Wireless CTF

The BSidesCharm Wireless Capture the Flag (WCTF) is a trip through the useable RF spectrum. Challenges will involve all of the physics and RF theory that we have all come to love so much. You will be using tools like the RTL-SDR, HackRF, BladeRF, your cell phone, and various 802.11 radios.  Although not all are necessary to compete, they will help. The WCTF can be completed with experience ranging from a little knowledge to a pen-tester’s capability, and $40 to $4000 worth of equipment. Regardless of what you bring, the key is to read the clues and determine the goal of each step. We teach along the way, so if you are a N00b, we will help you learn strategies to get you to competition level. This year we maintain certain aspects of past WCTFs but are also introducing new challenges. For example, as in past WCTFs, you will need to sit for a while and hack at crypto and break into networks. But, unlike past WCTFs, you need to break out your war-walking shoes because you will be tracking and finding hidden nodes and possibly even remote sites -- and not all of them will be WiFi. We will also be holding the very popular, RF Signal Drinking Game. There will be clues everywhere, and we will provide periodic updates so make sure you pay attention to what’s happening at the WCTF Control Center, on Twitter, the interwebz, etc.

Flags: Flags will range from transmissions in the spectrum to pass-phrases used to gain access to wireless access points. Once you capture the flag, submit it right away because some flags are worth more points the sooner they are submitted (e.g., timed challenges) and others will be awarded negative points (e.g., false flags). Offense and defense are fully in play by the participants, the WCTF organizers, and the Con itself.

Links:  Check out our websites for tools, what you need, and what to do.  Enjoy your journey.

Howdy Neighbor (brought to you by GRIMM)

Ever wanted to hack your neighbor’s house? Now, you can legally! Howdy Neighbor is an interactive IOT Capture the Flag event with 25 IOT devices and 90 CTF challenges with five levels of challenges (from Easy to Insane!). This exhibit was part of the ICS Village CTF at Def Con 26 that won a CTF black badge. Whether you’re a beginner or an expert, you can compete for prizes all weekend at BSidesCharm.

Cyber Skyline CTF

This year's BSidesCharm Capture the Flag is brought to you by Cyber Skyline. Based in Maryland ourselves, we are super excited to be running the BSidesCharm CTF. The CTF will focus on defensive cybersecurity skills - e.g. network, log, and malware analysis, but we'll also sprinkle in some challenges like OSINT or exploitation. We welcome both noobs and pros alike to tackle on these challenges, the CTF will have a variety of difficulty levels (labeled Easy, Medium, and Hard) so that it can be both a fun and challenging experience for everyone. If you run into any issues or you're stuck on a challenge, find one of us wearing a blue/teal Cyber Skyline shirt and we'll be more than happy to help or give you some pointers. And of course, a live leaderboard is available all weekend, so join us to learn some new skills, or play for fun, or just come hang out with us, it'll be an awesome time!

Lockpick Village

The mission of The Open Organisation of Lockpickers (TOOOL) is to advance the general public knowledge about locks and lockpicking.  By examining locks, safes and other such hardware and by publicly discussing our findings, we hope to strip away the mystery with which so many of these products are imbued.knesses are present.  This makes them well-equipped to participate in sportpicking endeavors and also helps them simply be better consumers in the marketplace, making decisions based upon sound fact and research.

Visit TOOOL and learn how to pick a lock or work on refining your current skills!

IoT Village

Organized by security consulting and research firm Independent Security Evaluators (ISE), The IoT Village™ delivers thought leadership advocating for security advancements in Internet of Things (IoT) devices. The village consists of workshops on hacking numerous off-the-shelf devices (e.g. medical devices, home appliances, routers, and storage devices), live educational talks and a variety of contests. The IoT Village's™ contests are brought to you by SOHOpelessly Broken™, the first-ever router hacking contest at DEF CON, which delivered 15 new 0-day vulnerabilities to the research community.