Speakers




.: Speakers :.

Hendra Rudiansyah & Obrina Briliyant - "Network Packet Security Analysis using SQL-RAG Approach and Cybersecurity-Tuned LLM"


Hendra Rudiansyah is Alumnus Cybersecurity Warwick University yang haus ilmu, dan teknokrat di bidang keamanan informasi. Penikmat kopi Gayo Wine yang suka berburu “celah” dan “ngulik” mulai dari OSINT, Soceng, Red Teaming, AI & Cybersec intersection, cyber defense & resilience hingga Security governance and compliance.


Obrina Brilliyant adalah peneliti keamanan siber di Cardiff University & dosen Poltek SSN, fokus riset pada automated defense, kriptografi, dan keamanan IoT.


"Keamanan siber modern menghadapi tantangan besar dalam menganalisis data jaringan yang kian masif. Meski machine learning membantu mendeteksi anomali dan mengklasifikasi serangan, analisis mendalam untuk audit maupun forensik masih banyak bertumpu pada pencarian manual dan keahlian manusia. Hambatan ini berpotensi memengaruhi kepatuhan dan bahkan menimbulkan kerugian bisnis.
Presentasi ini menawarkan kerangka kerja baru untuk otomatisasi analisis trafik jaringan dengan memanfaatkan large language model (LLM). Pendekatan ini menggabungkan kueri terstruktur (SQL) dan retrieval-augmented generation (RAG), sehingga pertanyaan sederhana dapat diterjemahkan menjadi wawasan yang cepat, akurat, dan mudah dipahami.
Evaluasi menggunakan RAG assessment suite (RAGAS) diterapkan untuk menilai tingkat akurasi dari output. Hasilnya menunjukkan perbedaan menarik antara LLM umum (base model) dan LLM khusus keamanan siber (specialized model), sekaligus membuka perspektif baru tentang bagaimana AI dapat mendukung organisasi dalam melakukan analisis jaringan secara efisien dan mendalam."


Baskoro Adi Pratomo - "Game untuk Pembelajaran Keamanan Siber"
Baskoro Adi Pratomo is a lecturer and Head of the Subdirectorate for Digital Applications and Platforms at Institut Teknologi Sepuluh Nopember (ITS), Surabaya, Indonesia. With a background in network security and malware analysis, he is the Principal Investigator of the ITS Nabu project—an open-source cybersecurity training platform featuring adaptive and collaborative learning modes. His research and community engagement span digital forensics, intrusion detection, and AI-assisted cyber defense.
Under his leadership, ITS Nabu has trained hundreds of participants from academia, government, and industry, and has been recognized by international bodies including the APNIC Foundation and QS Reimagine Education (2024). Baskoro collaborates with partners in the UK, Malaysia, and across Southeast Asia to expand access to cybersecurity education and build a regional cyber defense ecosystem. He is also instrumental in the development of Indonesia’s first cyber range, designed to simulate realistic cyber-attack scenarios for training and evaluation.

"Pengetahuan masyarakat terkait keamanan siber perlu ditingkatkan seiring dengan bertambahnya angka insiden siber, sedangkan persepsi publik terhadap pembelajaran keamanan siber dianggep sebagai sesuatu yang sulit dicapai. Oleh karena itu, kami mengembangkan metode edukasi keamanan siber dalam bentuk aplikasi permainan, yaitu Node Clash (attack-defence), Cryptical: Layer of Protection (kriptografi), dan Malware Adventure (malware). Permainan ini dirancang dengan menyederhanakan konsep-konsep keamanan siber, yaitu malware, kriptografi, dan keamanan jaringan agar mudah dipahami. Pengembangan ketiga permainan dilakukan menggunakan metode Game Development Life Cycle (GDLC). Untuk mengukur efektivitasnya sebagai media pembelajaran, dilakukan eksperimen terhadap dua kelompok: kelompok kontrol yang menggunakan metode pembelajaran pasif (membaca modul) dan kelompok eksperimen yang menggunakan permainan yang dikembangkan. Hasil evaluasi pembelajaran menunjukkan perubahan skor post-test dari pre-test untuk kelompok kontrol banding kelompok eksperimen sebesar 4.4%:11.9% pada Node Clash, 4.57%:23% pada Cryptical: Layer of Protection, dan 29.5%:13.1% pada Malware Adventure."


Rama Tri Nanda - "Hunting Stingray GSM on Budge"
Rama Tri Nanda is I’am Independent researcher and security consultant since 2015. Have been talks at Idsecconf 2013, 2014, 2015, 2019, 2020, 2022, 2023 & 2024. My research mostly focuses about radio frequency such as GSM, NFC, WIFI, Bluetooth-LE, RFID, SDR and also covers some technique in openwrt hacking.

"Stingrays, also known as IMSI catchers, have captured attention as one of the more mysterious tools in mobile security. By imitating legitimate cell towers, they quietly interact with nearby phones, creating a hidden layer of communication that is rarely visible to the public. Exploring this unseen interaction opens the door to better understanding how mobile networks behave, and how certain signals can reveal more than expected.
The focus of this work is to transform what usually remains invisible—the raw exchanges between a device and the network—into something that can be captured, visualized, and studied. Packet data and signaling messages, once locked away inside complex protocols, become accessible in the form of patterns that highlight the rhythm of mobile communication. With the help of straightforward analysis and a clean dashboard, the signals of the air turn into something tangible and easy to explore.
Instead of presenting dense technical details, the approach highlights the story hidden within mobile signals—what they normally say, how they change, and why those changes matter. By making these hidden interactions more transparent, the research provides not just technical insight but also a new perspective on the invisible world of cellular signals that surrounds us every day."


Kang Ali - "DursGo: Web Security Scanner with AI Analysis"

Kang Ali, bekerja sebagai peneliti di Punggawa Cyber Security. Selain bekerja untuk mencari nafkah keluarga juga sedang mencoba menjadi youtuber yang jarang upload video. Seseorang yang masih terus belajar tentang IT Security karena semakin berkembangnya dunia IT harus terus update ilmu pastinya (Sinau Ben Ora Ketinggalan)

"DursGo adalah web application security scanner berbasis Go yang dirancang untuk penetration testing dan audit keamanan otomatis. Analisis Berbasis AI: Terintegrasi dengan LLM (Gemini, Groq) untuk memberikan analisis mendalam, ringkasan akar masalah, dan rekomendasi perbaikan kode. Integrasi OAST: Mendeteksi blind vulnerabilities menggunakan verifikasi out-of-band."


Aan Wahyu - "Maze: Malware Analysis Platform"

Aan Wahyu is Infosec Enthusiast and still doing coding as part-time for automation or tools development. Passionate with OSINT, RE, and Red Team. Interested in Research Development and Non-Profit Organization.

"Pembahasan ini bertujuan untuk memperkenalkan Maze: Malware Analysis Platform, sebuah sistem analisis file yang menggabungkan analisis statis, similarity analysis, dan integrasi threat intelligence untuk meningkatkan deteksi serta pemahaman terhadap malware."



Nosa Shandy - "Discovering and Disclosing Privacy Vulnerabilities in Large-Scale Social Media Platforms: Methodology, Impact, and Case Studies"
Nosa Shandy, Security Consultant dan Bapak anak satu.

"This talk presents a practical approach to discovering and responsibly disclosing privacy flaws in major social media platforms. Through three real-world case studies, we show how design gaps can cause data leaks, policy violations, and compliance risks, and discuss their impact on users, trust, and regulation."



Faisal Ilham - "Semi Automating Vulnerability Scanner and Exploitation in Biometric Systems: A Dual-Script Approach"
Faisal Ilham is an IT Security Researcher. His work is centered on the intersection of cybersecurity and emerging technologies, with a particular focus on IoT security, wireless hacking, and biometric systems. He is driven by a keen interest in understanding and mitigating vulnerabilities within these dynamic fields.
In addition to his full-time public service role, Faisal also applies his skills as a freelance penetration tester. This experience allows him to bridge theoretical knowledge with practical, real-world challenges, helping organizations identify and strengthen their digital defenses.
Faisal's professional journey is fueled by a commitment to public service and a belief in the importance of creating a safer digital environment. He is dedicated to contributing to the protection of digital assets and assisting clients, both in the public and private sectors, in navigating the ever-evolving landscape of cybersecurity.

"This research addresses key challenges in securing biometric access devices by proposing a semi-automated security solution that can be integrated into a Telegram bot. We developed and evaluated two scripts, zksentinel-WEB and zksentinel-CLI, to identify vulnerabilities like weak authentication and insecure endpoints in biometric systems. The findings revealed significant risks, including the potential for fraud and unauthorized data access. The results show that this approach is effective in detecting system weaknesses and provides practical guidance for organizations to protect against malicious insider threats and external hackers. This tool is aimed at increasing security awareness and supporting the development of safer technology in the future, helping to minimize material losses and fraud within companies."

Contact Us

Phone :

+62-851-7330-1337

Fast Response:

Mention/dm di twitter/IG,
@idsecconf

Email :

info[at]idsecconf.org