Attack/Defense CTF

Hacking Training for Fun & Education

Capture the Flag (CTF) is a special kind of information security competition or training. There are two main types of Capture the Flag events: Jeopardy and Attack/Defense.

Compass Security is using the Hacking-Lab CTF system, a well-known CTF system being used by several European countries for their National Cyber Security Competitions, including the final of the European Cyber Security Challenge 2014, 2015 and 2016.
CTF provided by Hacking-Lab

A Jeopardy-style CTF is providing several tasks or so-called “challenges” in a wide range of computer and network security categories, including Web, Forensic, Crypto, Binary, Reverse Engineering, Mobile Security, IoT, Secure Programming. Teams are not playing against each others. The more challenges they solve, the more difficult tasks they do, the better they score in the jeopardy CTF scoreboard.

An Attack/Defense CTF is really spicing up the jeopardy style CTF. Every team has its own “vulnerable” servers and services. Teams must attack other teams application while protecting the own from being hacked. Teams must keep their services up and running and must solve additional tasks and achievements in parallel.

Compass Security Team Training

Luck we have with Hacking-Lab, we have access to one of the best CTF systems in the world. Every team is having real access to their infrastructure. Attack and defense has to be done in real, and not in a virtualized and separated infrastructure. Players can bring their own tools and laptops along for playing the CTF.

The Compass Security penetration testers and security researchers were having a great time and were really enjoying the CTF today. It was both, fun and educational . Awesome.

Thank you Hacking-Lab !

October 6th, 2017
Ivan Bütler, CEO Compass Security