BAMBOOSEC - John "Panda" Aff

🔐 About

Lives and breathes enterprise networks, blue team ops, and offensive security. Built and led a security program at an S&P 500. Now delivering best-in-class VMaaS and PTaaS at Assura Inc, scaling blue team offerings at RedSeer Security, and giving back to the community. Conference junkie. #badgelife maker. InfoSec forever. ♥️🐼

🏆 Achievements

TelePhreak Black Badge

LIFETIME

TeleChallenge Winner. Black Badge holder.

DEF CON TeleChallenge Winner

'22 / '23 / '25

Three-time champion with Team Fox Box Dialing Services. 🦊📦☎️

DEF CON PhreakMe

'24

2nd Place. ♥️ Psychoholics.

🎤 Talks

Meshtastic for North Florida

NOFARS 2026. Introduction to Meshtastic mesh networking for the North Florida Amateur Radio Society. Building encrypted off-grid communications, growing the JAXMesh network, and the CommsForAll mission.

NOFARS 2026 Meshtastic LoRa Mesh

BarCode Podcast with Chris Glanden

BarCode Podcast Episode #130. From game hacking to enterprise security to DEF CON TeleChallenge champion. Phreaking, badge making, Meshtastic mesh networks, and building community.

Podcast BarCode Interview

Mesh Networks, Mentorship, and Modern Phreaking

Co-presented with Len Noe at HackRedCon 2025. OSINT, social engineering, phreaking war stories, Meshtastic mesh networks, and the CommsForAll project.

HackRedCon Meshtastic Phreaking

The Golden Age of Vessel Hacking

Hack Space Con 2025. How a Comma Panda and OpenPilot skills turned into vessel hacking. NMEA 0183/2000, CAN bus attacks, GPS spoofing via bus injection, PGN address claiming, and building a maritime attack toolkit from automotive tools.

Hack Space Con 2025 Maritime NMEA CAN Bus

Hardware Hacking with Linux

JAXLUG 2025. Hands-on hardware hacking with Raspberry Pi and PiFex. UART baud detection, SPI flash dumping, SWD/JTAG debugging with OpenOCD, firmware extraction and analysis with Ghidra. From FCC ID lookup to root shell.

JAXLUG 2025 Hardware UART Firmware

💻 Projects

Hacking Playbook

LIVE

Community-sourced playbooks for hackers, by practitioners for practitioners. Vessel hacking, IoT/hardware hacking, and more. Open source on GitHub.

Open Source Community Education

Hackers IRL Podcast

LIVE

Where the digital underground meets real life. Backstage pass to hacker community events.

Podcast Community

CommsForAll

LIVE