How to Play

Hack Other Team's Services

Find targets: On the home page, you'll see a list of teams along with their services. You can access these services via the ip:port displayed there.

Flag Location: Every service has a flag located at /home/rta_service/flag.txt

Flag Details:

  • Flags change every minute
  • Each flag is worth 10 points
  • You have one minute from when it first appears to submit it

Denial of Service: You can take other team's services offline to make them lose points.

Pro-tip: Automate your exploitation and flag submission process. Check out the API for a more convenient interface for automation.

Keep Your Services Up and Running

Service Files: The files relevant to your service will be located in /app. The source code will be available there along with convenient scripts for starting and stopping your service.

Vulnerabilities: Each service includes one or more vulnerabilities. You need to patch them so that they still perform their original function but are no longer vulnerable. Don't get hacked!
Scoring System

Every minute, we check if your services are still up and functioning correctly:

  • +5 points For every service up
  • -10 points For every service down

Video Tutorials

How to Register An Account

How to Login

How to Create and Join a Team

How to Manage Your Team

CTF Services and Navigating to Challenges

How to Defend Your Services

How the Point System Works