Insomni'hack hosts a traditional jeopardy-style CTF, as well as the Splunk Boss Of The SoC.
The CTF Teaser took place the weekend of the 19-20 of January. Detailed results can be found here. The following 6 teams were invited :
- Dragon Sector
The main Insomni'hack CTF contest was held on Friday March 22nd 2019, from 6 pm until 4 am the next morning. It started shortly after the end of the conferences. Teams are limited to 8 participants, onsite only. People need to register but the contest itself is free. The results can be viewed on this page.
Starting from 2019, Swiss and French technical school teams are invited to participate in the onsite CTF. They have a specific ranking in order to compete against each others. Each school team is also limited up to 8 player in which we allow maximum 2 professors/teaching assistants in the team.
Please contact ctf [at] insomnihack.ch for more details or if you have any questions.
For the onsite main event, make sure to bring power adapters and outlets, as well as a network cable.
As cryptocurrencies can't be trusted, we provide real, old-fashioned silver for the top 3 teams
The first 3 teams of the school ranking will receive prices and swag sponsored by QoQa.
Boss Of The SoC
Starting from 2018, Insomni'hack also host the Splunk Boss of The SOC (BOTS) contest, usually on the Thursday afternoon from 15h30 until 19h00.
BOTS is a blue-team CTF where participants use Splunk - and other tools - to answer a variety of questions about security incidents that have occurred in a realistic but fictitious enterprise environment. It's designed to emulate how real security incidents look like and the type of questions analysts have to answer. You’ll be endorsing the role of an incident responder, facing down an adversary at all stages of an attack.
The event takes place on the Thursday and last for 3 to 4 hours. You will play in a team of 1-4 people and compete against other participants. Each team is presented with a list of questions of varying difficulty through an automated BOTS scoring server. Each correct answer will be rewarded with an amount of points proportional to the question's difficulty. All questions require you to use Splunk to search, but not all questions can be answered without the help of other open source intelligence resources. Just like in the real world.
So what's next?
You don’t know Splunk yet? No problem! Check out "Hunting with Splunk: The Basics", which has been created specifically to prepare teams for what they will face in BOTS.
You don’t feel comfortable enough yet but would love trying it with a team ? Drop us an email at bots [at] insomnihack [dot] ch.