We teach Hacking.
Attack-Defense CTFs are a highly rewarding way of learning attack and defense concepts.
Participants learn more and faster than in typical trainings, because they can apply what they learn directly in a fun and competitive setting.
Most importantly: its safe. We provide a realistic virtual environment, and give participants the chance to learn and fail while the stakes are low.
And, let's be real. Who doesn't want to know how to hack?
How it works.
Participants are split into teams. Each team is given the same set of vulnerable services, and a server to run them on. The goal is to find and fix vulnerabilities in your own services, while exploiting them in other teams. Our team prepares you for monitoring traffic, writing exploits and patching your system.
Read more about it in our wiki.
Why it works.
The best way to defend yourself is to think like an attacker.
Attack-Defense CTFs are great at teaching defense concepts, but better than dealing with incidents is avoiding them altogether. Exploiting vulnerabilities teaches developers first-hand what mistakes can lead to an incident, and how attackers take advantage of them.
Team spirit, competitiveness and excitement fuel the players' drive to win, and thus to learn. The skills gained from searching for vulnerabilities, adapting exploits to patches, analyzing traffic and deploying fixes without downtime transfer seemlessly into the practical skills of development, vulnerability research and incident response.
Hacking with Heart.
Attacking-Lab is the result of an ongoing collaboration between CTF players from high-ranking teams ENOFLAG, FAUST, FluxFingers, organizers and saarsec.
We have years of experience not just playing and organizing CTFs, but finding real vulnerabilities and doing security research. We love solving difficult problems, and building unique challenges.
Hacking isn't just a game to us, but we know how to make it fun to learn.