Training Session

May 14-15-16, 2018

NorthSec is pleased to announce its high-quality training sessions, given by the absolute best experts in their field. We strive to provide you with the highest level of exclusive content, giving you a unique opportunity to improve your applied security knowledge during NorthSec.

Training Sessions include

Conference Ticket

Full ticket to the NorthSec Conference

Food and refreshments included

Coffee, refreshments, snacks and lunch

Social Event with Drinks

Special Networking Event

This year’s sessions

Exploiting Websites by using offensive HTML, SVG, CSS and other Browser-Evil - 2018 Edition

  • Mario Heiderich Cure53

May 14, 15 and 16th

The focus of this training is on the offensive and dangerous parts of HTML, CSS, JavaScript and related technologies, the nasty and undocumented stuff, dozens of both new and long forgotten attack techniques straight from the laboratory of horrors of those maintaining the HTML5 Security Cheatsheet, HTTP Leaks and the DOMPurify sanitizer library. More information

A Guide to Threat Hunting Utilizing the ELK Stack and Machine Learning

  • Derek McCarthy Cylance

  • Thomas Pace Cylance

May 14, 15 and 16th

The days of using excel to find malicious activity are over. Breaches are only expanding in size, so incident responders need their own way of growing out of the days of using excel to hunt through mountains of data. In this course, you will learn how to create your own enterprise-wide hunting platform using ELK with data enrichment feeds. More information

Practical Alarm System Bypass for Security Professionals

  • Babak Javadi Red Team Alliance / The CORE Group

  • Drew Porter Red Team Alliance / Red Mesa

May 14, 15 and 16th

Designed for security professionals with no alarm experience, this training will review past and present alarm system architecture, it’s design elements, associated sensors, and methods for their defeat. Both wired and wireless technologies will be discussed, and students will receive extensive hands-on experience with alarm hardware, sensors, and defeat tools. More information

Pentesting and Exploiting Highly Secured Enterprise Networks

  • Vikram Salunke Vmaskers

May 14, 15 and 16th

Pentesting and Exploiting Highly Secured Enterprise Networks is an action-packed hands-on class giving attendees a chance to perform real-world exploitation on enterprise network scenarios accompanied with practical lab exercises in a CTF style formart. The course goes far beyond simple exploitation of low-hanging fruits and shows pentesters how to perform the abilities of an advanced attacker to find out flaws in a secured networks and calculate the business risk associated with these flaws. More information

Fine print


The training sessions will take place right before the conference on Monday, Tuesday and Wednesday. Training sessions start at 9am and finish at 6pm.


  • Full ticket to the NorthSec Conference (Thursday and Friday)
  • Coffee, refreshments, snacks and lunch
  • Access to a special networking event with drinks after the second day of training

If you already purchased your conference ticket, write us un email at to get a refund. Note that we reserve the right to cancel a training if a minimum number of participants isn’t met.


See individual training pages for pricing.

  • Early bird until February 28th: 20% off
  • Not-so Early bird until March 31st: 10% off
  • Prices are in $CAD before taxes and eventbrite fees


The training sessions will be hosted at the Downtown Holiday Inn Hotel this year. See our Venue page for details.

Continuing Professional Education (CPE) Credits

We can emit proof of CPE credits for those who are certified through (ISC)2 upon request.

  • 16 CPE credits for a two day training session
  • 24 CPE credits for a three day training session