BSides Tokyo 2005 Speaker

YI-TING SHEN

I am currently working as a Security Researcher at Array Networks. Over the past year, I have presented various cybersecurity-related research topics at domestic and international conferences. I enjoy conducting research, especially focusing on AI/ML applications this year.

By engaging with different technical domains, I aim to solve cybersecurity problems, uncover vulnerabilities across various platforms, and identify new CVE vulnerabilities. I have found vulnerabilities in multiple platforms, including Google products, open-source projects, educational institutions… Learning and research have become the central focus of my life.

Speech record: COSCUP, WordCamp Asia, MOPCON, MWC, CYBERSEC, Hello World Dev Conference, AI Academy Annual Conference, PyCon Korea, SECCON…

Personal website: https://no-flag.com

Allen Chen

I am a cybersecurity researcher and practitioner with a background in penetration testing, security engineering, incident response (IR), and security automation. Over the years, I have specialized in web and mobile application security assessments, honeypot development, SIEM optimization, and security tool automation.

My work includes leading the development of a web log analysis platform and designing security features and workflows for 5G Purple Team platforms, focusing on cyber threat intelligence and advanced security testing.

Additionally, I have hands-on experience in incident response tool development, honeypot deployment, VMware ESXi automation, and have contributed to establishing a mobile security testing lab that meets MAS (Mobile Application Security) standards within my organization. I am proficient in SIEM operations (ArcSight), security forensics.

I am passionate about bridging security research with practical solutions. I have spoken at various conferences, including AWS Summits, sharing insights on cybersecurity trends, best practices, and security automation. My goal is to explore AI/ML applications in security, identify vulnerabilities across platforms, and contribute to the cybersecurity community.

Cyber Commanders: AI’s Autonomous Assault Unleashed

As AI continues to evolve, its applications in cybersecurity extend beyond defense to offensive capabilities. This talk will explore AI-driven autonomous attacks, where AI models independently analyze targets, generate attack plans, and execute offensive operations without human intervention. By integrating multiple AI models within a unified framework, we demonstrate how different AI systems collaborate in real-time to adapt their attack strategies based on live feedback. The session will feature a live demonstration of an AI attack framework running, showcasing the AI’s decision-making process, interactions between models, and real-time execution of attacks. Rather than focusing on specific vulnerabilities, our objective is to highlight AI’s ability to autonomously conduct offensive security operations, raising critical discussions on the ethical and security implications of AI in cyber warfare.