
Black Hat USA 2026 · Las Vegas · August 4–6, 2026
Let’s meet at Black Hat
See ZeroPath find exploitable vulnerabilities and ship the fix. Come by booth #7908 in the AI Zone to win a Meta Quest.
Bonus: get a demo at booth #7908 and you’re entered to win a Meta Quest 3S 128GB.
Agenda
Where to find us at Black Hat 2026
- Tue, Aug 4 4–7 PMBooth
Visit us at booth #7908
Kick off the show with us. The Business Hall opens Tuesday evening — swing by, say hi, and catch a live demo before the floor gets busy.
AI Zone · Business Hall - Wed, Aug 5 9 AM–6 PMBooth
Visit us at booth #7908
Bring your gnarliest codebase. We’ll show you the broken auth, exposed secrets, and business-logic bugs pattern-matchers miss — and the patches that come with them.
AI Zone · Business Hall - Thu, August 6 3:35–4:15 PMTalk
Briefings: Scanning the Scanners: Turning Security Vendors into Supply Chain Weapons
Don’t miss Co-Founder & CTO Raphael Karger’s original research on how the security vendors and scanners you trust can be turned into supply-chain attack vectors.
Oceanside B · Mandalay BayView the talk - Thu, Aug 6 9 AM–4 PMBooth
Visit us at booth #7908
Last call on the floor. Swing by before you fly out, meet the team behind the research, and grab a demo to lock in your Meta Quest 3S raffle entry.
AI Zone · Business Hall

Featured Briefings talk
Scanning the Scanners: Turning Security Vendors into Supply Chain Weapons
Raphael Karger · Co-Founder & CTO, ZeroPath
In December 2025, ZeroPath caught a real attacker probing its scan infrastructure with payloads built to be swapped across vendors at scale. Raphael Karger shares what happened when ZeroPath turned that same lens on the rest of the industry — the systemic class of vulnerability it uncovered in widely used security scanners, the responsible-disclosure process that followed, and how the impact reached production databases, cloud credentials, and OAuth tokens at Fortune 100 companies, defense contractors, and government institutions.
The raffle
Win a Meta Quest 3S
128GB VR Headset
Get a demo at booth #7908 at Black Hat and you’re entered to win. We draw one winner after the event.
Book an onsite meeting
What we’ll show you
A vulnerability backlog your team can actually finish.
ZeroPath is AI-native application security: every finding is proven exploitable before it reaches you, and most land with a fix already written. Come see it run against real code at the booth.
Signal
Every candidate finding gets reviewed in context — exploitability, code flow, reachability — so up to 75% of the noise never reaches you. You chase real bugs, not scanner output.
Coverage
Agentic analysis catches what pattern-matching misses — broken auth, authorization gaps, and business-logic flaws — across code, dependencies, secrets, and IaC.
Velocity
Findings show up as ready-to-review fix PRs, verified after patching, with an audit trail behind every call. AppSec stops being the thing that slows everyone down.
Meet us at the show
Book an onsite meeting
Grab dedicated time with the team at booth #7908 — pick a slot below and we’ll see you at the show.
The details
- Where do I find you?
- We’re at booth #7908 in the AI Zone of the Business Hall at Mandalay Bay throughout Black Hat USA 2026, August 4–6. Come by anytime during show hours for a live demo, or book a dedicated onsite meeting above.
- When is the ZeroPath talk?
- Raphael Karger, Co-Founder & CTO, ZeroPath, presents “Scanning the Scanners: Turning Security Vendors into Supply Chain Weapons” on Thursday, August 6 from 3:35–4:15 PM in Oceanside B. It’s an original-research Briefings session — see the Black Hat schedule for the full abstract.
- How do I win the Meta Quest 3S?
- Get a demo at booth #7908 at Black Hat and you’re entered to win a Meta Quest 3S 128GB VR headset. We draw one winner after the event and reach out by email.
- What happens after I book a meeting?
- Pick a time on the scheduler and you’ll get a confirmation by email. Bring your toughest AppSec questions — we’ll show you exactly what a scan of your own code looks like.
- What happens to my details?
- We use them to coordinate your meeting and follow up after the show. They’re handled per our Privacy Policy, and every email we send has an unsubscribe link.