We are opening a registration for a CTF (capture the flag) competition.

The game Capture the Flag, entitled “PUT CTF: Web Security Challenge”, is about putting knowledge of cybersecurity and vulnerabilities in web systems (web applications) into practice in order to capture a hidden password-key called a ‘flag’. In a nutshell, it is a puzzle for all cybersecurity enthusiasts. 

 

The Player will have the opportunity to learn how to capture and exploit vulnerabilities in practice in order to have the right knowledge and experience to work in the cybersecurity industry in the future. While solving the game, the Player will encounter both typical and more sophisticated vulnerabilities found in systems. 

 

The gameplay is divided into four stages, each characterised by a different type of application often encountered in everyday life. These stages are the bank website, the online forum, the chat room and the company homepage. In the more advanced levels, special care has been taken to create a feeling of progression and to link vulnerabilities together. In this way, the player discovers new vulnerabilities as he or she delves deeper into the system.

 

To register please go to Google form: https://forms.gle/FxhJttV2q9rb74yn7 

More info on EUNICE website: https://eunice-university.eu/put-ctf-web-security-challenge-competition/ 

 

Timeline:

28.11. – 11.12.2024 – Registration 

13.12.2024 - Publishing the list of participants

14.12.2024 – Organizational meeting with the chosen players on Discord

16-20.12.2024 – Let the game begin! 

23.12.2024 (maximum till 24.12.2024) – Competition result 

 

Practical information:

  • The competition involves solving tasks related to web application security.

  • Participants earn points for correctly solving tasks. Tasks vary in difficulty and point value.

  • For knowledge reinforcement, the Player can use information found on the Internet. He or she can also use the internal ‘wiki’ system, or, in the case of greater difficulty, hints. Tips, however, are not free - they affect the final ranking at the end of the game.

  • The first participant to solve each task receives bonus points.

  • The competition platform will be available at: http://put-ctf-competition.put.poznan.pl/

  • Participants will only need a browser to solve the tasks. They will receive via email a login and password to a website maintained by the PUT. Logging in to this site will connect to the remote system (in the browser you will see the desktop, you will be able to open programs, the browser, etc.). This system will be configured by PUT students and it is on this system that the instructions for the participants, the tasks to be completed and the tools to be used to solve the tasks will be located.

  • The game ends when the allotted time has elapsed or when the Player has found all the flags and entered them into our system. In addition to the puzzle element itself, the Player will encounter a storyline and many interesting characters, which allow for immersion in the game world. Each participant will have a 4 hour slot to try to solve the puzzles.

  • The winner of the competition is the participant who accumulates the most points during the competition. In case of a tie, the time taken to solve the final task will determine the winner.
     

Before and during the competition, participants can contact the organizers via a dedicated Discord server https://discord.gg/edbMUWYSDm 

Załącznik
RULES OF THE PUT_Capture_The_Flag_Competition_CTF_EN.pdf433.78 KB
English