CyberHack2024: Spring Edition
Attention all cybersecurity aficionados and Hackerbase enthusiasts! Mark your calendars for an unparalleled event that is set to ignite the cybersecurity community with the spirit of innovation and competition. In partnership with OpenData Playground CyberHack2024 Spring Edition is landing on the 20th of April, 2024, bringing with it a day filled with intense cybersecurity challenges and learning opportunities.
Event Overview
Location: Remote
Date: 20th of April, 2024 from 10:00 to 14:00 CET
Prepare to dive deep into the intricate world of application security through a series of meticulously designed challenges that will test your skills, adaptability, and critical thinking. CyberHack Spring Edition is not just an event; it's a battleground for the brightest minds to showcase their prowess in overcoming the most daunting cybersecurity obstacles.
What Awaits You in Stage One
Memory Errors, XSS, Reverse Engineer and more. Tackle vulnerabilities that plague modern applications. These challenges will range from easy to advanced levels, ensuring participants of all skill levels find engaging and stimulating problems to solve.
Challenge 1 - Cross Site Scripting (XSS) (3 levels 20 minutes each)
- Objective:
This module tests a candidate's ability to leverage a cross-site scripting (XSS) vulnerability within a web application. The goal is to exploit the XSS flaw to execute a specific function that wouldn't ordinarily run, which in turn, rewards the candidate with a flag, signifying the successful completion of the challenge.
- Process:
Participants are given access to a web application that is susceptible to cross-site scripting (XSS) attacks. They are tasked with analyzing the server's behavior, any applied filters, and client-side actions to exploit the XSS vulnerability. Successfully exploiting the vulnerability to trigger a function on the server will result in obtaining the flag.
Challenge 2 - Reverse Engineer x86 (3 levels 20 minutes each)
-
Objective:
This module evaluates a candidate's ability to reverse-engineer an x86 binary and decipher the functionality of a specific function. Candidates are required to use a given input to traverse the basic block graph of the function and compute the corresponding output.
-
Process:
Participants receive a function contract, the function's input, and the basic block graph representing the assembly instructions of the reverse-engineered function. Candidates must traverse the graph using the provided input and determine the output to answer the question correctly.
Challenge 3 - Memory Errors (2 levels 20 minutes e 40 minutes)
-
Objective:
This evaluates a candidate's ability to analyze the source code of a binary and exploit existing vulnerabilities. Successful exploitation results in the retrieval and submission of a flag.
-
Process:
A container is launched containing several exercises, each with a binary and its source code. The candidate must execute the binary with specific inputs to exploit vulnerabilities and secure the flag.
Who can participate?
CyberHack - Spring Edition is open to university students, graduates, and professionals to test their skills and have the opportunity to acquire new knowledge.
Everyone can join the event and challenge themselves, but to qualify for prizes, participants must achieve the highest score in the challenges and also meet the requirements listed in below.
Why Participate?
CyberHack2024 is more than a competition; it's a catalyst for growth, learning, and professional development:
- A fabulous badge for clinching the competition (though, let's be honest, the real excitement lies elsewhere)
- $200 Amazon voucher (now we are talking)
- Network with individuals who share your passion and drive for cybersecurity.
Rules
Participation in the CyberHack - Spring Edition is open to individuals who jointly meet the following requirements:
- They are 18 years old or older.
- They have completed the registration procedure on the Platform and operate within it as "Users," using their personal profiles.
Additionally, to participate in the Challenge and win prizes, players must upload the following information in the dedicated section of their Profile:
- Curriculum Vitae
- Full Name
- Phone Number
Profiles that do not meet the requirements and do not upload the required Participation Data cannot participate in the Challenge or access the prizes, whether monetary or otherwise, offered by the Sponsors. Player profiles will be evaluated post-challenge by the Sponsors independently and at their discretion.
Join Us for Spring edition
Don't miss out on this chance to prove your skills, learn from the best, and connect with the cybersecurity community. Register now to secure your spot at CyberHack2024 Spring Edition and be part of an event that promises to challenge, inspire, and elevate your cybersecurity journey.
For registration, click here.
Happy Hacking Hackers!