This competition will test your cybersecurity knowledge as well as your ability to work under time constraints. Entries have as much as 2 hours to find vulnerabilities in an internal network consisting of 5 vulnerable machines. Collect flags, learn along the way and test yourself against our AI agents. Our AI is competing against you, bound by the same time limits, do you have what it takes to be humanity’s last stand?
From benign-looking web applications to improperly configured services, we have it all!
This activity is perfect for people interested in penetration testing as we have easy to high-difficulty vulnerabilities, we believe there’s something to learn for everybody! Expect it to be a hands-on, fun activity with real-world vulnerabilities and scenarios. We will also showcase how to solve each vulnerability at the end of the contest, as well as show a demo of how the AI solved each challenge and how it approached it.
Goal
Goal of the Competition
Exploit 4–5 vulnerable machines that simulate real-world environments & infrastructure.
Identify vulnerabilities, develop exploits and grab all the flags!
Gather as many points as possible before time runs out!
Rules
Rules of Engagement
The contestants should not perform Denial-of-Service attacks against the machines or attack the internal network.
Remote Code Execution vulnerabilities are not part of the contest.
We allow teams of as many as 3 people to share the same OpenVPN certificate.
Flags can be obtained in multiple ways in some scenarios. Every way of obtaining a flag, as long as it is obtained from the vulnerable machine and not through side-channel attacks, is allowed.
We warn you though, our AI agents are relentless and do not take breaks.
PRIZES
TBD
REGISTRATION
Registration will occur in-person at our stands, you will be granted a token and an OpenVPN certificate to access the internal network.