Hack the box is an online platform that provides access to boxs which can be used to safely practice hacking skills.
Jack one of the organisers bought in an awesome GPU hashing rig and gave us a talk about how hashes are cracked. We got hands on experience with hash cat. We used the classic rock you password file along with custom masks to try and crack as many passwords as we could.
May 2026
TC gave a talk on the mess that is OAuth 2.0 and OpenID Connect. From making sure that the encryption algorithm for the JWTs is checked to man in the middle attacks we covered a range of topics.
Apr 2026
Blaise St-Laurent a local cloud expert that allegedly likes to "Yell at Clouds" ave a talk about how EntraID's tools for access control are used. I found the section on Agentic Identities to be particularly interesting. It presents a way to prevent some of horror story's i hear of a rouge AI agent destroying databases and code bases.
We took on the Return machine box from Hack the box after the talk.
Mar 2026
Mat Ruane from Bastion Security gave a great talk. He focused on the difference between vulnerability scans, penetration tests and red teaming. He also touched on different frameworks like APT's, TTP's and scoping/ rules of engagement.
We took on the retired Soulmate box from Hack the box after the talk.
Feb 2026
From their meet up page "Sec for Devs is a safe space for developers to discuss and learn, rant and vent, share and care about secure coding."
Toby Reynolds from TheXero gave a talk about WiFi security testing, covering common attack techniques, real‑world scenarios, and how attackers approach wireless environments.
After the talk we got some hands on practice with a VM that emulated a real WiFi environment. where we forced a client to disconnect from the network and then captured the 4 way handshake when they reconnected. The target was using WPA2.
May 2026