{"product_id":"adversarial-thinking-greg-conti-dctlv2026","title":"Adversarial Thinking: The Art of Dangerous Ideas - Greg Conti \u0026 Tom Cross - DCTLV2026","description":"\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eName of Training\u003c\/strong\u003e\u003cspan\u003e\u003cstrong\u003e:\u003c\/strong\u003e Adversarial Thinking: The Art of Dangerous Ideas\u003cbr\u003e\u003c\/span\u003e\u003cstrong\u003eTrainer(s)\u003c\/strong\u003e\u003cspan\u003e\u003cstrong\u003e: \u003c\/strong\u003eGreg Conti \u0026amp; Tom Cross\u003cbr\u003e\u003c\/span\u003e\u003cstrong\u003eDates\u003c\/strong\u003e\u003cspan\u003e\u003cstrong\u003e:\u003c\/strong\u003e \u003cmeta charset=\"utf-8\"\u003eAugust 10-11, 2026\u003cbr\u003e\u003c\/span\u003e\u003cspan\u003e\u003cstrong\u003eTime:\u003c\/strong\u003e 8\u003c\/span\u003e\u003cspan\u003e:00 am to 5:00 pm \u003cbr\u003e\u003c\/span\u003e\u003cstrong\u003eVenue\u003c\/strong\u003e\u003cspan\u003e\u003cstrong\u003e:\u003c\/strong\u003e \u003cmeta charset=\"utf-8\"\u003eLas Vegas Convention Center\u003cbr\u003e\u003c\/span\u003e\u003cstrong\u003eCost\u003c\/strong\u003e\u003cspan\u003e\u003cstrong\u003e: \u003c\/strong\u003e$2,500 (USD)\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eShort Summary:\u003c\/strong\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003eAdversarial thinking is a hacker superpower, and it can be learned. In this fun and engaging course, you’ll develop practical adversarial thinking skills to spot flaws in systems, anticipate adversary behavior, make better risk decisions, build more secure products, and shift fluidly into an attacker’s mindset.\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eCourse Description: \u003c\/strong\u003e\u003c\/p\u003e\n\u003cp\u003eHackers have a unique way of seeing the world, especially the technological artifacts within it. Where most people see systems as their designers intended, hackers see systems as they truly are, revealing hidden behaviors, unintended uses, and overlooked weaknesses. For centuries, military and intelligence strategists have pursued the same perspective, seeking advantage by understanding how systems and adversaries actually behave rather than how they are assumed to behave. This course immerses you in that way of seeing, pushing past surface-level understanding to expose how real attackers find leverage in complex systems.\u003c\/p\u003e\n\u003cp\u003eThis fun, fast-moving, and unique course is a mix of guided discussion, practical exercises, thought experiments, role-playing, and hands-on activities designed to fundamentally change how you see systems and adversaries. You’ll enhance your adversary mindset through hands-on activities like cheating on a test (with prizes!), insider-threat role play, and security challenges such as lock picking, while also uncovering how subtle dependencies and hidden assumptions create exploitable vulnerabilities. You’ll wargame foreign intelligence targeting, deception, and crowd-sourced adversaries, and learn how standards, abstractions, and mental models conceal vulnerabilities attackers exploit every day. Drawing on both hacker culture and military thinking, the course deliberately helps you explore how products, processes, and people are attacked, manipulated, or turned against their creators. You leave with a transformed adversarial mindset and practical techniques you can immediately apply to real-world systems. Come join us!\u003cbr\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cspan\u003e\u003cstrong\u003eCourse Outline: \u003c\/strong\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cstrong\u003eDAY 1\u003c\/strong\u003e\u003c\/p\u003e\n\u003cp\u003eCourse Introduction – Establishes course goals, expectations, and frames adversarial thinking as an essential and learnable skill rather than a something only a rare few can possess.\u003c\/p\u003e\n\u003cp\u003eLock Picking and Physical Security – Introduces adversarial thinking through hands-on exploration of lock picking and a presentation on physical security controls, assumptions, and real-world failure modes.\u003cbr\u003e\u003c\/p\u003e\n\u003cp\u003eSurvey of Adversarial Relationships – Surveys different types of adversarial relationships across technical, social, and organizational contexts to build a shared mental model.\u003cbr\u003e\u003c\/p\u003e\n\u003cp\u003eIntroduction to Adversarial Thinking – Introduces the foundational concepts, language, and mental models that define adversarial thinking and attacker perspectives.\u003cbr\u003e\u003c\/p\u003e\n\u003cp\u003eAdversarial Relationships: Culture vs Counterculture – Explores the origins of the hacker community, how culture, norms, and countercultures shape adversary behavior and create opportunities for both playful hacks and malicious exploitation.\u003cbr\u003e\u003c\/p\u003e\n\u003cp\u003eCase Study: HUMINT and Travel – Uses real-world human intelligence and travel scenarios to examine targeting, tradecraft, and defenses.\u003cbr\u003e\u003c\/p\u003e\n\u003cp\u003eReverse Engineering a Company – Teaches students how adversaries analyze organizations to identify structure, incentives, vulnerabilities, dependencies, and points of leverage.\u003cbr\u003e\u003c\/p\u003e\n\u003cp\u003eProbing a Company – Explore how adversaries could commit fraud against a notional company. Teams of students develop strategies despite limited resources and a time constraint. Follow-up discussion addresses countermeasures that would frustrate their strategies.\u003c\/p\u003e\n\u003cp\u003eDay 1 Wrap-up and Homework – Synthesize Day 1 material and prepares students for their homework assignment: come up with one or more cheating strategies for the cheating test on Day 2.\u003c\/p\u003e\n\u003cp\u003e\u003cstrong\u003eDAY 2\u003c\/strong\u003e\u003c\/p\u003e\n\u003cp\u003eDay 2 Introduction – Reorient students to key concepts from Day 1 and frames the second day’s focus on decision-making, deception, and complex adversarial dynamics.\u003cbr\u003e\u003c\/p\u003e\n\u003cp\u003eKobayashi Maru – Students take a test in a proctored environment. To pass the test, they must cheat. If they don’t cheat or get caught cheating they fail the exam. We award prizes for the most innovative strategies, based on a class vote. \u003cbr\u003e\u003c\/p\u003e\n\u003cp\u003eDeception – Examine deception as a core adversarial tool, including how it is constructed, sustained, detected, and countered.\u003cbr\u003e\u003c\/p\u003e\n\u003cp\u003eMalware and Adversary Intent – Explore how malware reflects adversary intent, tradecraft, and objectives beyond purely technical indicators. We’ll reverse engineer a simple malware sample as a group exercise. \u003cbr\u003e\u003c\/p\u003e\n\u003cp\u003eBeginner Mind – Introduce techniques for disrupting fixed mental models and approaching adversarial problems with fresh perspective and curiosity. We include an in-depth, real-world, example of how attackers used the difference between the RFC and the actual implementation to find an exploitable vulnerability.\u003cbr\u003e\u003c\/p\u003e\n\u003cp\u003eDangerous Assumptions – Identify common assumptions defenders make and shows how adversaries exploit them to gain leverage. We’ll also show that many a bad day in cybersecurity comes from a flawed assumption.\u003cbr\u003e\u003c\/p\u003e\n\u003cp\u003eCase Study: Crowdsourced Adversaries – Examine how large, loosely coordinated groups act as adversaries, using real-world examples to explore scale, motivation, and emergent behavior.\u003cbr\u003e\u003c\/p\u003e\n\u003cp\u003eGlobal Thermonuclear War – This module title is a nod to the movie War Games. Here we discuss the ultimate adversarial environment, war, and how companies can prepare for conflict in an increasingly unstable world. We’ll draw on lessons learned by companies in Ukraine\/Russia and Middle East conflicts to present an actionable way to track conflicts that may impact their businesses and be prepared.\u003cbr\u003e\u003c\/p\u003e\n\u003cp\u003eCourse Wrap-up, Final Exam and Feedback – Consolidate key takeaways, connect concepts across both days, and gather student feedback. \u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eDifficulty Level:\u003c\/strong\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003eBeginner to Intermediate\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003eBeginner Definition - The student has an interest in the topic presented and general technology knowledge that a power user or undergraduate student may have acquired.\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eIntermediate Definition - The student has education and some experience in the field and familiarity with the topic being presented. The student has foundational knowledge that the course will leverage to provide practical skills on the topic.\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eSuggested Prerequisites:\u003c\/strong\u003e\u003c\/p\u003e\n\u003cp\u003eNo formal prerequisites are required. This course is appropriate for motivated beginners as well as mid-career practitioners in information security and adjacent disciplines who regularly face adversaries or competitive threats. Participants often include security practitioners, engineers, software developers, AI trust and safety professionals, and managers who lead or support technical teams.\u003c\/p\u003e\n\u003cp\u003eWhile the course uses technical examples, it is not a tool-centric or code-heavy class. Those primarily seeking deep instruction in programming, exploit development, or specific security tools may find the focus less aligned with their goals.\u003cbr\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eWhat Students Should Bring: \u003c\/strong\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003eA devious and cunning mind, or the desire to acquire one :)\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eWhat the Trainer Will Provide:\u003c\/strong\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003eAll course materials, exercises, and contest prizes.\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eTrainer(s) Bio:\u003c\/strong\u003e\u003c\/p\u003e\n\u003cp\u003e\u003cstrong\u003eGreg Conti\u003c\/strong\u003e is a hacker, maker, and computer scientist. He is a ten-time DEF CON speaker, a seven-time Black Hat speaker, and has been a Black Hat Trainer for 10 years. He’s taught hacking and information security techniques at West Point, Stanford University bootcamps, NSA\/U.S. Cyber Command, and for private clients in the financial, non-profit, and cybersecurity sectors. Greg is Co-Founder and Principal at Kopidion, a cyber security training and professional services firm. \u003c\/p\u003e\n\u003cp\u003eFormerly he served on the West Point faculty for 16 years, where he led their cybersecurity research and education programs. During his U.S. Army and Military Intelligence career he co-created U.S. Cyber Command’s Joint Advanced Cyberwarfare Course, deployed to Iraq as Officer-in-Charge of U.S. Cyber Command’s Expeditionary Cyber Support Element, and was the first Director of the Army Cyber Institute. \u003c\/p\u003e\n\u003cp\u003eGreg is co-author of On Cyber: Towards an Operational Art for Cyber Operations, and approximately 100 articles and papers covering hacking, online privacy, usable security, cyber conflict, and security visualization. Greg holds a B.S. from West Point, an M.S. from Johns Hopkins University, and a Ph.D. from the Georgia Institute of Technology, all in computer science. His work may be found at gregconti.com (https:\/\/www.gregconti.com\/), kopidion.com (https:\/\/www.kopidion.com\/) and LinkedIn (https:\/\/www.linkedin.com\/in\/greg-conti-7a8521\/).\u003cbr\u003e \u003cbr\u003e\u003cstrong\u003eTom Cross\u003c\/strong\u003e is an entrepreneur and technology leader with three decades of experience in the hacker community. Tom attended the first DefCon in 1993 and he ran bulletin board systems and listservs in the early 1990’s that served the hacker community in the southeastern United States. He is currently the Head of Threat Research at GetReal Security, Principal at Kopidion, and creator of FeedSeer, a news reader for Mastodon. Previously he was CoFounder and CTO of Drawbridge Networks, Director of Security Research at Lancope, and Manager of the IBM Internet Security Systems X-Force Advanced Research team. He has written papers on collateral damage in cyber conflict, vulnerability disclosure ethics, security issues in internet routers, encrypting open wireless networks, and protecting Wikipedia from vandalism. He has spoken at numerous security conferences, including Black Hat Briefings, Defcon, CyCon, HOPE, Source Boston, FIRST, and Security B-Sides. He has a B.S. in Computer Engineering from the Georgia Institute of Technology. He can be found on Linkedin as https:\/\/www.linkedin.com\/in\/tom-cross-71455\/, and on Mastodon as https:\/\/ioc.exchange\/@decius. \u003cstrong\u003e\u003c\/strong\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eProficiency Exam Option:\u003c\/strong\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003eThis course has the option for a proficiency certificate add-on. If you choose the proficiency add-on, you will complete a written exam that evaluates your understanding of the course content. You must score at least 70% to pass.\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003ePlease reach out to training@defcon.org for any questions related to the proficiency exam and certificate option.\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cstrong\u003eRegistration Terms and Conditions: \u003c\/strong\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eTrainings are refundable before July 11, 2026, minus a non-refundable processing fee of $250.\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eBetween July 11, 2026 and August 5, 2026 partial refunds will be granted, equal to 50% of the course fee minus a processing fee of $250.\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eAll trainings are non-refundable after August 5, 2026.\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eTraining tickets may be transferred to another student. Please email us at training@defcon.org for specifics.\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eIf a training does not reach the minimum registration requirement, it may be cancelled. In the event the training you choose is cancelled, you will be provided the option of receiving a full refund or transferring to another training (subject to availability).\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eFailure to attend the training without prior written notification will be considered a no-show. No refund will be given.\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eDEF CON Training may share student contact information, including names and emails, with the course instructor(s) to facilitate sharing of pre-work and course instructions. Instructors are required to safeguard this information and provide appropriate protection so that it is kept private. Instructors may not use student information outside the delivery of this course without the permission of the student.\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eBy purchasing this ticket you agree to abide by the \u003c\/span\u003e\u003ca href=\"https:\/\/defcon.org\/html\/links\/dc-code-of-conduct.html\"\u003e\u003cspan\u003eDEF CON Training Code of Conduct\u003c\/span\u003e\u003c\/a\u003e\u003cspan\u003e and the registration terms and conditions listed above.\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eSeveral breaks will be included throughout the day. Please note that food is not included.\u003c\/span\u003e\u003cspan\u003e\u003cb\u003e\u003c\/b\u003e\u003c\/span\u003e\u003c\/p\u003e\n\u003cp dir=\"ltr\"\u003e\u003cspan\u003eAll courses come with a certificate of completion, contingent upon attendance at all course sessions. Some courses offer an option to upgrade to a certificate of proficiency, which requires an additional purchase and sufficient performance on an end-of-course evaluation.\u003c\/span\u003e\u003c\/p\u003e","brand":"Las Vegas 2026","offers":[{"title":"Course only - Aug 10-11","offer_id":47688457060570,"sku":null,"price":2500.0,"currency_code":"USD","in_stock":true},{"title":"Course + Proficiency Exam - Aug 10-11","offer_id":47695961325786,"sku":null,"price":2800.0,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0629\/2088\/4442\/files\/Kopidion-_Adversarial_Thinking.png?v=1774050927","url":"https:\/\/training.defcon.org\/products\/adversarial-thinking-greg-conti-dctlv2026","provider":"defcontrainings","version":"1.0","type":"link"}