ECSC 2025 A/D
The European Cybersecurity Challenge 2025 will take place from the 6th to 10th of October 2025 at the COS Torwar Arena in Warsaw. The Attack-Defense CTF will take place on 8th of October, starting at 10:00 CEST and lasting 8 hours until 18:00 CEST.
Attack-Defense
Attack-Defense CTFs are a type of cybersecurity competition in which participating teams host services and attempt to exploit each other over a shared, private network. The goal of the game is to earn points by stealing secrets stored in your opponents' service instances, and to avoid losing points, by preventing your own secrets from being stolen and submitted, all the while keeping the services available and functioning. The team with the most points by the end wins.
CTF Schedule
The schedule for the day of the Attack-Defense CTF:
| Time1 | Event / State change |
|---|---|
| earlier | Players receive credentials to the platform via the ECSC 2025 Discord |
| 09:00 | Players can download wireguard configuration to access the game network |
| 09:30 | Players can start their vulnbox and exploiter using the platform |
| 10:00 | The Attack-Defense CTF officially begins |
| - | SSH access to vulnboxes and exploiters is unblocked |
| - | API endpoints are available to test connectivity |
| - | Flag submission at 10.42.251.2:1337 accepts connections |
| - | Scoreboard at 10.42.251.2 is available (empty) |
| - | Team router and scoreboard respond to pings |
| - | VPN Connection works within but not between teams |
| 11:00 | Network opens and teams can communicate with other vulnboxes |
| 17:00 | The scoreboard scores are frozen |
| 18:00 | The Attack-Defense CTF officially ends |
1 all times CEST