HackingLab Day: Theory, Practice & CTF

Curious about ethical hacking, but not sure where to start? This one-day hands-on training gives you a practical entry into the mindset, methods, and basics behind security research and then lets you apply what you’ve learned in a Capture-the-Flag challenge.

gbf-blog-hsg-event-2027-03-27-no-date.png

March 27, 2026 - St. Gallen

09:00–16:30, followed by apéro and networking

Location: START Global Campus, Unterstrasse 6, St.Gallen.

A hands-on day offering a practical introduction to ethical hacking. Explore the legal framework, learn the tools and techniques security teams use in the real world, and put your skills to the test in a capture-the-flag challenge.

Co-hosted by: University of St. Gallen and GObugfree

Spaces are limited. Priority will be given to students and staff of the University of St. Gallen.

Register

Program

09:00–09:15 Welcome & introduction (Christina Kistler & Guido Salvaneschi)
09:15–09:30 Strategic Cybersecurity - new Master specialization in Computer Science (Guido Salvaneschi)
09:30–10:15 Hacker’s toolbox: getting started in ethical hacking (Michael Schläpfer)
10:15–10:30 Coffee break
10:30–12:30 Capture-the-Flag (CTF) (Group 1)
10:30–12:30 Theory sessions (Group 2)
10:30–10:50 Legal aspects of ethical hacking (Christina Kistler)
11:00–11:20 Introduction to incident response (James Pooler)
11:30–12:30 Hacking AI tutorial (Dr. Matteo Biagiola)
12:30–14:00 Lunch
14:00–16:00 Capture-the-Flag (CTF) (Group 2)
14:00–16:00 Theory sessions (Group 1)
14:00–14:20 Legal aspects of ethical hacking (Christina Kistler)
14:30–14:50 Introduction to incident response (James Pooler)
15:00–16:00 Hacking AI tutorial (Dr. Matteo Biagiola)
16:00–16:15 How ethical hackers think: Insights from 2025 ROESTI winners
16:15–16:30 Wrap-up & prizes
From 16:30 Apéro & networking, sponsored by ZITADEL

What you will learn

  • Legal framework: Understand why hacking, even with good intentions, can be illegal by default, and what conditions are required to operate within the law.

  • Hacker’s toolbox: Get to know the basic tools and approaches that form the foundation of security research.

  • CTF (Capture-the-Flag): Learn by doing: apply your skills in a hands-on challenge and practice how to think like a security researcher in a controlled environment.

Register

Please note:

  • Spaces are limited. Priority will be given to students and staff of the University of St. Gallen
  • You will need a laptop (or tablet) for the CTF.