Contestants should use their RF-hacking kung fu and tools like GNURadio, GQRX, URH, Python, C, black magic, to examine a series of increasingly complex radio signals to extract key information leading them to the next signal.
The more challenges you solve, the more points you gain. Points for challenges are statically assigned and are proportional to the difficulty of the challenge. The first participants to solve a challenge will receive higher number of points.
We may also provide hints that you can “buy” with the points you have collected so far. “Price” of hints may vary.
At the end of the competition, the team with highest total points will be named the winner. In the case of two different teams having the same points, whichever team was quickest to reach this high score will be declared the champion.
Format of the Game
- We will direct the contestants to an entry signal by supplying frequency, and IP:port they can connect to. The contestants would tune to this frequency, or connect to the server, and stream the RF data into their toolchain.
- The first and second signal could be processed using basic signal analysis techniques. Hidden in the signal, the players will find the next hint (e.g., the “frequency” of the next signal to examine and/or other clues to the final flag).
- The third signal will contain encoded data, likely with simple digital encodings, and the decoded digital data will contain the next hint.
- The challenge will continue in this fashion with an increasingly difficult set of digital signals to demodulate and decode.
- The final stage will require encoding the discovered flag with a specific modulation and transmitting it on the right exit frequency (or IP:port) eventually discovered in the previous steps.
Things to Bring
- Laptop with VMware Player or equivalent
- Network cables and power sockets
- SDR equipment like RTL-SDR, BladeRF, HackRF or USRP (optional)
- 4G Router for your own dedicated Internet access (optional)
We try hard to keep the competition as free and exciting as possible; however we do require teams to adhere to a few simple rules:
- The use of radio equipment is optional. Should anyone, for some reason, decide to use radio equipment, they will do so under their responsibility and must adhere to the local law (regulations) on the matter of RF operations.
- Show up on time or you’ll miss the briefing!
- No cooperation between teams with independent accounts. Sharing of solutions or providing revealing hints to other teams is cheating: don’t do it!
- No attacking the competition infrastructure. If bugs or vulns are found, please alert the competition organizers immediately. Hint: you might get free hints for responsible disclosure. Absolutely no sabotaging of other competing teams using SE or physical attacks, or in any way hindering their independent competition progress.
- No brute forcing of challenge flag/ keys against the scoring server.
- DoS of the CTF platform or any of the jeopardy challenges services will not be tolerated.
- All participants must obey to PIT STOP calls. PIT STOP calls are rest intervals where all the players must leave the CTF area to facilitate for the CTF Crew to perform maintenance work.Teams who don’t adhere to the rules will be penalized or disqualified from the competition.
The organizer reserves the right to dispatch long-term (>1 year) all HITB and XCTF contest bans. At all times, the decision of the HITB and CTS organizing crew is final on any matter in question.