'Our Experience at #RootedCON2025: A Commitment to the Spanish Cybersecurity Community'

From March 3 to 8, the most important cybersecurity congress in Spain, RootedCON, took place. An event that year after year brings together experts, enthusiasts, and professionals from the sector to share knowledge, experiences, and discuss the most relevant trends in cybersecurity. In this edition, the 15th, Zerolynx (by Cybertix) had a prominent participation with four appearances: a round table, a three-day bootcamp, and two technical conferences. Additionally, we had the opportunity to sponsor the Securiters track as a Gold sponsor and had a stand throughout the congress, which was packed with attendees and where our merchandise was very well received, especially the sunglasses :). We also organized several challenges such as Nerf shooting, skill games, and lockpicking techniques, which attracted even more interest and participation from the public.

One of the most special moments at our stand was the holding of a contest thanks to the support of the TándEM Vertical Print Project from the ONCE Foundation - Inserta Innovación. TándEM Vertical Print aims to transform the classic occupation "Printing Process Workers" into the new occupation: "Vertical Printing Process Worker with Generative Artificial Intelligence." The project consists of 25 students with disabilities under 30 years old located in Madrid and Barcelona. It is funded by the European Union - Next Generation EU and involves the participation of the Ministry of Labor and Social Economy of Spain within the Recovery, Transformation and Resilience Plan, being linked to the State Public Employment Service (SEPE). Thanks to this initiative, attendees were able to enjoy an innovative contest at our stand, promoting inclusion and technology.

Active Directory: The Critical Link in Corporate Security + Bootcamp

The first of our conferences was by Alejandro Amorín, Head of the Red Team at Zerolynx, who delivered one of the most attended talks of the event: Active Directory: the critical link in corporate security. During his presentation, Alejandro explored the importance of security in business environments, focusing on AD, and presented methodologies for conducting internal audits with a mitigation approach based on PDCA and OKRs.

The reception of the talk was spectacular, to the point that the room was completely filled, forcing some attendees to follow the presentation from the hallways. Alejandro shared with us how, the night before, he was still making adjustments to his presentation to ensure that it conveyed the message in the most effective way possible. His effort was rewarded with very positive feedback, both for his talk and for the Active Directory Attacks bootcamp he conducted alongside Axel Losantos in the days prior. "It was a very demanding Rooted in terms of effort, but it was worth it," Alejandro stated, thanking all the attendees for their interest and participation.

"Each edition of Rooted reflects a growing commitment from companies to build safer environments and share knowledge. This effort represents a fundamental step towards strengthening cybersecurity at the national level in the near future. As a contribution to this initiative, the Active Directory Attack Bootcamp reflected that small part of knowledge sharing, with professional students from both offensive and defensive backgrounds attending to reinforce their knowledge and build that secure ecosystem for their companies. For me, it has been an enriching and rewarding experience, as it has allowed me to give back to the community part of what it once provided to me," concluded our colleague Axel Losantos.

Industrial Cybersecurity: The Pending Subject

At the round table on Industrial Cybersecurity and Internal Audit, our colleague Ander Galisteo, head of the OT cybersecurity line at Cybertix, shared his insights alongside other industry experts. During the discussion, the lack of maturity in the security of industrial systems was highlighted and how this situation can compromise the business continuity of many companies.

One of the most interesting aspects of the round table was the unanimity among the participants regarding the need to strengthen security in these environments. "If we do not analyze the cybersecurity of industrial environments, business continuity can be severely affected," noted Ander, highlighting that the industry still does not give this issue the priority it deserves. The conversation before and after the event reinforced the idea that industrial cybersecurity remains an unresolved issue for many organizations.

Forced Authentications and Sniffing: Unraveling the Hidden Processes

Dimas and Egoitz, pentesters from the Red Team at Zerolynx, conducted a technical talk on forced authentications and sniffing, with the aim of demystifying these concepts and making them graphically understandable. During their presentation, they emphasized the importance of analyzing and investigating the processes that occur in the most commonly used auditing tools, especially in the context of Active Directory, even showing different Lolbins.

Both meticulously prepared the conference, rehearsing several times and perfecting the material with feedback from their colleagues. As often happens in large-scale events, nerves appeared at the crucial moment. "Seeing the room almost full was shocking," they shared with our Marketing colleagues. After the presentation began, the tension dissipated and they presented fluently, managing to capture the audience's interest. At the end, they received very positive feedback, which reaffirmed the success of their presentation and the value of the knowledge shared.

Conclusion: A RootedCON for Remembrance

Zerolynx's participation in RootedCON 2025 has been intense and rewarding. From the round table on industrial cybersecurity to the bootcamp and technical conferences, each of our experts has left their mark on the event. Additionally, our stand was a key point of the congress, where we shared moments with clients and attendees in general, distributed merchandise, and enjoyed skill challenges and lock picking with the community. We are also proud to have had the support of the TándEM Vertical Print Project in our contest, promoting inclusion and innovation in the technology sector.

For us, this type of meeting represents an invaluable opportunity to share our knowledge, learn from other professionals, and continue to promote awareness in the field of cybersecurity.

We want to thank the organization of RootedCON, the attendees who joined us in our presentations, and the entire community that makes it possible for this event to continue being a benchmark in the sector. We will see you at the next edition, with more learnings, experiences, and challenges to face together.