VIScon Workshop: Capture the Flag: Attack & Defense
Startzeit 11.10.2025 14:00
Endzeit 11.10.2025 17:00
Zum Kalender hinzufügen: ics Google
This event is only available for VIScon Symposium or Hackathon participants, as well as Helpers! Please sign up for one of these events first!
Participants will team up and connect to our battlefield infrastructure. They will initially be given time to inspect their own application landscape (provided by the organizers) and to patch vulnerabilities. In the second stage, each team will attack the other teams' applications in order to capture their flags - all while defending their own. This fast-paced battle simulation is not just fun to play, but also very educational! An Attack & Defense Capture the Flag competition is a practical way to learn about (web) application security. Each team will get ownership of a copy of the same web application environment, which contains vulnerabilities. Teams are tasked with finding these vulnerabilities and patching their own setup. They can then exploit these same vulnerabilities in the other teams' environments in parallel to continuing to fix the issues in their own environment. Teams earn points for service availability and successful attacks against the other teams.
Additional slots might become available later on. Please use the waiting list!
The VSETH General Privacy Policy applies to this event.
Details and Prerequisites
Workshops may require items VIScon cannot provide (e.g., a Laptop) which you have to bring with you or to set up something (e.g., install software) that would otherwise take up a significant chunk of the workshop. You may also need knowledge in certain fields (e.g., how to program in a specific language). All of this information can be found in the following paragraphs, so you can decide whether you want/can participate in this workshop, or not.
What you have to bring to the workshop:
- a Notebook with WiFi
- a VM with Linux, details will follow (not strictly required)
What you have to do before the workshop:
- a PDF with details will be provided which we expect the participants to read before the workshop
Knowledge requirements(/recommendations) for this workshop:
- Some basic (web) application security know-how highly recommended (OWASP Top 10)
- Basic web application development experience required
- No prior CTF experience required
FAQ
Why can't I sign up for this workshop?
If you signed up for the main event after the early access deadline (8:00pm, 18th of September), you can sign up from the 21st of September. But don't worry, we will send you a reminder when the sign up opens. Early access is our way to thank early supporters!
Das Kleingedruckte
Mit der Teilnahme erklärst du dich damit einverstanden, dass Fotos und Videos von dir gemacht werden, die für VIS-Zwecke (VISIONEN, Instagram, etc.) verwendet werden können
Mit der Teilnahme erklärst du dich damit einverstanden, den VIS Verhaltenscodex einzuhalten
Alle Teilnehmenden sind für ihre eigene Versicherung verantwortlich
Alle Angaben ohne Gewähr
Grundsätzlich gibt es keine Rückerstattungen
Event Organisatoren
Haupt-Organisator Luigi Pizza