See you in Paris!
On 26-27 June 2026, leHACK returns to Paris for a new edition of France’s legendary hacking event, organised by HackerZVoice.
Once again, La Cité des Sciences et de l’Industrie will welcome thousands of security enthusiasts, hackers and cybersecurity professionals from around the world for two days of conferences, workshops, challenges and the iconic annual wargame.
And of course, YesWeHack will be there.
Come and meet our team at booth 49. We’ll be bringing good vibes, exclusive swag, useful tips for the hacking community, and a brand-new hacking challenge for the most motivated participants, crafted by our in-house hackers Brumens and BitK.
As always, leHACK would not be complete without our annual Live Hacking Event. This year again, it will take place in Le Loft, with a fresh target for hunters to test their skills on. More details below.
Tempted? Grab your ticket now and join us in Paris.
Two days. One target.
We're back at leHACK 2026 with one of our community’s favourite rendez-vous: our exclusive Live Hacking Event at Le Loft.
It's still open to all leHACK attendees, but this year, we’re changing the pace.
For the first time, the Live Hacking Event will start on Friday 26 June, giving hackers two days to explore the target, test their ideas, submit reports, and compete for rewards.
As usual, the company and scope will remain secret until the official launch. Once revealed, hunters will be able to jump in, review the rules, explore the target, and start submitting vulnerabilities through the YesWeHack platform.
When and where?
📆 From 26 June 2026, 1:00 PM to 27 June 2026 8:00 PM
📌 Le Loft @ La Cité des Sciences et de l’Industrie, Paris
How to get involved
To join the Live Hacking Event, you’ll need to be registered for leHACK 2026 and physically present onsite.
Before the event, make sure you have a YesWeHack account and that your verification steps are completed. By participating, hunters agree to the YesWeHack Bug Bounty platform’s terms of use.
Once you’re at leHACK, connect to the venue Wi-Fi, log in to your YesWeHack account, and visit yeswehack.com/programs. The exclusive leHACK 2026 Live Hacking Event program will be available from there.
Then it’s up to you: read the scope, understand the rules, build your approach, and start hunting.
Why join the hunt
Whether you’re aiming for the top of the leaderboard, looking for your next valid finding, or simply joining for the challenge and the atmosphere, this Live Hacking Event is designed to be both competitive and fun.
You’ll get the chance to test your skills in real time, exchange with other ethical hackers, meet the YesWeHack team, and connect with the partner’s security team.
And yes, there will be rewards, recognition, and exclusive swag for participants.
See you there!
Paylod Plz Reloaded
The challenge
One payload. Multiple systems. As much chaos as possible.
After last year’s challenge, BitK is back, and this time, he’s joining forces with Brumens to bring you Payload Plz Reloaded, a new version of the challenge where precision matters just as much as creativity.
The concept is simple: submit a single payload and send it across several systems at once. Your mission is to compromise as many of them as possible with that one input.
But this is not just about making things break.
Your score will depend on several factors: how many systems you successfully hack, how short your payload is, and how many failed attempts it takes you to get there. In other words, a short payload that compromises many systems with very few tries could outperform a longer payload that hits more targets but burns through too many failed attempts.
So yes, size matters. But so does accuracy.
One payload to rule them all? Let’s see what you can reload.
Good to know 💡
- The challenge will run from Friday 26 June at 9:00 AM to Saturday 27 June at 6:00 PM.
- If you’re attending leHACK 2026, head to booth 49 and scan the QR code to join the challenge. Not on site? Keep an eye on our LinkedIn and X accounts for the access link to take part remotely.
- On-site participants will receive a coin to use in our goodies-filled Gashapon machine each time they compromise at least three systems with a single payload.
- At the end of the challenge, the three best on-site participants will be announced and rewarded at the YesWeHack booth. A winner will also be selected among online participants.
About us
YesWeHack is a leading Offensive Security and Exposure Management platform delivering integrated, API-based solutions to secure organisations’ growing attack surfaces. Its human-in-the-loop model combines Bug Bounty (leveraging a global community of 135,000+ skilled ethical hackers), Autonomous Pentesting, Continuous Pentesting and unified vulnerability management to deliver agile, exhaustive security testing at scale. Customers include Louis Vuitton, Ferrero, the European Commission, Tencent and L’Oréal Groupe. ISO 27001-certified, CREST-accredited, and EU-hosted with full GDPR compliance.
