Haxoris on Stage: Mobile App Security Conference in Prague

November 4, 2025

November was all about one of the most interesting application security events in our region. Our Haxoris team was invited to Talsec AppSec Conf, held in the beautiful premises of Chateau St. Havel in Prague.

But we didn’t just come to watch. We had a strong presence not only in the audience, but especially on stage and in the training rooms. Here’s our recap of this great event where we shared our know‑how in Red Teaming and mobile security.

AppSec Android App Hacking mobile security Red Teaming Android
Haxoris talk at mobile app security conference

About Talsec AppSec Conf

Talsec organised an event that brought together developers, security experts and enthusiasts of mobile security. The castle‑like atmosphere of the Chateau St. Havel hotel gave the conference a unique vibe. Expert talks alternated with networking over coffee and later cocktails, creating the perfect space to discuss the latest threats in the application world.

The main theme of the conference was the balance between security and user experience (“Safety / Security Equilibrium”), with topics ranging from AI‑powered pentesting to user privacy protection.

Adam Žilla: From Reception Desk to Domain Controller

One of the highlights of the program was a talk by our colleague Adam Žilla titled “From the Reception Desk to the Domain Controller: Red Teaming in Practice”.

Adam showed the audience that cybersecurity neither begins nor ends at the firewall. In his talk, he walked participants through a real‑world scenario where we combined physical intrusion with sophisticated network techniques. He illustrated the attacker’s path – starting as an “innocent visitor” at reception and ending with full control over the company’s entire domain.

Adam Žilla presenting on the main stage

The talk was based on one of our successful projects, which we describe in detail in our case study. If you’re curious how such an attack unfolds and how to defend against it, make sure to read: Red Teaming Case Study: Physical Intrusion and Network Takeover.

Marek Mlynček: Hands‑On Mobile Security Workshop

While Adam took the main stage, I ran an intensive workshop focused on practical skills. The topic was “OWASP Mobile Top 10 Vulnerabilities”.

I guided participants through the world of hacking Android applications. It wasn’t just theory – they could try, live, the techniques attackers use to bypass protections in mobile apps.

Key workshop topics included:

  • Root detection bypass: How to get around checks that are supposed to prevent apps from running on rooted devices.
  • Vulnerability analysis: The most common weaknesses from the OWASP Mobile Top 10 list.
  • Practical demos: Tools and methodologies we use in our own security assessments.
Android app hacking workshop

Networking and Takeaways

The conference wasn’t just about the talks. Discussions on topics like “User Profiling vs User Privacy” and informal networking during the evening cocktail confirmed that the AppSec community is growing and becoming increasingly professional. We’re glad Haxoris could contribute and showcase what offensive security looks like in practice.

Huge thanks to the Talsec team for a great event – we’re already looking forward to the next edition!

Haxoris team group photo from conference
Interested in Red Teaming or need to assess the security of your mobile applications? Contact us and we’ll be happy to take a closer look at your systems.
Marek Mlynček

Author

Marek Mlynček

Book a penetration test by experienced ethical hackers.

Book Now