About HackMiami

Seventeen-plus years of South Florida security community.

HackMiami is a South Florida-based information security community and organization that hosts training, conferences, and events focused on cybersecurity — including penetration testing, AI security, OSINT, and APT tactics. Originally established by working cybersecurity professionals, HackMiami serves as a networking hub for developing new techniques, conducting research, and pursuing contracting opportunities through regular meetings and international conference participation.

Featured on Rolling Stone: "The Geeks on the Frontlines."

What HackMiami does

Training & education

Enterprise penetration testing, AI SecureOps, APT tactics, offensive OSINT, and physical security assessments — taught hands-on.

Conferences

Hands-on training courses, speaking opportunities for original research, and capture-the-flag competitions for threat detection development.

Community

Regular member meetings, a platform for sharing research and methodology, and networking for business development.

History & milestones

From an informal campus collective to a recognized name in offensive security — year by year.

2008–2012 · Formation years

An informal technical collective

HackMiami began as an informal group at Florida International University, initially focused on hardware and embedded work before pivoting to cybersecurity, web application security, and malware analysis. Pre-conference CTF wins established credibility before HackMiami became a conference at all.

2013 · First conference

Miami Beach, May 17–19

HackMiami accepted Bitcoin at its first official conference, reinforcing its hacker-first image. The Web Application P0wn Off became a signature event format, and a Rolling Stone feature — "The Geeks on the Front Lines" — brought mainstream coverage. The Winter Hacker Festival and K&&K CTF were also featured.

2014 · First clean keynote year

Gary Bahadur, Dave Marcus

May 9–11 in Miami Beach. Featured the K&&K CTF, the "Revenge of the Web Application" Pwn-Off, and the Internet Computer Party.

2015 · Implant demo year

NFC implant deploying Android malware

One of the most cited early years — a live NFC implant demonstration, plus OSINT, YARA, hardware botnets, IoT telemetry, and cryptocurrency research on the program.

2016 · Prestige year

Iftach Ian Amit, John McAfee

May 13–15. The ZenEdge WAF-Off — a public AI/ML WAF battle — showed HackMiami's early framing of AI vs. security competitions.

2017 · Operations-heavy content

Michael Gough, Neil "Grifter" Wyler, Iftach Ian Amit

Program covered accepted-risk abuse, command-and-control tradecraft, webshell detection with machine learning, and aviation security research.

2018 · Threat intelligence focus

Christopher Ahlberg, Jack Daniel

One of the strongest later archive years, highlighted by machine learning security analytics on the program.

2019 · Peak pre-pandemic stability

Seacoast Suites, Miami Beach

Dave Marcus, Vinny Troia, and HackMiami leadership presented, supported by community programming on machine learning for identifying malicious actors, Maltego, Raspberry Pi, and OSINT.

2020 · Pandemic pivot

Fort Lauderdale · Keynote: Chris Roberts

Program covered GLIBC heap exploitation and offensive recon, with villages and competitions spanning Bluetooth, lockpicking, Raspberry Pi, and packet capture.

2021 · Meetup continuity

Hardware, cloud, and telecom research

Focus on hardware hacking, cloud pentesting, packet work, and telecom attack surface research. A HackMiami-associated researcher won the DEF CON Capture the Packet Black Badge.

2022 · RF, ICS, and OT expansion

Red Alert ICS CTF win at DEF CON 30

RF tooling, controls frameworks, and hybrid security material proved HackMiami's comfort at the intersection of real systems and emerging risk.

2023 · Return year (HackMiami X)

Sunny Isles Beach

A dual-track format debuted with "Nu World Order" and "Old World Order" tracks, covering detection engineering, Impacket, offensive tooling, and robotics/AI-adjacent demos.

2024 · Deepfake year (HackMiami XI)

Marenas Beach Resort

Standout moment: Brandon Kovacs' "CyberMirage" deepfake talk. Program also covered cloud abuse, file-system redirection bugs, and NIST AI RMF policy frameworks.

2025 · Modern AI and appsec (HackMiami XII)

Keynote: Marco Figueroa

Program flavor: secure SDLC, offensive engineering, telecom and enterprise perspectives, GenAI bug bounty, and appsec.

2026 · AI and agentic pivot (HackMiami 1101)

Marenas Beach Resort, May 12–16

Four days of training, one day of talks, dual-track format maintained. Keynote: Ryan Montgomery. Program includes AI-driven defensive security, AI/SOC workflows, red team tooling with MCP and agents, supply-chain risk in agentic automation, AI-powered social engineering, and OT/communications risk.

Want the full conference program?

Trainings, talks, CFP, and tickets for the annual HackMiami conference live at hackmiami.com.

Visit hackmiami.com