Le Tour Du Hack is an annual student-run cybersecurity conference bringing together experts, enthusiasts, and curious minds for two days of technical talks, challenges, and of course, networking. Stay on top of the latest developments and immerse yourself in the scottish cybersecurity community!
ENUSEC was founded in 2015, making this year ENUSEC's 10th birthday! Because of this we are making sure that Le Tour Du Hack 2025 will be bigger and better than ever. We cant wait for you to see what we have in store!
🎉 Help us celebrate 10 years of ENUSEC!
Submit your photos from past events or this year's conference
This year's special 10th anniversary edition brings together current students, Edinburgh Napier Alumni, industry professionals, and cybersecurity enthusiasts from across the UK and beyond. Check out the Edinburgh Napier University blog post featuring this milestone celebration!
Interested in what happens on the day? Check out the LTDH24 page to see highlights from last year's conference.
Le Tour Du Hack 2025 is made possible thanks to the generous support of our sponsors.
Here's the full schedule for Le Tour Du Hack 2025. We have three exciting tracks of presentations running in parallel.
Adrian Smales
Pacemakers, insulin pumps and autonomous gadgets now chat over 5G, but every heartbeat they broadcast is an open invitation to hackers. The warning is clear: when code meets flesh, failures aren't blue screens—they're funerals. Regulators finally demand cybersecurity, yet current standards ignore digital evidence.
Michael Varley
Step into the high-stakes world of ransomware incidents, where companies face impossible choices and criminals sometimes show unexpected mercy. Through real-world case studies, we'll unravel how attackers break in, how they steal data, how they cripple organisations and what happens when victims negotiate.
David Brown
Navigating your way through life can be a challenge. Having done Computer Science at Uni in the very early 00's then joining the Police I now find myself as a Principal DFIR Consultant for one of the world's leading Cyber companies.
Dónnan Mallon
Welcome to the wacky world of Information Stealers! They come in all shapes and sizes. We'll be discussing the rise and impact these infostealers have had globally throughout various industries and how some have met their downfall through Law Enforcement.
Kirils Solovjovs
We live in a world where corporations decide how we interact with digital systems, and they are not on our side. If something goes wrong and you're not the 1,000th person to report it, it's your problem. Customer service? That's just a chatbot pretending to care.
Prof. Bill Buchanan, Edinburgh Napier University
James Kwaan
In the last 10 years there have been significant changes, I will cover the key factors affecting the threat landscape to help us understand who is likely to attack us and why? I will explore the disruptive geopolitical context and current threats and trends and the new frontiers which cyber is now breaking into.
Basil Manoussos
Digital Forensics and Digital Evidence have long been viewed as the "poor relation" of Cybersecurity—often overlooked by both academia and industry. However, the tide is turning. With the growing sophistication of cybercrime, these fields are gaining the attention they deserve.
Sharon Moore, Sarah Williamson, Jonathan Marnoch, Ruby Richardson, Stephanie Golstov
Eliot Bolster
Could Rust be a viable option for coding our critical OT systems, adding another language to the IEC 61131-3 standard? Despite IT loving a trend it has always been harder for these trends to get adopted within industrial systems.
Harry McLaren
Overview of why cyber is an interesting place to work, what 'cybersecurity operations' is, the main focuses of the blue team (preparation, detection, response and recovery), adversary knowledge frameworks (ATT&CK), and finally an overview of important technical and behavioural skills needed in 2025 and beyond!
Thomas Xuan Meng
This presentation provides a step-by-step, technical exploration of the evolution of syscalls. It begins with the fundamental role of NT Windows APIs in executing syscalls within kernel space.
Cary Hendricks, ID Cyber Solutions
Karen Taljard
Life sucks. Between the chaos of work life and personal life, it can be hard to make time for some R&R. Today we will discuss what you can do to better manage the chaos as well as activities you can do to unwind and disconnect from the world for a bit.
Fraser Wilson
Smart voice assistants are everywhere and have so much access to our lives and data and rely upon tools like Automatic Speaker Verification to secure their access, but how good are they really at telling whether it is you. Let's look at audio based attacks and see how secure (or unsecure) they really are, and then lets talk all things audio weirdness.
Del Delgiannoudis
Since 2018, Nvidia's consumer graphics division has been developing a severe case of we-don't-care-about-you-itis. As much as it's a well known fact that corporations are not our friends, for this talk I'd like to investigate the specific, targeted and arguably malicious ways in which Nvidia has gone out of their way to screw over their GeForce customers.
Cameron Cottam
CAPTCHAs are widely used as a security measure to distinguish humans from bots. However, threat actors have been exploiting this tool into a technique known as ClickFix. By presenting fake "Verify You Are a Human" CAPTCHA pages, attackers aim to trick users into executing malicious PowerShell commands.
Kat Fitzgerald
Embark on a whirlwind tour of global cyber deception with a seasoned(?) security engineer who's been running honeypots in some of the world's most intriguing locales, including the bustling digital battleground of Ukraine.
Edinburgh Napier University
Professor at Edinburgh Napier University
Bill Buchanan is a Professor in the School of Computing at Edinburgh Napier University, a Fellow of the BCS and Principal Fellow of the HEA. He was appointed an Officer of the Order of the British Empire in 2017 and has won student-voted awards of teaching excellence in 2011, 2014, 2015, 2019, 2020 and 2023. He is also the creator of the Blockpass Identity Lab at Napier's Merchiston campus. He has published over 30 academic books and over 300 research papers.
ID Cyber Solutions
Global Operations Director at ID Cyber Solutions
Cary is an accomplished security technical investigator, advisor and trainer with several decades of experience working with various agencies across the world. He often talks about stuff and things. He is the lead instructor for ID Cyber Solutions and ID Cyber Training UK, which delivers training on Incident Handling, Digital Forensics and Ethical Hacking.
He sits on various boards in the UK coordinating cyber security practices in education, the space industry, supply chains and various cyber security frameworks supported by the NCSC. He is always willing to help wherever he can to make other people’s lives easier*
(*some effort required)
We're so glad to be bringing back the Panel event again this year, as it has been very well received over the years it has ran; always bringing insightful questions and industry experience to the forefront. This year, we believe the panel topic of 'Neurodiversity in Cyber: Superpower vs. Kryptonite' is more relevant than ever, especially as neurodivergent individuals become recognised within the industry.
"About 15% to 20% of the world's population shows signs of neurodivergence" - Northwestern Medicine, 2025
In an industry that thrives on unconventional thinking, this is not just a statistic. It's a reminder of the incredible diversity of minds shaping cybersecurity. Whether you personally identify as neurodivergent or not, these conversations impact all of us. From recruitment and workplace culture to problem-solving approaches, understanding and embracing neurodiversity makes our community stronger.
So make sure to come along to hear what our brilliant panelists have to say, challenge your assumptions, and ask your questions - this space is for you too!
Sharon is IBM's CTO for Public Sector in the UK, with a personal goal to transform public service, safety and policing with technology. She has over 20 years of experience working in the tech industry, across multiple sectors, and you’ll often find her on stage helping shape the impact technology can have on our lives.
Sarah is a Social Work Operational Manager for mental health services in Renfrewshire. A social worker since 2011, Sarah has specialised in mental health since 2016. An accredited trainer in suicide intervention through LivingWorks, Sarah has been in management positions for 5 years and works with a diverse range of staff including those who need additional support or adapted working arrangements to reach their full potential at work.
A season IT professional with 25 years of experience. Jonathan (Jonty) Marnoch has worked with some of the largest companies in the UK and globally. Currently Principle Cyber Security Architect at JLR their expertise spans various sectors, including Defence, Banking, Utilities, Retail and currently automotive.
Ruby is a 4th year BEng student in Cybersecurity and Forensics at Edinburgh Napier University. During her third year, she completed a year long industrial placement at Gymshark, where she gained hands on experience across a range of cybersecurity roles. Diagnosed with dyslexia in primary school, Ruby has had to continually adapt to overcome challenges, both academically and professionally.
Steph is a creative and strategic consultant specialising in digital transformation. She co-founded the digital consultancy Osta Labs Ltd which, for the past seven years has supported clients with digital strategy, machine learning and AI-readiness. Steph is proudly and (mostly) comfortably neurodivergent and has a particular interest in how technology can support inclusive and exciting workplaces of the future.
Ready to put your hacking skills to the test? Join us for an adrenaline-pumping Jeopardy-style CTF where competitors unite to crack codes, exploit vulnerabilities, and outsmart security systems!
Whether you're infiltrating websites, breaking encryption algorithms, or hunting for hidden flags, our challenges are crafted for both newcomers and seasoned pros. New puzzles drop throughout the day, taking you on a thrilling tour across the Cyber Security landscape!
Compete solo or form a dream team of up to 4 hackers
Top team wins exclusive invites to next year's ZeroDays CTF
Register now at ctf.enusec.org
The CTF will take place in track three marked on the map.
Don't forget your essentials: laptop loaded with Kali VM (not required but recommended!) and your charger!
Location: Edinburgh Napier University, Craiglockhart Campus
Address: 219 Colinton Road, Edinburgh, EH14 1DJ, Scotland
Travel & Accommodation:
The venue is easily accessible by public transport, with nearby bus and tram stops.
Edinburgh Waverley and Haymarket train stations are within a short distance.
A range of hotels and accommodations are available in the city centre and surrounding areas.
Accessibility:
The venue is fully wheelchair accessible, with elevator access to conference floors, and accessible restrooms. Please contact us in advance for any specific requirements.
Chat with us on Discord!
X (Twitter) | Instagram | Facebook | LinkedIn