{"$schema": "https://c3voc.de/schedule/schema.json", "generator": {"name": "pretalx", "version": "2026.1.2"}, "schedule": {"url": "https://conference.wireshark.org/sf26eu/schedule/", "version": "0.7", "base_url": "https://conference.wireshark.org", "conference": {"acronym": "sf26eu", "title": "SharkFest'26 Europe", "start": "2026-11-02", "end": "2026-11-06", "daysCount": 5, "timeslot_duration": "00:05", "time_zone_name": "Europe/Brussels", "colors": {"primary": "#672fc6"}, "rooms": [{"name": "Room 1", "slug": "13-room-1", "guid": "f2d5f438-0ec5-592d-a452-3486ec96a598", "description": "Plenary Room", "capacity": null}, {"name": "Room 2", "slug": "14-room-2", "guid": "6c63354c-b4d7-52ad-a001-8d929914b1c3", "description": "2nd Session Room", "capacity": 80}], "tracks": [{"name": "Beginner", "slug": "37-beginner", "color": "#00AB9B"}, {"name": "Intermediate", "slug": "38-intermediate", "color": "#2B9ECF"}, {"name": "Expert / Developer", "slug": "39-expert-developer", "color": "#9D6DEC"}, {"name": "Security", "slug": "40-security", "color": "#72B406"}, {"name": "A.I.", "slug": "41-ai", "color": "#E60757"}, {"name": "Pre-conference class", "slug": "42-pre-conference-class", "color": "#0C590D"}, {"name": "Organization", "slug": "43-organization", "color": "#3C8BC4"}], "days": [{"index": 1, "date": "2026-11-02", "day_start": "2026-11-02T04:00:00+01:00", "day_end": "2026-11-03T03:59:00+01:00", "rooms": {"Room 1": [{"guid": "033728d5-506c-551c-928f-b41dfcd4902a", "code": "7JUZMZ", "id": 212, "logo": null, "date": "2026-11-02T09:00:00+01:00", "start": "09:00", "duration": "08:00", "room": "Room 1", "slug": "sf26eu-212-0-pre-conference-class-i-practical-wireshark-skills-for-it-professionals", "url": "https://conference.wireshark.org/sf26eu/talk/7JUZMZ/", "title": "Pre-Conference Class I: Practical Wireshark Skills for IT professionals", "subtitle": "", "track": "Pre-conference class", "type": "Pre Conference Class", "language": "en", "abstract": "**Hands on Wireshark Lab and Wireshark Certified Analyst Prep**\r\n\r\nPractical Wireshark Troubleshooting is a two-day, hands-on course designed to strengthen your packet analysis and troubleshooting skills. On Day 1, Ross Bagurdes guides you through Wireshark\u2019s key features, capture methods, filtering techniques, and foundational protocols at the Data Link and Network layers. On Day 2, Chris Greer takes you deeper into Transport and Application layer analysis, focusing on TCP, UDP, and the tools that uncover real-world performance problems. By the end, you\u2019ll know how to approach network issues with confidence \u2014 and be better prepared for the Wireshark Certified Analyst exam.", "description": "Level up your Wireshark skills and get ready for Sharkfest! This hands-on course will provide core Wireshark skills for IT pros of all experience levels. Participants will gain a solid understanding of how to use Wireshark to capture, analyze, and troubleshoot network traffic. The course is designed with beginners in mind, but even seasoned packet people will pick up new tips and tricks.", "recording_license": "", "do_not_record": false, "persons": [{"code": "KDQCGV", "name": "Ross Bagurdes", "avatar": null, "biography": null, "public_name": "Ross Bagurdes", "guid": "0def5250-101e-527e-a22d-2ffc2ecf9ad9", "url": "https://conference.wireshark.org/sf26eu/speaker/KDQCGV/"}], "links": [], "feedback_url": "https://conference.wireshark.org/sf26eu/talk/7JUZMZ/feedback/", "origin_url": "https://conference.wireshark.org/sf26eu/talk/7JUZMZ/", "attachments": []}], "Room 2": [{"guid": "ec9cba51-0682-543e-a3b9-cde67efbd080", "code": "7TVPHQ", "id": 209, "logo": null, "date": "2026-11-02T09:00:00+01:00", "start": "09:00", "duration": "08:00", "room": "Room 2", "slug": "sf26eu-209-pre-conference-class-ii-webrtc-network-analysis-masterclass", "url": "https://conference.wireshark.org/sf26eu/talk/7TVPHQ/", "title": "Pre-Conference Class II: WebRTC Network Analysis Masterclass", "subtitle": "", "track": "Intermediate", "type": "Pre Conference Class", "language": "en", "abstract": "If you have users complaining about audio issues in their Teams/Meet/Zoom calls and need to find out the reason.\r\n\r\n- If you need to configure your network perimeter to optimally support WebRTC traffic under specific regulations\r\n\r\n->  this class is for you.\r\n\r\n**Goal**\r\n After this class you will be able to take a capture of a WebRTC Web Conferencing call,\r\n analyze the salient call components for potential problems and implement the required \r\nmeasures in your network perimeters to overcome such problems.\r\n\r\nAfter a general introduction of WebRTC we will show the use of AI tools for a quick start, and then dive into the packets.\r\n \r\nThere will be prepared captures, and a live capture sessions -  but you can also bring our \r\nown captures or capture with your specific Web conferencing tool (as long as it uses WebRTC)", "description": "## Agenda\r\n \r\nWhich products use WebRTC and how are they different\r\n\t \r\n**Call setup in a nutshell** \r\n(explained with a capture - we use one very typical capture throughout the course)\r\n\r\n- What happens before WebRTC kicks in (Signaling, SDP)\r\n- Connectivity detection ICE/STUN/TURN\r\n- What can I optimize on client side (restrict candidates)\r\n\r\n\t \r\n**Analyzing the capture**\r\n\r\n- What AI can tell us about the capture\r\n- Go through the setup packet by packet and check the media flows\r\n\r\n \r\n**Media Performance**\r\n\r\n- UDP vs TCP\r\n- Packet loss & delay in a worldwide network\r\n\r\n \r\n**Doing a live capture**\r\n\r\n- Decrypt signaling\r\n- Check a few selected captures\r\n\r\n \r\n**The nasty stuff (and how to deal with it)**\r\n\r\n- Packet filters\r\n- Proxies & Zscaler\r\n- VPN & SDWAN\r\n- Reconnect times\r\n- TURN servers\r\n\r\n**What's the difference in how the various products use WebRTC**\r\nTeams\r\nZoom\r\nWebex\r\nGotoMeeting\r\nGoogle Meet", "recording_license": "", "do_not_record": false, "persons": [{"code": "Z3HPBS", "name": "Robert Hess", "avatar": "https://conference.wireshark.org/media/avatars/GEKGFS_717UcZg.jpg", "biography": "Helping customers and engineers to understand problems with communication protocols in their networks.\r\nDebugging communication protocols and analyzing log files for a living and having fun with it.\r\nFinding problems in software since the era of punched tapes.\r\nCurrently Freelance", "public_name": "Robert Hess", "guid": "e7055e4e-1b55-5d30-8739-87b4b48fb4e9", "url": "https://conference.wireshark.org/sf26eu/speaker/Z3HPBS/"}], "links": [], "feedback_url": "https://conference.wireshark.org/sf26eu/talk/7TVPHQ/feedback/", "origin_url": "https://conference.wireshark.org/sf26eu/talk/7TVPHQ/", "attachments": []}]}}, {"index": 2, "date": "2026-11-03", "day_start": "2026-11-03T04:00:00+01:00", "day_end": "2026-11-04T03:59:00+01:00", "rooms": {"Room 1": [{"guid": "44e9b292-6353-5043-8993-83f8acaea51a", "code": "7JUZMZ", "id": 212, "logo": null, "date": "2026-11-03T09:00:00+01:00", "start": "09:00", "duration": "08:00", "room": "Room 1", "slug": "sf26eu-212-1-pre-conference-class-i-practical-wireshark-skills-for-it-professionals", "url": "https://conference.wireshark.org/sf26eu/talk/7JUZMZ/", "title": "Pre-Conference Class I: Practical Wireshark Skills for IT professionals", "subtitle": "", "track": "Pre-conference class", "type": "Pre Conference Class", "language": "en", "abstract": "**Hands on Wireshark Lab and Wireshark Certified Analyst Prep**\r\n\r\nPractical Wireshark Troubleshooting is a two-day, hands-on course designed to strengthen your packet analysis and troubleshooting skills. On Day 1, Ross Bagurdes guides you through Wireshark\u2019s key features, capture methods, filtering techniques, and foundational protocols at the Data Link and Network layers. On Day 2, Chris Greer takes you deeper into Transport and Application layer analysis, focusing on TCP, UDP, and the tools that uncover real-world performance problems. By the end, you\u2019ll know how to approach network issues with confidence \u2014 and be better prepared for the Wireshark Certified Analyst exam.", "description": "Level up your Wireshark skills and get ready for Sharkfest! This hands-on course will provide core Wireshark skills for IT pros of all experience levels. Participants will gain a solid understanding of how to use Wireshark to capture, analyze, and troubleshoot network traffic. The course is designed with beginners in mind, but even seasoned packet people will pick up new tips and tricks.", "recording_license": "", "do_not_record": false, "persons": [{"code": "KDQCGV", "name": "Ross Bagurdes", "avatar": null, "biography": null, "public_name": "Ross Bagurdes", "guid": "0def5250-101e-527e-a22d-2ffc2ecf9ad9", "url": "https://conference.wireshark.org/sf26eu/speaker/KDQCGV/"}], "links": [], "feedback_url": "https://conference.wireshark.org/sf26eu/talk/7JUZMZ/feedback/", "origin_url": "https://conference.wireshark.org/sf26eu/talk/7JUZMZ/", "attachments": []}, {"guid": "6d0d06eb-e79f-588d-adf2-097dcde63ebe", "code": "XBMHVL", "id": 213, "logo": null, "date": "2026-11-03T17:30:00+01:00", "start": "17:30", "duration": "03:00", "room": "Room 1", "slug": "sf26eu-213-sharkfest-26-europe-welcome-dinner-sponsor-showcase", "url": "https://conference.wireshark.org/sf26eu/talk/XBMHVL/", "title": "SharkFest'26 EUROPE Welcome Dinner & Sponsor Showcase", "subtitle": "", "track": "Organization", "type": "Dinner", "language": "en", "abstract": "Let's kick-off the conference in style!", "description": "", "recording_license": "", "do_not_record": false, "persons": [], "links": [], "feedback_url": "https://conference.wireshark.org/sf26eu/talk/XBMHVL/feedback/", "origin_url": "https://conference.wireshark.org/sf26eu/talk/XBMHVL/", "attachments": []}], "Room 2": [{"guid": "410f1b6f-2942-5822-9fb2-d80271aa2a40", "code": "3PDG9V", "id": 211, "logo": null, "date": "2026-11-03T09:00:00+01:00", "start": "09:00", "duration": "08:00", "room": "Room 2", "slug": "sf26eu-211-pre-conference-class-iii-the-proof-is-in-the-packets-network-threat-detection-using-wireshark", "url": "https://conference.wireshark.org/sf26eu/talk/3PDG9V/", "title": "Pre-Conference Class III: The Proof is in the Packets: Network Threat Detection Using Wireshark", "subtitle": "", "track": "Security", "type": "Pre Conference Class", "language": "en", "abstract": "In a world of encrypted traffic and sophisticated evasion, the network remains the ultimate source of truth. Security tools may alert you that something is wrong, but the packets tell you exactly what happened on the wire.\r\n\r\nThis intensive one-day training transforms Wireshark from a simple troubleshooting tool into a powerful forensic engine. We move beyond basic protocol analysis to focus on the indicators of compromise (IoCs) and threat actor behavior hidden in plain sight. Participants will learn how to identify the subtle \"heartbeats\" of malware, recognize command and control (C2) patterns, and dissect behavior at various stages of an attack. \r\n\r\nThrough hands-on labs using real-world pcap datasets, we will cover:\r\n\r\nExpert Filtering: Crafting security-focused display filters to cut through the noise.\r\n\r\nBehavioral Analysis: Identifying anomalies in TCP/IP handshakes and DNS queries.\r\n\r\nActionable Reporting: Extracting evidence to build an irrefutable \"proof of packet\" case.", "description": "", "recording_license": "", "do_not_record": false, "persons": [{"code": "7EMVDQ", "name": "Marcelle Lee", "avatar": null, "biography": "Marcelle brings over twelve years of experience in cybersecurity, and her journey has taken her through some of the most elite teams in the field, including Secureworks Counter Threat Unit (CTU) and the Equinix Threat Analysis Center (ETAC). She's a security consultant, threat researcher, educator, and intel analyst with deep expertise in cyber threat intelligence, digital forensics, intrusion analysis, security operations, and technical writing.\r\n\r\nShe has contributed to both government and private sector initiatives, bringing a well-rounded perspective to cyber defense and threat research. Before transitioning into cybersecurity, Marcelle led operations and managed complex projects across various industries.\r\n\r\nA frequent speaker at conferences and training events, Marcelle is deeply committed to advancing the cybersecurity field and empowering the next generation of professionals.", "public_name": "Marcelle Lee", "guid": "b65207d3-2a07-5a0b-9b38-0ccc95fcbfc1", "url": "https://conference.wireshark.org/sf26eu/speaker/7EMVDQ/"}], "links": [], "feedback_url": "https://conference.wireshark.org/sf26eu/talk/3PDG9V/feedback/", "origin_url": "https://conference.wireshark.org/sf26eu/talk/3PDG9V/", "attachments": []}]}}, {"index": 3, "date": "2026-11-04", "day_start": "2026-11-04T04:00:00+01:00", "day_end": "2026-11-05T03:59:00+01:00", "rooms": {"Room 1": [{"guid": "7b7a10c6-0415-5c34-a28c-227281ffdabe", "code": "FH9DSQ", "id": 216, "logo": null, "date": "2026-11-04T09:00:00+01:00", "start": "09:00", "duration": "01:00", "room": "Room 1", "slug": "sf26eu-216-keynote-things-i-love-about-wireshark-and-maybe-a-couple-of-things-i-don-t", "url": "https://conference.wireshark.org/sf26eu/talk/FH9DSQ/", "title": "Keynote: Things I Love About Wireshark (and maybe a couple of things I don't)", "subtitle": "", "track": "Organization", "type": "Organization", "language": "en", "abstract": "Gerald Combs & Friends talk about the new developments over the past year", "description": "", "recording_license": "", "do_not_record": false, "persons": [], "links": [], "feedback_url": "https://conference.wireshark.org/sf26eu/talk/FH9DSQ/feedback/", "origin_url": "https://conference.wireshark.org/sf26eu/talk/FH9DSQ/", "attachments": []}, {"guid": "fdb001d0-674c-5fbc-9e3d-39244e48a19e", "code": "GW9JQG", "id": 233, "logo": null, "date": "2026-11-04T10:15:00+01:00", "start": "10:15", "duration": "01:00", "room": "Room 1", "slug": "sf26eu-233-wireshark-with-webbrowser", "url": "https://conference.wireshark.org/sf26eu/talk/GW9JQG/", "title": "Wireshark With WebBrowser", "subtitle": "", "track": "Intermediate", "type": "Presentation", "language": "en", "abstract": "Wireshark is now the world's most powerful packet analysis tool, and we can get more features and visualisation with your daily web browser!!", "description": "You may take the longest time with the Web Browser in your computer, how about using your web browser with Wireshark? The modern web browser have many useful functions to extend Wireshark without any additional cost. \r\nIn this session you can learn Wireshark enhancement with Web Browser. For example, we can use browser extensions for Wireshark, we can enrich our Wireshark visualization to make use of the web browser, and so on.", "recording_license": "", "do_not_record": false, "persons": [{"code": "LFFBGF", "name": "Megumi Takeshita", "avatar": "https://conference.wireshark.org/media/avatars/ea73b656018238499cd621f442bec89d_hPlCb4o.jpg", "biography": "Megumi Takeshita, packet otaku, runs a packet company, ikeriri network service in Japan. Ikeriri offers services such as packet analysis for troubleshooting, debugging, security inspection. Ikeriri is also a reseller of wired/wireless capture and analysis products. Megumi has authored 10+ books about Wireshark and packet analysis. She also instructs Wireshark for Japanese companies, including the Japan Self-Defence Forces and Chuo University, as a lecturer. She is one of contributors to the Wireshark projects including Japanese localization.", "public_name": "Megumi Takeshita", "guid": "21f525f3-2a01-5598-b519-0228df74f377", "url": "https://conference.wireshark.org/sf26eu/speaker/LFFBGF/"}], "links": [], "feedback_url": "https://conference.wireshark.org/sf26eu/talk/GW9JQG/feedback/", "origin_url": "https://conference.wireshark.org/sf26eu/talk/GW9JQG/", "attachments": []}, {"guid": "ce393298-0833-5453-b2c8-2ad7d9b7f225", "code": "NYHFS7", "id": 227, "logo": null, "date": "2026-11-04T11:30:00+01:00", "start": "11:30", "duration": "01:00", "room": "Room 1", "slug": "sf26eu-227-analysis-of-low-level-protocols", "url": "https://conference.wireshark.org/sf26eu/talk/NYHFS7/", "title": "Analysis of low level protocols", "subtitle": "", "track": "Intermediate", "type": "Presentation", "language": "en", "abstract": "With this session we intend to analyse and troubleshoot unobstrusive but essential protocols like ARP, DHCP, Spanning Tree, ICMP v4 and ICMPv6, ...", "description": "In this session we will focus on some protocols not always well-known but very useful and even indispensable. We will mainly cover ARP, ICMP, DHCP, Spanning Tree. We will see how Wireshark can help us to analyze and troubleshoot such protocols. It can also be useful to detect some hostile actions like spoofing and poisoning with some examples involving ARP, Neighbor discovery, DHCP.", "recording_license": "", "do_not_record": false, "persons": [{"code": "NYGVUQ", "name": "Jean-Paul ARCHIER", "avatar": "https://conference.wireshark.org/media/avatars/WRYZPN_h4S7x5F.webp", "biography": "Jean-Paul has been working as a System and Network Engineer for  40 years. Since 2010, he runs his own company and is mainly focused on network training and consultancy. He is the author of several books for the French publisher ENI: VPN, IPv6, Cisco ASA, Postfix. He was  also recently asked by the French company Techniques de l\u2019Ing\u00e9nieur to write several articles about VPNs for their Encyclopedia. He regularly gives training sessions on Wireshark and other network-related topics.  As a certified trainer, he also delivers training about VPNs and network security for WatchGuard resellers and clients", "public_name": "Jean-Paul ARCHIER", "guid": "15f8aeb4-1c9c-55f2-9ac6-f8b9c926293d", "url": "https://conference.wireshark.org/sf26eu/speaker/NYGVUQ/"}], "links": [], "feedback_url": "https://conference.wireshark.org/sf26eu/talk/NYHFS7/feedback/", "origin_url": "https://conference.wireshark.org/sf26eu/talk/NYHFS7/", "attachments": []}, {"guid": "9c09f5f9-878c-5371-94e3-fb34295f9977", "code": "R9PZDM", "id": 238, "logo": null, "date": "2026-11-04T13:30:00+01:00", "start": "13:30", "duration": "01:00", "room": "Room 1", "slug": "sf26eu-238-transformers-in-the-wire-advanced-dpi-fingerprinting-and-ai-for-stealth-vpn-detection", "url": "https://conference.wireshark.org/sf26eu/talk/R9PZDM/", "title": "Transformers in the Wire: Advanced DPI Fingerprinting and AI for Stealth VPN Detection", "subtitle": "", "track": "Intermediate", "type": "Presentation", "language": "en", "abstract": "At SharkFest '24, we introduced the fundamentals of open-source deep packet inspection (DPI) using nDPI. Since then, network adversaries and stealth VPN providers have significantly evolved, rendering traditional methods like JA4 insufficient against heavily obfuscated traffic. This 1-hour follow-up session is split into two core sections.First, we explore advanced traffic fingerprinting techniques that surpass current state-of-the-art standards.\r\n\r\n- We will demonstrate how to leverage Wireshark to capture, dissect, and label complex traffic streams to drive these new nDPI capabilities.\r\n- We address what happens when fingerprinting fails against highly evasive protocols.\r\n- We will show how Wireshark data feeds into a data pipeline to train Transformer-based AI models to unmask stealth VPN traffic.\r\n- The session concludes with a live demonstration showcasing both advanced DPI extensions and the AI model detecting disguised traffic in real time.", "description": "", "recording_license": "", "do_not_record": false, "persons": [{"code": "M7WHWC", "name": "Luca Deri", "avatar": null, "biography": "Luca Deri is the leader of the ntop project (www.ntop.org), aimed at developing an open-source monitoring platform for high-speed traffic analysis and cybersecurity. He worked for the University College of London and IBM Research, before receiving his PhD at the University of Berne with a thesis about software components for traffic monitoring applications. Well-known in the open-source and Linux community, he currently shares his time between the ntop project and the University of Pisa where he has been appointed as a lecturer in the CS department.", "public_name": "Luca Deri", "guid": "0db8e63e-7b60-5bff-b243-f9e2873bf626", "url": "https://conference.wireshark.org/sf26eu/speaker/M7WHWC/"}, {"code": "GQJXMJ", "name": "Daniele Sartiano", "avatar": null, "biography": null, "public_name": "Daniele Sartiano", "guid": "5526f46a-465f-5c55-92a9-39b6030325bf", "url": "https://conference.wireshark.org/sf26eu/speaker/GQJXMJ/"}], "links": [], "feedback_url": "https://conference.wireshark.org/sf26eu/talk/R9PZDM/feedback/", "origin_url": "https://conference.wireshark.org/sf26eu/talk/R9PZDM/", "attachments": []}, {"guid": "e67afd87-2d8d-580a-b0af-f526a49e0266", "code": "R8R98B", "id": 242, "logo": null, "date": "2026-11-04T14:45:00+01:00", "start": "14:45", "duration": "01:00", "room": "Room 1", "slug": "sf26eu-242-tls-and-friends-the-protocol-family", "url": "https://conference.wireshark.org/sf26eu/talk/R8R98B/", "title": "TLS and Friends: The Protocol Family", "subtitle": "", "track": "Intermediate", "type": "Presentation", "language": "en", "abstract": "A packet-level tour of the TLS family. What stays visible when everything's encrypted?  TLS is everywhere, and most people assume that means \"encrypted, end of story.\" But TLS is a family of protocols, and each member leaves a different footprint on the wire. This talk is a tour of that family through Wireshark, built around a single idea: encryption hides content, not behaviour.", "description": "TLS is everywhere, and most people assume that means \"encrypted, end of story.\" But TLS isn't one protocol. It's a family, and each member leaves a different footprint on the wire. This talk is a tour of that family through Wireshark, built around a single idea: encryption hides content, not behaviour.\r\n\r\nWe'll meet the relatives one capture at a time. TLS 1.2 and 1.3, mutual TLS, STARTTLS, EAP-TLS tucked inside your WiFi login, DTLS over UDP, and QUIC reinventing the stack. Each one handles the same trade-off a little differently, and each leaves a different story on the wire. Some give away more than their designers intended. Some look completely opaque until you know where to point Wireshark. One or two may change how comfortable you feel about traffic you'd assumed was private.\r\n\r\nThe thread running through all of it is what you can still read without any keys at all, and how, as the plaintext shrinks version by version, the things that remain become more diagnostic, not less. We'll finish where the family is heading next: the post-quantum handshake you can already capture in today's browsers, and what it's quietly doing to the very first packet you send.", "recording_license": "", "do_not_record": false, "persons": [{"code": "DZGUZF", "name": "Katherine Leese", "avatar": "https://conference.wireshark.org/media/avatars/jlwS2nT-_JlbtYxz.jpg", "biography": "Katherine is a tech professional with 4 years of experience, having retrained in her 40s to become a Computer Expert, specialising in System Integration. Originally from New Zealand, she is currently based in Germany. During her training, she undertook a practicum at SevenShift, a boutique IoT cybersecurity company in Cologne that recognised her talent and dedication, ultimately hiring her. She is now employed there, where she is honing her skills and contributing to the company's security initiatives. Outside of her professional life, Katherine is a dedicated single mother to a teenager. She is a member of the Haecksen, the FINTA branch of the CCC, and a Chapter Leader of OWASP Cologne.", "public_name": "Katherine Leese", "guid": "9a6ca4c9-86e4-5f80-b0de-6f1e4f4c4605", "url": "https://conference.wireshark.org/sf26eu/speaker/DZGUZF/"}], "links": [], "feedback_url": "https://conference.wireshark.org/sf26eu/talk/R8R98B/feedback/", "origin_url": "https://conference.wireshark.org/sf26eu/talk/R8R98B/", "attachments": []}, {"guid": "0cee51d9-2423-5c04-8224-184c9f6b042a", "code": "PDW7AX", "id": 214, "logo": null, "date": "2026-11-04T18:00:00+01:00", "start": "18:00", "duration": "03:00", "room": "Room 1", "slug": "sf26eu-214-0-sponsor-technology-showcase-reception-and-dinner", "url": "https://conference.wireshark.org/sf26eu/talk/PDW7AX/", "title": "Sponsor Technology Showcase Reception and Dinner", "subtitle": "", "track": "Organization", "type": "Dinner", "language": "en", "abstract": "Sponsor Showcase and Dinner", "description": "", "recording_license": "", "do_not_record": false, "persons": [], "links": [], "feedback_url": "https://conference.wireshark.org/sf26eu/talk/PDW7AX/feedback/", "origin_url": "https://conference.wireshark.org/sf26eu/talk/PDW7AX/", "attachments": []}], "Room 2": [{"guid": "ad0a025c-ffee-5e92-80c8-fd51aa955654", "code": "AX3RJX", "id": 236, "logo": null, "date": "2026-11-04T10:15:00+01:00", "start": "10:15", "duration": "01:00", "room": "Room 2", "slug": "sf26eu-236-corporate-encryption-challenges", "url": "https://conference.wireshark.org/sf26eu/talk/AX3RJX/", "title": "Corporate encryption challenges", "subtitle": "", "track": "Expert / Developer", "type": "Presentation", "language": "en", "abstract": "Your company has a policy that all traffic over public internet should be Post Quantum Cryptography (PQC) ready. Or that for B2B communication Mutual-TLS (mTLS) is mandatory. How do you validate that the policy is correctly implemented?\r\nAnd check for performance improvements: wat is the ratio of resumed TLS sessions, is the TLS handshake unnecessarily large, is \u2018Hello Request\u2019 or is \u2018Early Data\u2019 used?\r\nIn this session we will cover the methods of analyzing using Wireshark. Even if decryption is not allowed or hard to do.", "description": "", "recording_license": "", "do_not_record": false, "persons": [{"code": "9BZVZM", "name": "Andr\u00e9 Luyer", "avatar": "https://conference.wireshark.org/media/avatars/KZT9D7_Vb6QQqm.webp", "biography": "Andr\u00e9 is a senior Performance Consultant and troubleshooter at Rabobank, and has been analyzing packets for over 30 years. He started his career as a troubleshooter for network issues, both hard- and software, and later specialized in performance testing, which requires a combination of in-depth knowledge of networking protocols and coding skills. Andr\u00e9 also contributed to the Wireshark project.", "public_name": "Andr\u00e9 Luyer", "guid": "31e5cac9-2607-5709-8202-fd9f433d912d", "url": "https://conference.wireshark.org/sf26eu/speaker/9BZVZM/"}], "links": [], "feedback_url": "https://conference.wireshark.org/sf26eu/talk/AX3RJX/feedback/", "origin_url": "https://conference.wireshark.org/sf26eu/talk/AX3RJX/", "attachments": []}]}}, {"index": 4, "date": "2026-11-05", "day_start": "2026-11-05T04:00:00+01:00", "day_end": "2026-11-06T03:59:00+01:00", "rooms": {"Room 1": [{"guid": "d97e8bfa-3e53-5c33-8695-342040ad3dd0", "code": "QFMVBK", "id": 230, "logo": null, "date": "2026-11-05T10:15:00+01:00", "start": "10:15", "duration": "01:00", "room": "Room 1", "slug": "sf26eu-230-does-it-matter", "url": "https://conference.wireshark.org/sf26eu/talk/QFMVBK/", "title": "Does it Matter?", "subtitle": "", "track": "Beginner", "type": "Presentation", "language": "en", "abstract": "What is the most effective approach to rapidly gaining a deep understanding of a new network protocol? In this 1-hour session, the speaker will share practical experiences and lessons learned from studying the Matter protocol. In addition to an introduction to the protocol itself, the talk will focus on a structured and broadly applicable methodology for analyzing and understanding complex network protocols.", "description": "", "recording_license": "", "do_not_record": false, "persons": [{"code": "7WXPZN", "name": "Tom Cordemans", "avatar": "https://conference.wireshark.org/media/avatars/YY3RVA_D1bsfSr.webp", "biography": "Tom Cordemans is a senior lecturer at the Odisee University of Applied Sciences and a researcher at the DistriNet Research Unit of KU Leuven in Ghent, Belgium with a strong focus on IT, IoT and OT networks. He is a daily user of Wireshark and sharing knowledge and expertise is his trigger to give workshops and presentations.", "public_name": "Tom Cordemans", "guid": "da0271c8-112f-5fdb-a1e9-a5f70d858364", "url": "https://conference.wireshark.org/sf26eu/speaker/7WXPZN/"}], "links": [], "feedback_url": "https://conference.wireshark.org/sf26eu/talk/QFMVBK/feedback/", "origin_url": "https://conference.wireshark.org/sf26eu/talk/QFMVBK/", "attachments": []}, {"guid": "4396c2f2-72f0-5435-8cf0-259e3cd022e3", "code": "7N8Q9Q", "id": 217, "logo": null, "date": "2026-11-05T13:00:00+01:00", "start": "13:00", "duration": "01:30", "room": "Room 1", "slug": "sf26eu-217-the-packet-doctors-are-in-packet-trace-examinations-with-the-experts", "url": "https://conference.wireshark.org/sf26eu/talk/7N8Q9Q/", "title": "The Packet Doctors are in! Packet trace examinations with the experts", "subtitle": "", "track": null, "type": "Packetdoctors Session", "language": "en", "abstract": "The experts on this panel have been asked to look at a trace file and help find a reason for certain behaviors by attendees at many SharkFests. Based on this, they\u2019ve decided to create a public forum for examining individual trace files with a broader audience for a collective learning experience. Trace files will be gathered from attendees prior to SharkFest and only given to the panel members during the session so that the \u201cnot-\r\nknowing what to expect and whether it can be solved\u201d experience of working through an unknown trace file can be preserved.\r\nCome to this session and learn to ask the right questions and look at packets in different ways.\r\nPLEASE SEND PERPLEXING TRACE FILES FOR ANALYSIS BY THE PANEL TO jasper@packet-foo.com PRIOR TO SHARKFEST!", "description": "", "recording_license": "", "do_not_record": false, "persons": [], "links": [], "feedback_url": "https://conference.wireshark.org/sf26eu/talk/7N8Q9Q/feedback/", "origin_url": "https://conference.wireshark.org/sf26eu/talk/7N8Q9Q/", "attachments": []}, {"guid": "fa948ae2-d43e-5c06-824c-e5c23baaea82", "code": "PDW7AX", "id": 214, "logo": null, "date": "2026-11-05T18:00:00+01:00", "start": "18:00", "duration": "03:00", "room": "Room 1", "slug": "sf26eu-214-1-sponsor-technology-showcase-reception-and-dinner", "url": "https://conference.wireshark.org/sf26eu/talk/PDW7AX/", "title": "Sponsor Technology Showcase Reception and Dinner", "subtitle": "", "track": "Organization", "type": "Dinner", "language": "en", "abstract": "Sponsor Showcase and Dinner", "description": "", "recording_license": "", "do_not_record": false, "persons": [], "links": [], "feedback_url": "https://conference.wireshark.org/sf26eu/talk/PDW7AX/feedback/", "origin_url": "https://conference.wireshark.org/sf26eu/talk/PDW7AX/", "attachments": []}]}}, {"index": 5, "date": "2026-11-06", "day_start": "2026-11-06T04:00:00+01:00", "day_end": "2026-11-07T03:59:00+01:00", "rooms": {"Room 1": [{"guid": "27b208e7-90a8-51b2-8e4b-b66156fc6862", "code": "8ZV9GX", "id": 215, "logo": null, "date": "2026-11-06T09:00:00+01:00", "start": "09:00", "duration": "01:00", "room": "Room 1", "slug": "sf26eu-215-sharkbytes", "url": "https://conference.wireshark.org/sf26eu/talk/8ZV9GX/", "title": "SharkBytes", "subtitle": "", "track": "Organization", "type": "Organization", "language": "en", "abstract": "SharkBytes consist of \u201clittle crunchy bits of wisdom.\u201d Like popular TED talks, SharkBytes aim to inform, inspire, surprise, and delight by delivering a speech on a personal topic in under 5 minutes.\r\n\r\nInformation and a review of past SharkByte presentations can be found https://sharkfest.wireshark.org/sharkbytes\r\n\r\nEmail us your SharkByte session idea: sharkfest@wireshark.org", "description": "", "recording_license": "", "do_not_record": false, "persons": [], "links": [], "feedback_url": "https://conference.wireshark.org/sf26eu/talk/8ZV9GX/feedback/", "origin_url": "https://conference.wireshark.org/sf26eu/talk/8ZV9GX/", "attachments": []}]}}]}}}