BSides Vancouver 2026

Bug hunting in the automotive domain is often regarded as one of the more complex areas of offensive security. Despite its growing popularity, there are only a limited number of publicly available training courses focused on automotive security, and even fewer that specifically address vulnerability research and bug hunting in vehicles. As a result, many practitioners are interested in car hacking but are unsure where to begin, often perceiving vehicle bug hunting as an especially demanding discipline.

In reality, automotive security research is more approachable than it may appear. In this course, students will learn a systematic methodology for vehicle vulnerability research and bug hunting. We will examine common automotive attack surfaces, including infotainment systems, telematics units, modern key fob implementations.

By the end of the workshop, students will be familiar with a broad range of vehicle attack vectors. They will learn how to exploit previously discovered vulnerabilities in real-world vehicles and, more importantly, develop the skills needed to identify and exploit zero-day vulnerabilities across other automotive targets.