Rules

Capture The Flags (CTFs) are competitions that involve many aspects of cyber security: cryptography, steganography, web exploitation, reverse engineering, forensics, and others.

There are two common CTF styles, jeopardy and attack-defence. PECAN+ CTF is a jeopardy CTF. Teams are presented with a set of specific questions (i.e.; challenges) across a range of categories.

• The goal of each challenge is to recover a special string of text, called a flag.

• Flags are in the format pecan{some_text_here}. The whole string including pecan{ and } needs to be submitted. Flags are not case sensitive, and they may or may not include pecan{} when you find them. When a flag is not in the standard format, this will be clearly stated in the challenge description.

• Points clarified: Teams gain points for every solved challenge. Most challenges are worth a maximum of 500 points. Every time a team solves a challenge, the value of that challenge decreases, down to a minimum of 100 points. In this way, the value of each challenge is set by how many teams manage to solve it.

• Don't cheat! Solve challenges ethically and within your Team only (i.e.; do not seek outside advice or help). You are, however, welcome to use whatever digital tools you have at your disposal.

• Attacking the virtual machine and/or the scoring infrastructure is prohibited (i.e.; anything outside the .chals.io subdomain). This includes sending a lot of useless traffic through automated tools (e.g.; dirbuster). Thanks for reading, here's your flag: pecan{i_follow_the_rules!} If you find a problem with our infrastructure, please let us know via Discord, so that we can fix it and improve the overall quality of the PECAN+ CTF.