> Who we are

0xche is an horizontal group of hackers who through offensive security aims to strengthening the security systems of activist and civil society organizations in Latin America. Our identity combines a commitment to social transformation with solid technical capacity.

We believe that offensive security strategies are a fundamental tool to understand the vulnerabilities of the systems from organizations that work with information as a political weapon. Our goal is to democratize access to technical knowledge in offensive security through diverse and respectful communication to all genders and interdisciplinary knowledge colleagues.

We take up this challenge with a look at the field work of comrades in the region to ensure that our contributions have territorial relevance in power disputes. As activists in Latin America we understand frrom within the agenda of our social movements, as the challenges faced by activists for the right to free abortion or the complexities of the struggles of defenders of the land. As hackers, we have worked with emerging cybersecurity strategies used primarily by the private sector and our intention is to share them with the civil society.

> What we do

0xche has 4 lines of work:

Security audits. We perform security analysis of infrastructures and systems, based on realistic attack scenarios. We map the attack surface from an organization, identify security vulnerabilities in its infrastructure and technology, conduct controlled exploitation of those vulnerabilities to understand their impact, and then share key findings and actionable recommendations for mitigation. We have worked with activist organizations in Ibero-America since 2018.

Applied research. Based on our field work, we are dedicated to understand the state of art of computer security. The resources that exist are responses to the needs of the global north. We seek to understand the security threats of organizations in Latin America in order to respond in a situated and responsible manner to the problems of our region.

Offensive Hacking workshops in Spanish. We have carried out offensive security workshops for women, LGTBIQ + community and feminist colleagues. The first was * Mobile Application Security Analysis *, to perform static and dynamic analysis of an application, understand its main attack surface and the most common security vulnerabilities. The second was * Fundamentals of offensive security * to learn the theory and practise to identify and mitigate vulnerabilities for infrastructure and web levels. As part of these workshops we also generated documentation under a free license and in Spanish for the community, generating autonomy of shared knowledge and promoting future research and practices. We specifically work with organizations that can capitalize on this technical knowledge for their own security strategy in their organization or activism.

Contribute building a community with a technical focus in Latin America. Our projects aim to create a community in Latin America to facilitate the exchange of technical knowledge related to computer security in Spanish.

> Why is it important

Currently, there is a gap in technical knowledge related to offensive security in social organizations in the region. In the last decade, there has been a strong development of new strategies to address organizational computer security, which allow us to understand the role of an attacker in a controlled environment.

These strategies are used by the private sector, but their access is scarce in civil society organizations due to the lack of budget, time and access to knowledge. We believe offensive security is a critical resource today.

As a hacker collective, we intend to be a link that facilitates this transfer of knowledge for its appropriation by those who fight for social transformation in our region.

> We work with