🎄 Our 7x7 Holiday Wargame is live now! 🎁

DEF CON 32

Fix the Flag

SecDim is the official host for DEF CON 2024 AppSec Village Contest. Unlike a typical CTF, the contestants get a score when they successfully remediate a security vulnerability. Challenge yourself in this AppSec contest or build an AppSec challenge to win prizes.

Get Prepared Build Challenge
DefCon 31 - 2023
Hero Section Top Decoration
Hero Section Bottom Decoration
Real World Stories Caption

Compete

This is a hybrid contest at DefCon 32 AppSec Village for anyone interested to challenge themselves in AppSec.

We have a novel Attack and Defence styled CTF game.

We have handpicked secure coding challenges based on real world incidents.

Your objective is to exploit fix security vulnerabilities in each challenge.

Contribute

Use SecDim SDK to build AppSec challenges.

Submit your challenge by 31st July 2024 4th August 2024. Your submission will be reviewed and approved challenges will be included in the contest.

Best contributed challenges will receive prizes.

Real World Stories Caption
Real World Stories Caption

Prizes

Checkout AppSec Village CtF page for details on prizes

There will be prizes for the winner and runner ups!

When

The game starts on 9th August 10am and ends on 11th August 12pm PDT. The winners will be announced at the awards ceremony on the last day.

The game will be available online for the whole duration specified.

Real World Stories Caption

So what are you waiting for?

Get Prepared Build Challenge

Where can I get started?

You can solve the Start Here challenge to get started.

How can I contribute a challenge?

Use SecDim SDK to build AppSec challenges. Submit your challenge by 31st July 2024. Your submission will be reviewed and approved challenges will be included in the contest. Best contributed challenges will receive prizes.

Can we play as a team?

This is an individual exercise to skill up so we recommend playing solo.

Where do I ask my questions?

SecDim Discuss , if you are stuck or have any questions, feel free to ask. There are no dumb questions.

There is a dedicated chat channel , ask your questions here.

Where do I follow more news?

Follow us on @secdim to stay up to date.

What is not allowed?

Sabotaging other players, attacking the platform, DoS, DDoS, cheating, attempts to disclose security tests on the server will all result in an immediate ban. Lets learn, share and compete fairly and nicely.

Who is the winner?

There will be multiple winners. The player with the highest total points by the end of the event and the player who has the best contributed challenge.

What tech stack and languages are used?

Python, Javascript, Go, C, Java, Solidity, Docker, Typescript, GraphQL, OpenAPI, Kubernetes, AWS, Terraform

Horizontal Deco
Horizontal Deco