threat Intelligence & Threat Hunting: Topics covering threat landscape analysis, hunting methodologies, IOC/TTP analysis, ATT&CK mapping, Threat Intelligence program development, and proactive threat hunting practices.
Malware Analysis & Reverse Engineering: Deep technical research on malware analysis, reverse engineering, unpacking, obfuscation, behavioral analysis, and evasion techniques.
Application Security & DevSecOps: Modern application security practices, secure SDLC, DevSecOps, API security, CI/CD security, software supply chain security, and security challenges in modern software development pipelines.
AI/ML in Cybersecurity: Research and case studies involving AI/ML for both offensive and defensive security, including AI-assisted attacks, automated phishing, AI SOC, detection automation, behavioral analysis, and GenAI applications in cybersecurity.
Vulnerability Research & 0-day: Research on vulnerabilities, exploitation techniques, fuzzing, binary exploitation, 0-day discovery, and innovative approaches to vulnerability research.
Human Factor & Social Engineering: Research related to human behavior, social engineering, phishing simulations, insider threats, security awareness, and the evolving role of humans in modern cybersecurity.
Security Automation & Orchestration: Approaches to automating security workflows, SOAR, orchestration, autonomous response, and detection & response automation to reduce reliance on manual operations.
Data Protection, Privacy & Compliance: Topics related to data protection, privacy, governance, compliance, data security strategies, and legal requirements in the digital transformation era.
Hardware / IoT / Embedded Security: Research on hardware security, IoT devices, firmware security, embedded systems, smart devices, and related exploitation techniques.
Critical Infrastructure & OT Security: Topics focused on protecting critical infrastructure, OT/ICS security, industrial environments, energy, manufacturing systems, and cybersecurity risks in operational technology environments.
Bug Bounty & Real-world Exploitation: Real-world stories from bug bounty programs, responsible disclosure journeys, exploitation case studies, and lessons learned from practical engagements.
Security Research Methodology & Tools: Security research methodologies, self-developed tools, frameworks supporting pentest/hunting/analysis activities, and innovative approaches to cybersecurity research.
Cloud Security & Cloud-native Security: Topics related to Kubernetes, container security, serverless security, multi-cloud and hybrid cloud architectures, IAM, CSPM, CNAPP, CDR, DevSecOps in cloud environments, and real-world case studies involving cloud misconfigurations or attacks.

Alongside traditional cybersecurity topics, we especially encourage submissions related to:

AI-powered attacks and offensive automation
Automated defense and detection systems
Eliminating human bottlenecks in cybersecurity operations
Autonomous SOC and AI-driven Security Operations
Trust, compliance, legal, and risk management challenges in the AI era
The future role of humans in an increasingly automated cybersecurity ecosystem

However, “NoHuman” is not a limitation. Any high-quality technical content with strong expertise and practical value is welcome at BSides Hanoi 2026.

For more information, please contact:

📩 contact@bsideshanoi.net
📞 (+84) 91 800 2056

BSides Hanoi 2026: Call for Papers | No Human

Related Pressroom

BSides Hanoi 2025 – AI Hack You: When AI becomes both weapons and shields

VSEC accompanies Vietnam Security Summit 2025 – Building resilience & trust in the everchanging world

VSEC collaborates with EVNNPT for a cybersecurity incident response drill on their website system