Test your hacking skills against a virtual oil refinery

Kaspersky Lab has opened its third annual international industrial Capture the Flag (CTF) security competition for registration. This years’ CTF offers participants the opportunity to take part in the hacking of the model of a real production site facility in an oil refinery. Finals will be held in Shanghai on October 24.

Whitehats to challenge oil refinery simulation

Whitehats, or hackers who dedicate their skills to helping companies productively discover security vulnerabilities are invaluable to businesses today. The CTF presents whitehats with a unique challenge in a practical test environment.

The oil refinery challenge poses a critical challenge whereby they will be given the opportunity to identify new vulnerabilities and threat vectors in a critical infrastructure scenario. A successful attack on a real oil refinery could result in devastating damage and consequences.

Through the CTF, top security experts can research virtual pieces of industrial control systems, discovering unobvious security problems that can be avoided in the future. Moreover, it gives enterprises an insight into different types of possible attacks on real parts of infrastructure, helping them to provide the maximum level of protection for their industrial networks against existing and future threats.

The oil refinery CTF challenge will involve a miniature process model which replicates a real production-site facility at an oil refinery. The model represents a rail tank discharger rack, consisting of a variable speed centrifugal pump, storage tanks (reservoirs), a heat exchanger and a buffer tank. In addition, participants will have a chance to test their skills and knowledge of several IoT devices.

Upskilling cyberdefences of critical industries

“The organization of such events is highly important to help develop understanding of the industrial threat landscape. At our CTF competitions, we offer participants the chance to hack models of real enterprises, therefore everything that happens at a CTF site can also happen to real critical infrastructure and industrial systems. So, it provides opportunities for security researchers, as well as ICS vendors and system integrators, to better understand how ICS systems work and improve their security”, said Vladimir Dashchenko, Senior Security Researcher at Kaspersky Lab.

The industrial CTF 2017 is organized in partnership with Chinese company Keen Cloud Tech, and the finals will be held on October 24 at the GeekPWN conference in Shanghai, the world’s first hacking contest targeting smart life security.

“Kaspersky Lab is a world-leading cybersecurity provider, and we are glad to partner with it and host the Industrial CTF together with GeekPwn hacking contest in Shanghai. It provides us with a great opportunity to connect the top security researchers from all over the world, as well as to extend influence from smart life security to smart industrial security”, says Daniel Wang, CEO of Keen and founder of GeekPwn.

How to participate

Head over to https://ctf.kaspersky.com/ and register your team.

For those who’ve signed up, qualifying rounds will be held online and start from 6 of October (5.00 p.m. Moscow time) till 8 of October (5.00 p.m. Moscow time). This year, the Qualifications will include the following types of tasks:

  1. Web
  2. Pwn
  3. Crypto
  4. Stegano
  5. Reverse
  6. Fun

The Finals will be held on 24 of October in Shanghai.

Registration is open until October 8, 2017.

Leave a Reply

Your email address will not be published. Required fields are marked *