DEVCORE CONFERENCE 2026

DEVCORE CONFERENCE 2026
攻擊導向的專業資安技術研討會

2025 年，網路攻擊更趨頻繁及規模化，在 AI 的推波助瀾下，不只防禦方得以更精準捕獲攻擊者，對攻擊者而言，也利用 AI 對企業產生更多威脅。而這些資安議題的影響範疇，更是從企業本身的防護政策、延伸至其供應商，甚至產品安全。

DEVCORE 深信，厚實的技術同時是攻擊及防禦的根本，因此，我們持續舉辦這場專注於攻擊導向的技術研討會 —— DEVCORE CONFERENCE，聚焦技術本質，由駭客視角出發，帶您探索不一樣的攻擊技術與手法，期望由攻擊思考防禦策略，並在問題發生前，掌握新型攻擊手法。

本次研討會將聚焦「技術」核心，探討針對不同目標、不同領域的資安網路技術應用。期盼透過這些攻擊戰術及手法的分享，與您共同應對不斷變化的網路攻擊威脅。

Please find the English information below.

| 活動資訊 |

時間：2026/03/14（六）08:40 - 16:50
地點：TICC 台北國際會議中心 201 會議室（台北市信義區信義路五段 1 號）

| 議程表 |

◼︎ 8:40 - 9:20 報到

◼︎ 9:20 - 9:30 開幕

◼︎ 9:30 - 10:00 紅隊的 AI 視界：攻防演練中的 LLM
Alan | DEVCORE 紅隊主管
🕛 30 min

近年來，各大企業積極導入生成式 AI，希望藉此提升開發效率並加速營運流程，同時資安領域也開始大量採用 AI 技術。本議程將以紅隊視角分享 LLM 在進攻端的應用案例，以及我們在攻防演練中觀察到企業於導入 LLM 時常被忽略的安全風險。

◼︎ 10:00 - 10:10 中場休息

◼︎ 10:10 - 10:40 什麼！原來連 Wi-Fi 不需要密碼！？
Ray | DEVCORE 資安研究員
🕛 30 min

Wi-Fi 是目前最普遍且重要的網路協議之一，幾乎所有人家中都有 Wi-Fi 網路。Wi-Fi 內網中的各種設備，像是網路硬碟, 監視器, 個人電腦等，也受到 Wi-Fi 密碼的保護，不被壞人存取你的秘密。

但你以為超長的 Wi-Fi 密碼，就可以阻止別人對你的內網壞壞了嗎？理想與現實往往有巨大的落差，細小的破口，讓那道絕對防禦形同虛設。

在演講中會帶大家從研究員的角度，從 MCU firmware 和 kernel driver 的逆向工程到漏洞挖掘，從本質上了解 Wi-Fi 實作上的安全問題。

◼︎ 10:40 - 10:50 中場休息

◼︎ 10:50 - 11:30 Beyond CoGUI: Exposing the FishingMaster PhaaS Ecosystem Behind Global Phishing Campaigns
Shadow & Albert | 獨立研究者
🕛 40 min

CoGUI is a widely reported phishing kit, yet the infrastructure and operators behind it have remained largely in the shadows. In this talk, we trace CoGUI back to FishingMaster, a previously unreported Chinese Phishing-as-a-Service (PhaaS) platform, and expose its two reincarnations of infrastructure and business operations.

Although most CoGUI campaigns focus on Japan, our analysis uncovers additional phishing operations targeting the United States, Europe, Australia, and beyond. Attendees will gain practical techniques for tracking modern China-based PhaaS operations, including infrastructure pivoting and methods for monitoring Telegram-driven phishing activities across regions.

◼︎ 11:30 - 11:40 中場休息

◼︎ 11:40 - 12:10 根源性惡魔：Hack the package registries
Splitline | DEVCORE 資安研究員
🕛 30 min

你說的對，裝 package 的時候不要打錯字，用可信任的開發者做的套件，好好用公認知名的安裝來源……

欸但是，如果你的整個 package registry 根本被駭掉了咧 🤓☝️

這場議程就是要告訴你，我們是如何駭掉橫跨 3+ 個程式語言，從前端到後端的套件儲存庫！

◼︎ 12:10 - 13:30 午餐時間

◼︎ 13:30 - 14:00 獵捕到偵測的最後一哩路
Joey | Security Research Engineering Technical Leader of Cisco Talos
🕛 30 min

威脅獵捕（Threat Hunting）讓資安團隊能主動運用 EDR（端點偵測與回應）數據，搜尋網路中潛藏且尚未被偵測的威脅。其目標是在攻擊者造成更大損害前，將其識別並清除，以完成從發現到根除的完整安全生命週期。

然而，理想與現實之間總存在著差距。本次演講將透過威脅研究員所遭遇的真實案例，帶領各位深入了解威脅獵捕過程中可能面臨的種種挑戰與情境，並一同探討那句耳熟能詳的質問：「為什麼沒有偵測到？」-- 這句話背後，究竟隱藏著怎樣不為人知的故事。

◼︎ 14:00 - 14:10 中場休息

◼︎ 14:10 - 14:50 列印復仇: 如何在 Pwn2Own 2025 Ireland 打下 Canon 印表機
TwinkleStar03 | DEVCORE 實習生
🕛 40 min

「兩年前前人種下的因，成就在 2025 對 Canon 印表機的成功復仇故事。」

本議程將分享我與 DEVCORE Research Team Mentor 們一同合作，從攻擊面分析出發，逐步完成漏洞挖掘，並貫徹「靈能導向」Exploit 開發，最終在 Pwn2Own 2025 Ireland 成功攻破 Canon 印表機的通靈式實戰旅程。
 
◼︎ 14:50 - 15:20 Coffee Break

◼︎ 15:20 - 15:50 Turning Browser Features into Exploits
Huli | 技術部落格 Huli's blog 站長
🕛 30 min

什麼東西比修不了的漏洞還可怕？答案是：「這不是漏洞，這是 feature」。

無論是網頁的標準或是瀏覽器的實作，都隱藏著許多非常非常小的細節，而這些細節單看就只是瀏覽器的 feature 而已，沒什麼特別的。但是當這些細節被其他資安研究員發現時，便搖身一變成為了可以突破限制的利器，在看似牢不可破的情境下，用這些 feature 打出洞來。

本場議程將分享幾個實際案例，帶大家一起看看到底是哪些 feature 這麼神奇。

◼︎ 15:50 - 16:00 中場休息

◼︎ 16:00 - 16:40 Playing Cat and Mouse with WAF: the React2Shell Vercel CTF
Ginoah & Maple | Co-founder of Anatomist Security & DEVCORE 滲透測試工程師
🕛 40 min

At the end of 2025, React2Shell (CVE-2025-55182) swept through like a nightmare. Almost no preconditions required. If your framework used React Server Components like Next.js or React Router, an unauthenticated attacker could achieve RCE with a single HTTP request. Vercel, at the center of the storm, made a bold move. $50k for every WAF bypass. Find a way through, and claim your Christmas gift. A cat-and-mouse game began. We bypassed, they patched. The rules kept changing, the battlefield kept shifting. From HTTP parser differentials to JavaScript black magic and gadget hunting. This session walks you through every bypass and every trick we pulled out of the hat.

◼︎ 16:40 - 17:00 閉幕

| 票種及購票管道 |

【KKTIX 網站】

• 早鳥票 $6,000
• 一般票 $8,000
• 晚鳥票 $10,000
• /dev/meet 小聚折扣票 $4,500 

【DEVCORE 網站】：https://conf.devco.re/2026/#ticket

• 學生票 $2,500：限額 100 名，購票請至 DEVCORE 網站。報到時將查驗資格，查驗方式請見下方報到流程。
• 一般團購票：根據購票人數將享不同團購優惠，請見 DEVCORE 網站。

【其他】

• 若您為政府機關、資通訊/資安經銷廠商，並有購買 5 張以上票券需求，敬請聯繫 conf@devco.re 購買「企業專享票」。將依團購票券張數享有不同優惠。 
  

| 優惠資訊 |

配合 OffSec 原廠年末促銷優惠活動及 DEVCORE CONFERENCE 2026 售票活動開跑，自 2025/11/12 起向 DEVCORE 購買 OffSec 課程的學員，將有機會獲得一張 DEVCORE CONFERENCE 2026 免費門票！

• 優惠期間：即日起至 2025/12/31（二）為止。

• 適用課程：

  • 與 DEVCORE 購買 OffSec 線上課程的學員，將收到一張 DEVCORE CONFERENCE 2026 免費門票，限量 50 位！

  • 報名 OSCP+ 年底前的兩班課程學員皆會直接獲得邀請碼。

| 報名方式 |

• 早鳥票、一般票、晚鳥票：可於該票種售票期間直接購買。

• /dev/meet 小聚折扣票：僅限已報名並簽到參與 /dev/meet 小聚者。請使用收到之邀請碼進行購買。請注意，每個邀請碼僅能使用 1 次，且報名人的姓名與電子郵件資訊需與 /dev/meet 小聚參與人一致。

• 其餘票種：請使用您取得之邀請碼，進行票券兌換。

| 報到流程 |

出示入場 QR Code

• 至一樓報到處出示 KKTIX QR Code 辦理報到手續：
  • 持貴賓、媒體邀請票的來賓，請至「VIP、媒體服務處」櫃檯辦理。
  • 持貴賓、媒體邀請票以外票種的來賓，請至「會眾報到處」櫃檯辦理。

身份核對

• 持下列特殊票種的來賓，報到時敬請協助完成身份核對程序：
  • 學生票：須符合「學籍驗證」資格。如無法提供學籍驗證之相關證明文件，將以「年齡驗證」進行身份核對。均不符合資格者，請在本售票頁面重新購買晚鳥票方得入場。
    • 學籍驗證：持 114 學年度第二學期學生證、當年度學雜費繳費證明、成績證明等足以證明在學事實之文件。
    • 年齡驗證：持身分證、駕照、健保卡、護照等任一有照片之證件，且現年低於 26 歲以下（民國 89 年 9 月 1 日後出生）。
  • 企業邀請票：請提供名片一張。

領取識別證與贈品

• 依照身份別，報到處工作人員將提供對應的識別證與精美贈品：
  • 本活動將憑識別證進出會場、領取餐點，故請全程配戴識別證。
  • 建議活動當日儘早報到，以確保獲得尺寸合適的紀念 T-shirt。

進入會場

• 報到完成後，即可搭乘手扶梯或電梯至二樓活動會場。

| 注意事項 |

• 主辦單位保有修改、終止、變更活動內容細節之權利。

• 本活動委託 KKTIX 代開發票及辦理，故購票前須先完成 KKTIX 會員註冊並通過手機驗證。

• 由 KKTIX 購買之票券發票：（包含早鳥票、一般票、晚鳥票、/dev/meet 折扣票）

  • 若您為持票人，請自行向購票人索取發票。

  • 1 筆訂單僅會開立 1 張發票，如需 1 張以上發票，敬請個別購票。 

  • 委由 KKTIX 代為處理退票退款事宜，退票時將酌收 10% 手續費，且活動前 10 天內（不含活動日）不予退票。

  • 發票將於付款完成後 1-2 個工作天內寄至購票人的信箱。

  • 有任何發票開立作廢、退票作業相關問題，請於平日致電 KKTIX 客服中心 02-2752-2836。

• 由 DEVCORE 網站開立之票券發票：（包含學生票、一般團購票）

  • 若您為持票人，請自行向購票人索取發票。

  • 1 筆訂單僅會開立 1 張發票，如需 1 張以上發票，敬請個別購票。 

  • 發票將於付款完成後 5 個工作天內寄至購票人的信箱。

  • 有任何發票開立作廢、退票作業相關問題，請聯繫 conf@devco.re 為您處理。

更多活動消息請密切鎖定：

• DEVCORE Facebook 粉絲專頁：https://fb.com/D3VC0RE

• DEVCORE 研討會網站：https://conf.devco.re/2026/
   

DEVCORE CONFERENCE 2026

Offensive-Security-Focused Technical Conference

In 2025, cyberattacks are growing more frequent and large-scale. With the rise of AI, defenders can detect threats more precisely — yet attackers are also using AI to create new, more complex risks. These cybersecurity issues now affect not only a company’s internal defenses, but also its suppliers and even product security.

At DEVCORE, we believe strong technical expertise is the foundation of both offense and defense. That’s why we continue to host DEVCORE CONFERENCE, a technology-driven, offense-oriented cybersecurity forum. From a hacker’s perspective, we explore novel attack techniques and insights — to inspire proactive defense strategies and help organizations anticipate emerging threats before they strike.

This year’s conference will delve into the core of technical expertise, examining cybersecurity tactics and applications across different targets and domains. Through these in-depth technical sessions, we aim to equip participants with the mindset and skills to face the ever-evolving landscape of cyber threats.

| Event Information |

Time & Date: March 14, 2026 (Sat), 08:40 – 16:50
Venue: No. 1, Section 5, Xinyi Rd, Xinyi District, Taipei City, 110
Taipei International Convention Center (TICC) Room 201

| Speakers & Talks |

Expected to be available around mid-December.

| Buy Tickets |

Via KKTIX:

• Early-bird Pass: $6,000
• Standard Pass: $8,000
• Late Access Pass: $10,000
• /dev/meet Discount Pass: $4,500

Via DEVCORE Website:

• Student Pass: $2,500, 100 seats only. Please note that student attendees are required to complete student verification during on-site check-in.
• Group Pass (5 tickets or more): 
  If you wish to purchase five or more tickets as an individual (not under an organization or company), please visit DEVCORE website to purchase Group Pass. Discounts are applied based on the total number of tickets purchased.

Others: 

• If you are employed at a government agency, information and communications technology (ICT) company, or cybersecurity reseller/vendor, and plan to purchase five or more passes, please contact us via conf@devco.re with the number of passes you wish to purchase. Discount rates will be offered based on the total quantity, and our team will reach out to assist you directly.

| Discounts |

In celebration of OffSec’s year-end promotion and the kickoff of DEVCORE CONFERENCE 2026 ticket sales, students who purchase OffSec online courses through DEVCORE starting from 2025/11/12 will have the chance to receive a free ticket to DEVCORE CONFERENCE 2026.

• Promotion Period: From now until December 31, 2025 (Tue)
• Eligible Courses: 
  • Students who purchase OffSec online courses through DEVCORE will receive one free DEVCORE CONFERENCE 2026 ticket, limited to 50 participants.
  • Students enrolled in either of the DEVCORE OSCP+ classes before the end of the year will receive an invitation code.

| How to Register |

• Early-bird, Standard, and Late Access Tickets:

  • Can be purchased directly during the respective sales periods.

• /dev/meet Discount Ticket:

  • Exclusively for participants who have registered and checked in at a /dev/meet gathering. Please use the invitation code you received to purchase the ticket. Note that each invitation code can only be used once.

• Other Ticket Types:

  • Please use the invitation code you received to redeem the ticket.

| Check-in |

• Present your KKTIX QR Code at the registration counter on the 1st floor:

  • Guests holding VIP or Media Invitation Tickets: Please proceed to the VIP & Media Service Desk.

  • Guests holding all other ticket types: Please proceed to the Attendee Registration Desk.

• Guests with special ticket types are required to complete identity verification at check-in:

• • Student Pass Holders: Must meet the Student Verification criteria.

    • If you cannot provide valid proof of student status, Age Verification will be required. Those who do not meet either qualification will need to purchase a Late-access Ticket to enter the venue.

      • Student Verification: Present one of the following valid documents — student ID for the 114 Academic Year, proof of tuition payment for the current year, or an academic transcript confirming active enrollment.

      • Age Verification: Present one valid photo ID (ID card, driver’s license, NHI card, or passport). You must be under 26 years old (born after September 1, 2000).

    • Corporate Invitation Ticket Holders: Please present one business card at check-in.

• Upon verification, our staff will provide you with your badge and event gifts:

• • The badge is required for venue access and meal collection throughout the event. Please wear it at all times.

  • We recommend checking in early to ensure you receive your commemorative T-shirt in the right size.

• After completing check-in, you may proceed directly to the 2nd-floor conference hall via the escalator or elevator.

| Notes |

• The organizer reserves the right to modify, terminate, or change the details of the event at any time.
• This event authorizes KKTIX to issue electronic invoices. Therefore, you must complete KKTIX membership registration and mobile verification before purchasing tickets.
• For tickets purchased through KKTIX (including Early-bird, Regular, Late-access, and dev/meet discount tickets):
  • If you are a ticket holder, please request the invoice directly from the purchaser.
  • Each order will generate one invoice only. If you require more than one invoice, please make separate purchases.
  • Refunds and cancellations are handled by KKTIX, with a 10% processing fee.
  • No refunds will be accepted within 10 days before the event date (excluding the event day).
  • Invoices will be sent to the purchaser’s registered email within 1–2 business days after payment is completed.
  • For inquiries regarding invoice issuance, voiding, or refunds, please contact KKTIX Customer Service at +886-2-2752-2836 during business hours.
• For tickets purchased through the DEVCORE Website (including Student and Group Pass):
  • If you are a ticket holder, please request the invoice directly from the purchaser.
  • Each order will generate one invoice only. If you require more than one invoice, please make separate purchases.
  • Invoices will be sent to the purchaser’s registered email within 5 business days after payment is completed.
  • For inquiries regarding invoice issuance, voiding, or refunds, please contact conf@devco.re.

Stay tuned for the latest updates:

• DEVCORE Facebook Page: https://fb.com/D3VC0RE

• DEVCORE Conference Website: https://conf.devco.re/2026/