Who Are We?

Chris, the founder of BSides Hong Kong, is a highly experienced professional in the field of bug hunting. With a career spanning over 10 years, he has developed an extensive expertise in various areas including web application security, penetration testing, and malware analysis. Chris has earned numerous certifications, including an impressive count of 10 Common Vulnerabilities and Exposures (CVEs) and the prestigious Offensive Security Certified Expert (OSCP | OSCE | OSEE | OSWE | OSWP | OSEP | OSED | OSCE3 | OSMR) certification.

Throughout his career, Chris has actively contributed to the security community by reporting vulnerabilities to tech giants such as ASUS, Yahoo, eBay, and Apple. His contributions have not been limited to bug hunting alone, as he has also played a vital role in malware analysis for a Hong Kong Threat Intelligence Sharing Platform. With his vast experience and valuable contributions, Chris continues to be a active researchers in the cybersecurity field. He is also Blackhat USA and Blackhat MEA trainer.

Jason is the Penetration Testing Lead for a virtual bank and has a wealth of cyber security experience from both consultaning and working at various Fintechs. He has spoken at conferences such as BSides Cape Town and continues to actively participate in the community.

As the organizer of BSides Hong Kong, Krecendo plays a pivotal role in bringing together cybersecurity professionals and enthusiasts to share knowledge and innovations. Krecendo is an experienced Cybersecurity Manager currently working at DracoSec Research Limited, where he has been advancing the field of cybersecurity for 5 years. His expertise spans Red Teaming, Penetration Testing, and Security Risk Assessment and Analysis (SRAA), and he holds prestigious certifications such as OSEP, OSCP, CRTP, and ACP-Sec.

Krecendo's passion for the cybersecurity community extends beyond his professional responsibilities. He has served as a speaker at the HKCSS Protecting Information Assets and Enhancing Employee Information Security Awareness Seminar in 2023, underscoring his commitment to educating others about the importance of cybersecurity.

His current interests focus on cloud security, offensive cloud operations, and configuration reviews. Krecendo continuously evolves his knowledge and skills to stay ahead of emerging threats. His dedication, experience, and leadership in the cybersecurity field make him an invaluable asset to any organization.

Kenneth is a senior consultant at a local IT security consulting firm, with 15+ years of hands-on experience. He leads a team of ethical hackers to provide professional services to the customers from MNC, government,  to SME. Throughout his experiences, he has reviewed diversed targets such as web/mobile applications, end user devices, robots, and complex systems with multiple components involved. While hacking and breaking stuff (in a good and controlled way) is in his everyday routine, he is also experienced in identifying practical solutions to security problems with risk-based approaches. Kenneth can often be found in local information security community events, where he enjoys having fun with his geeky fellows and friends.

Mr. Frankie Wong has over 10 years of experience in cybersecurity, currently focusing on cyber threat intelligence analysis and security operations. He serves as a Senior Manager at an energy company in the utility sector. Prior to this role, he worked in the banking industry. Mr. Wong is also an executive committee member of the Professional Information Security Association (PISA) and the Hong Kong Computer Society’s Cyber Security Specialist Group (HKCS CSSG).

Martin Chan is an independent consultant who specializes in systems security architecture. He helps organizations design resilient, secure-by-design systems that defend against evolving threats without compromising performance. With deep expertise in architectural reviews, threat modeling, and secure infrastructure design.

Scott Tse is a security consulting, he served as the project owner of the first Cyber Intelligence Sharing Platform (CISP) in ASTRI, supporting Hong Kong’s licensed banks. At the research centre, he organized the first cross-tertiary CTF competition and took responsibility for driving the iCAST and CRAF frameworks with CREST and HKMA. As a security consultant, he love poking (loop)holes around enjoying the onsite adventures across countries. He now serves his clients in a local threat intelligence and brand protection provider.

William is a Cybersecurity and CTF enthusiast, mainly focus on Web Exploit, Red Teaming, and Programming.

He worked in UD as a Cyber Security Engineer for three and a half years. He is also interested in reverse engineering, blue teaming, and little gadget design (hardware, PCB).