CODE BLUE 2026, Japan’s Premier International Cybersecurity Conference, Opens Training Registration

Call for Presentations and Contest & Workshop Organizer Applications Now Open

2026.06.18 13:30

CODE BLUE Executive Committee

The CODE BLUE Executive Committee is pleased to announce that registration for the trainings of the international cybersecurity conference "CODE BLUE 2026" (Trainings: November 11-15, Conference: November 17-18, Venue: Shinjuku-ku, Tokyo) is now open. Registration for the trainings will close on Sunday, November 8. In addition, the application deadline for Contest & Workshop organizers has been extended to Friday, July 31. The Call for Presentations (CFP) remains open for submissions.

CODE BLUE 2026

■Training Registration Now Open!

Ahead of the conference, CODE BLUE will host its trainings from Wednesday, November 11 to Sunday, November 15, 2026, at Bellesalle Shinjuku Grand Conference Center in Tokyo. This year, CODE BLUE offers a total of eight courses—double the number offered last year. The program features practical courses designed to strengthen defensive cybersecurity capabilities, including training on responding to AI-era threats, AI-assisted investigation techniques, and advanced Windows forensics.

In addition, training attendees will receive a complimentary ticket to the CODE BLUE 2026 Conference, which will be held from Tuesday, November 17 to Wednesday, November 18. This unique opportunity enables attendees not only to gain hands-on skills through practical training, but also to explore the latest cybersecurity trends through cutting-edge research presentations and networking with experts from around the world.

Registration for all training courses will close on Sunday, November 8. We look forward to your participation.

<1. OffSec EXP-401: Advanced Windows Exploitation (OSEE) >

Trainer: OffSec Trainer

Overview: Provided by OffSec, famous as the creator of Kali Linux (a Linux distribution specialized for penetration testing), this training course is the company's most challenging offering. EXP-401 (AWE) is designed for experienced penetration testers and practically explores advanced exploit development—including security mitigation bypasses, complex heap manipulations, and 64-bit kernel exploitation—applied to large-scale enterprise applications.

Dates : November 11-15 (5 Days)

Language: English

Format : In-person

Capacity : 20 participants (minimum of 10 participants required)

Price : JPY 1,760,000 (incl. tax) *Subject to change

Details & Registration: https://codeblue.jp/en/program/trainings/offsec-osee/

*The registration page is currently under preparation and will be published once it is ready.

<2. OffSec Advanced AI Red Teaming (OSAI) >

Trainer: OffSec Trainer

Overview: Provided by OffSec, this is an advanced red teaming course specialized for AI environments such as generative AI and LLMs. Participants will practically learn techniques to identify AI-specific weaknesses in real systems and exploit AI-powered workflows and control surfaces from an adversary's perspective to demonstrate impact. Furthermore, they will acquire the mindset and methodology to translate these findings into defensible security improvements.

Dates : November 13-15 (3 Days)

Language: English

Format : In-person

Capacity : 20 participants (minimum of 10 participants required)

Price : JPY 800,000 (incl. tax) *Subject to change

Details & Registration: https://codeblue.jp/en/program/trainings/offsec-osai/

*The registration page is currently under preparation and will be published once it is ready.

<3. DEaTH by Windows: Detection Engineering and Threat Hunting with Yamato Security Tools and AI>

Trainer: Zach Mathis (Yamato Security)

Overview: This 3-day hands-on training teaches participants how to investigate Windows compromises using free and open-source tools—and how to supercharge that analysis with generative AI. It is a major upgrade of the 2-day training held at CODE BLUE last year, expanded with new sections on evidence acquisition, popular Windows forensic artifacts such as the Master Boot Record (MBR), Prefetch, and Shimcache, using AI to create Sigma detection rules, and AI-assisted analysis of Hayabusa results.

Dates : November 13-15 (3 days)

Language: Japanese / English (training materials and lecture videos will be provided in both languages)

Format : Hybrid (in-person and online)

Capacity : 40 onsite participants (minimum of 10 participants required)

Price : JPY 330,000 (incl. tax)

Details & Registration:https://codeblue.jp/en/program/trainings/windows_death/

<4. AI-Assisted Detection Engineering: Practical Blue Team Workflows with LLMs, Sigma, and MITRE ATT&CK>

Trainers: CCDCOE (NATO Cooperative Cyber Defence Centre of Excellence) Trainer

Overview: This training demonstrates how security teams can leverage LLMs and threat intelligence to accelerate detection engineering while maintaining essential human oversight. Participants will engage in realistic blue team workflows, including translating threat information into detection concepts, conducting MITRE ATT&CK mapping, and refining Sigma rules. Emphasizing human-in-the-loop decision-making and verification rather than blind trust in automation, the course equips attendees with the AI integration skills needed to enhance the speed and consistency of SOC and incident response operations.

Dates : Nov 13-15 (3 Days)

Language: English

Format : In-person

Capacity : TBA

Price : TBA

Details & Registration: https://codeblue.jp/en/program/trainings/ai-assisteddetection/

*The registration page is currently under preparation and will be published once it is ready.

<5. AI AppSec Robots: Building Real-World Agents for Application Security>

Trainers: Abhay Bhargav (AppSecEngineer) / Haricharana S (we45)

Overview: Designed for security teams drowning in repetitive tasks, this course provides methodologies for building AI agents that significantly enhance existing workflows. Participants will utilize OpenAI and Claude SDKs to create practical tools covering the entire "Security Lifecycle," including threat model generation, SAST/DAST scan automation, and cloud infrastructure auditing. Through hands-on labs, attendees will learn to build agents that adapt, reason, and scale.

Dates : November 14-15 (2 Days)

Language: English

Format : In-person

Capacity : 42 participants (minimum of 10 participants required)

Price : JPY 400,000 (incl. tax)

Details & Registration: https://codeblue.jp/en/program/trainings/aiappsecrobots/

<6. The Browser as a Crime Scene: Browser Forensics and AI-Assisted Investigation [CodeBlue Exclusive]>

Trainer: Saksham Tushar (Rippling)

Overview: This practical training treats the browser as a primary forensic source against attacks targeting SaaS and credentials. In addition to analysis and decryption techniques for major browsers, participants will utilize AI as a "force multiplier" (investigation accelerator) to build automated workflows for timeline generation and analysis. Through a breach investigation exercise on the final day, the course aims to equip attendees with advanced investigative capabilities that go beyond traditional methods, as well as AI-assisted forensic skills ready for immediate practical use.

Dates : November 13-15 (3 Days)

Language: English

Format : In-person

Capacity : 15 participants (minimum of 5 participants required)

Price : JPY 440,000 (incl. tax)

Details & Registration: https://codeblue.jp/en/program/trainings/browserasacrime/

<7. Crownless Shield – A Deep Dive into Modern Defensive Operations>

Trainer: Mars Cheng (TXOne)

Overview: This practical training is designed to hone your ability to respond to cyber attacks from the perspective of the blue team. It comprehensively covers everything from "detection techniques"—such as utilizing OSINT, endpoint detection with Wazuh, and network analysis—to Windows/Linux digital forensics and malware analysis using IDA Pro. Through a combination of theory and hands-on labs, participants will acquire specialized skills that can be immediately applied to SOC operations and incident response.

Dates : November 14-15 (2 Days)

Language: English

Format : In-person

Capacity : 42 participants (minimum of 10 participants required)

Price : JPY 250,000 (incl. tax)

Details & Registration: https://codeblue.jp/en/program/trainings/crownlessshield/

<8. DevSecOps Masterclass: AppSec Automation Edition>

Trainers: Vishnu Prasad (we45)

Overview: Addressing the challenge of AppSec struggling to keep pace with accelerating DevOps, this course provides security engineers, developers, and DevOps professionals with practical implementation methods for DevSecOps and AppSec automation. Participants will learn to integrate security testing, supply-chain controls, secrets management, and policy enforcement into CI/CD workflows, and practice automated SAST, SCA, and SBOM generation using modern tools. The course also explores AI-assisted DevSecOps, aiming to build a complete DevSecOps pipeline that integrates security across the entire software delivery lifecycle.

Dates : November 14-15 (2 Days)

Language: English

Format : In-person

Capacity : 30 participants (minimum of 10 participants required)

Price : JPY 300,000 (incl. tax)

Details & Registration: https://codeblue.jp/en/program/trainings/devsecops/

2025年のトレーニングの様子：Abhay Bhargav氏(写真左)と田中ザック氏(写真右)は昨年に引き続き、2026年もトレーニング講師として登壇

A scene from the 2025 training session: Abhay Bhargav (left) and Zack Tanaka (right) will return as training instructors for CODE BLUE 2026

■Call for Contest and Workshop Organizers: Deadline Extended to July 31

CODE BLUE is inviting applications from organizations and groups interested in hosting contests and workshops during the conference. Past programs have included blue team exercises focused on incident response, CTF challenges, workshops on topics such as automotive and medical device security, and ideathons for sharing tools and ideas.

The application deadline has been extended to Friday, July 31. We welcome proposals for engaging and innovative initiatives that will help make CODE BLUE 2026 even more dynamic and engaging. Please submit your application via the link below.

Japanese: https://codeblue.jp/cfp/contests-workshops/

English : https://codeblue.jp/en/cfp/contests-workshops/

Deadline : Friday, July 31, 23:59（JST/UTC+9）

2025年のAerospace Villageの様子

A scene from Aerospace Village at CODE BLUE 2025

■Call for Presentations (CFP) Now Accepting Submissions - Deadline: July 31

CODE BLUE 2026 is now accepting submissions for presentations. CODE BLUE has long served as a platform for leading researchers and practitioners from around the world to share cutting-edge research, innovative ideas, and practical expertise. Previous speakers have included cybersecurity experts, academic researchers, law enforcement professionals, policymakers, and other key figures at the forefront of the field.

We welcome proposals covering a wide range of topics, including original research findings, practical initiatives, emerging threats, innovative technologies, and presentations that offer fresh perspectives on cybersecurity.

Selected speakers will be eligible for honoraria and travel support to Japan. In addition, to encourage research and development among younger generations, CODE BLUE offers a dedicated Youth Track (U25), with outstanding presenters receiving research grants. We look forward to receiving your proposals.

Japanese: https://codeblue.jp/cfp/presentations/

English　: https://codeblue.jp/en/cfp/presentations/

Deadline : Friday, July 31, 23:59（JST/UTC+9）

■ About CODE BLUE

"CODE BLUE" is an international cybersecurity conference that gathers top-class experts from Japan and abroad. It is continually held with the aim of inviting prominent researchers from around the world to provide opportunities for sharing cutting-edge research findings and networking, as well as discovering talented young researchers from Japan and other Asian countries and propelling them onto the international stage.

Marking its 14th edition, the CODE BLUE 2026 conference will be held from November 17 to 18 at Bellesalle Takadanobaba, the same venue as last year. The event will also feature workshops, contests, sponsor booths, and networking parties. This year's conference will again be held in-person, with no online streaming provided* .

Prior to the conference, training courses will take place over five days, from November 11 to 15, at the Bellesalle Shinjuku Grand Conference Center.

* Note: After the conference, presentations approved by the speakers will be made available to the general public following an exclusive archive viewing period for attendees.

■CODE BLUE 2026 Overview

【Training】

Date: November 13 (Fri) to November 15 (Sun), 2026

Venue: Bellesalle Shinjuku Grand

　　　 (Sumitomo Fudosan Shinjuku Grand Tower 5F)

*Details including training fees will be announced on the official Trainings page once finalized.

(Japanese) https://codeblue.jp/program/trainings/

(English) https://codeblue.jp/en/program/trainings/

【Conference】

Date : November 17 (Tue) to November 18 (Wed), 2026

Venue : Bellesalle Takadanobaba

　　(Sumitomo Fudosan Shinjuku Garden Tower B2/1F)