"CODE BLUE 2026" Japan’s Premier International Cybersecurity Conference, Announces Details of All 8 Training Courses – Registration Opens in Early June –

2026.05.13 10:30

CODE BLUE Executive Committee

The CODE BLUE Executive Committee is pleased to announce the details of the eight training courses for the international cybersecurity conference "CODE BLUE 2026" (Trainings: November 11-15, Conference: November 17-18, Location: Shinjuku-ku, Tokyo). Details regarding capacity and pricing for each course will be announced as soon as these details are finalized. Registration for the training courses is scheduled to open in early June.

CODE BLUE 2026

■ Training Courses Doubled from 4 to 8 This Year

CODE BLUE conducts training courses aimed at fostering the next generation of cybersecurity professionals by providing opportunities to learn the latest skills directly from world-class experts. This year's training lineup features a total of 8 courses, focusing on "Adapting to Cutting-Edge Skills in the AI Era" and "Strengthening Practical Defense Capabilities." We offer specialized courses covering threat response in AI environments and AI-assisted investigation methods, as well as highly practical courses designed to enhance defensive capabilities, such as advanced event log analysis.

■ Overview of the Training Courses

1. OffSec EXP-401: Advanced Windows Exploitation (OSEE)

Dates : November 11 - 15 (5 Days)

Language : English

Trainer : OffSec Trainer

Provided by OffSec, famous as the creator of Kali Linux (a Linux distribution specialized for penetration testing), this training course is the company's most challenging offering. EXP-401 (AWE) is designed for experienced penetration testers and practically explores advanced exploit development—including security mitigation bypasses, complex heap manipulations, and 64-bit kernel exploitation—applied to large-scale enterprise applications.

2. OffSec: Advanced AI Red Teaming (OSAI)

Dates : November 13 - 15 (3 Days)

Language : English

Trainer : OffSec Trainer

Provided by OffSec, this is an advanced red teaming course specialized for AI environments such as generative AI and LLMs. Participants will practically learn techniques to identify AI-specific weaknesses in real systems and exploit AI-powered workflows and control surfaces from an adversary's perspective to demonstrate impact. Furthermore, they will acquire the mindset and methodology to translate these findings into defensible security improvements.

3. Advanced Windows Event Log Analysis and Threat Hunting Using Yamato Security Tools

Dates : November 13 - 15 (3 Days)

Language : Japanese

Trainer : Zach Mathis (Yamato Security)

Participants will learn how to detect attacks on Windows and Active Directory through Windows event log analysis. Covering everything from the basics to advanced attacks, attendees will master the fundamentals of attack investigation and analysis, along with methods for independent research. The analysis will primarily utilize Yamato Security's open-source tools. The course also covers Sigma detection rules and AI-assisted investigations, providing essential skills for forensic investigators, incident responders, SOC analysts, and threat hunters.

4. AI-Assisted Detection Engineering: Practical Blue Team Workflows with LLMs, Sigma, and MITRE ATT&CK

Dates : Nov 13 - 15 (3 Days)

Language : English

Trainers : Martin Cvetko (CCDCOE) /

Takahiko Aoyama (CCDCOE) /

Tinna Sigurdardottir (Hybrid CoE)

This training demonstrates how security teams can leverage LLMs and threat intelligence to accelerate detection engineering while maintaining essential human oversight. Participants will engage in realistic blue team workflows, including translating threat information into detection concepts, conducting MITRE ATT&CK mapping, and refining Sigma rules. Emphasizing human-in-the-loop decision-making and verification rather than blind trust in automation, the course equips attendees with the AI integration skills needed to enhance the speed and consistency of SOC and incident response operations.

5. The Browser as a Crime Scene: Browser Forensics and AI-Assisted Investigation [CodeBlue Exclusive]

Dates : November 13 - 15 (3 Days)

Language : English

Trainer : Saksham Tushar (Rippling)

This practical training treats the browser as a primary forensic source against attacks targeting SaaS and credentials. In addition to analysis and decryption techniques for major browsers, participants will utilize AI as a "force multiplier" (investigation accelerator) to build automated workflows for timeline generation and analysis. Through a breach investigation exercise on the final day, the course aims to equip attendees with advanced investigative capabilities that go beyond traditional methods, as well as AI-assisted forensic skills ready for immediate practical use.

6. AppSec Robots: Building Real-World Agents for Application Security

Dates : November 14 - 15 (2 Days)

Language : English

Trainers : Abhay Bhargav (AppSecEngineer) / Haricharana S (we45)

Designed for security teams drowning in repetitive task, this course provides methodologies for building AI agents that significantly enhance existing workflows. Participants will utilize OpenAI and Claude SDKs to create practical tools covering the entire "Security Lifecycle," including threat model generation, SAST/DAST scan automation, and cloud infrastructure auditing. Through hands-on labs, attendees will learn to build agents that adapt, reason, and scale.

7. Crownless Shield – A Deep Dive into Modern Defensive Operations

Dates : November 14 - 15 (2 Days)

Language : English

Trainer : Mars Cheng (TXOne)

This practical training is designed to hone your ability to respond to cyber attacks from the perspective of the blue team. It comprehensively covers everything from "detection techniques"—such as utilizing OSINT, endpoint detection with Wazuh, and network analysis—to Windows/Linux digital forensics and malware analysis using IDA Pro. Through a combination of theory and hands-on labs, participants will acquire specialized skills that can be immediately applied to SOC operations and incident response.

8. DevSecOps Masterclass: AppSec Automation Edition

Dates : November 14 - 15 (2 Days)

Language : English

Trainers : Vishnu Prasad (we45) / Hari Raksha Kishan Malali (we45)

Addressing the challenge of AppSec struggling to keep pace with accelerating DevOps, this course provides security engineers, developers, and DevOps professionals with practical implementation methods for DevSecOps and AppSec automation. Participants will learn to integrate security testing, supply-chain controls, secrets management, and policy enforcement into CI/CD workflows, and practice automated SAST, SCA, and SBOM generation using modern tools. The course also explores AI-assisted DevSecOps, aiming to build a complete DevSecOps pipeline that integrates security across the entire software delivery lifecycle.

CODE BLUE 2025 トレーニングの様子

Scenes from the CODE BLUE 2025 Training Courses

●Left: Abhay Bhargav (Trainer for "AppSec Robots: Building Real-World Agents for Application Security" in 2026)

●Right: Zack Mathis (Returning from 2025 to instruct "Advanced Windows Event Log Analysis and Threat Hunting Using Yamato Security Tools" in 2026)

■ Complimentary Conference Ticket for Training Attendees

As a special benefit, trainees will receive a complimentary ticket to the "CODE BLUE 2026" conference, held from November 17 to 18. This seamless experience of practical skill acquisition and cutting-edge research sharing makes attending both the training and the conference a highly valuable choice.

■ Conference Early Bird Tickets Available Until May 31

Early Bird tickets for the conference are on sale until May 31. From June 1, regular pricing will apply. If you are considering attending the conference, please register early. For further details, including pricing, please refer to the "CODE BLUE 2026 Outline".

■ About CODE BLUE

"CODE BLUE" is an international cybersecurity conference that gathers top-class experts from Japan and abroad. It is continually held with the aim of inviting prominent researchers from around the world to provide opportunities for sharing cutting-edge research findings and networking, as well as discovering talented young researchers from Japan and other Asian countries and propelling them onto the international stage.

Marking its 14th edition, the CODE BLUE 2026 conference will be held from November 17 to 18 at Bellesalle Takadanobaba, the same venue as last year. The event will also feature workshops, contests, sponsor booths, and networking parties. This year's conference will again be held in-person, with no online streaming provided* .

Prior to the conference, training courses will take place over five days, from November 11 to 15, at the Bellesalle Shinjuku Grand Conference Center.

* Note: After the conference, presentations approved by the speakers will be made available to the general public following an exclusive archive viewing period for attendees.

■CODE BLUE 2026 Overview

【Training】

Date: November 11 (Wed) - 15 (Sun), 2026

Venue: Bellesalle Shinjuku Grand Conference Center

(Sumitomo Fudosan Shinjuku Grand Tower 5F)

*Details regarding training pricing and other specifics will be announced on our official website as soon as these details are finalized.

(Japanese) https://codeblue.jp/program/trainings/

(English) https://codeblue.jp/en/program/trainings/

【Conference】

Date: November 17 (Tue) - 18 (Wed), 2026

Venue: Bellesalle Takadanobaba

　　(Sumitomo Fudosan Shinjuku Garden Tower B2/1F)