Players compete against one another by exploiting off-the-shelf IoT devices. These 15+ devices all have known vulnerabilities, but to successfully exploit these devices requires lateral thinking, knowledge of networking, and competency in exploit development. CTFs are a great experience to learn more about security and test your skills, so join up in a team (or even by yourself) and compete for fun and prizes! Exploit as many as you can over the two days and the top three teams will be rewarded.
Registration is on-site through the CTFd instance we set up for this game.
THE FLAGSHIP EVENT IS OUR IOT VILLAGE CTF (CAPTURE THE FLAG) COMPETITION. THE CTF CONSISTS OF PARTICIPANTS HACKING NUMEROUS OFF-THE-SHELF DEVICES (E.G. MEDICAL DEVICES, HOME APPLIANCES, ROUTERS, AND STORAGE DEVICES, CAMERAS ETC).
AS YOU CAN IMAGINE, THIS IS QUITE ENERGIZING, EXCITING AND PIQUES A LOT OF CURIOSITY AS A HANDS-ON/APPLIED SECURITY EVENT!
THE RFID VILLAGE OFFERS A SHOWCASE OF SOME OF THE MORE COMMON RFID ACCESS CONTROLS, AND ENDEAVOURS TO SHOW ATTENDEES THE COMMON WEAKNESSES OF THESE CONTROLS. USING SPECIALIZED RFID TOOLS, ATTENDEES CAN READ AND CLONE LOW FREQUENCY ACCESS CARDS, AND TEST THEM OUT ON OUR MINIATURIZED DOORS.
IN ADDITION, WE INTRODUCE ATTENDEES TO HIGH FREQUENCY RFID CARDS, AND SOME OF THE ATTACKS ON EARLY VERSIONS SUCH AS THE MIFARE CLASSIC, AND HOW LATER ITERATIONS IMPROVED ON THE SECURITY OF THE CARDS.