Based on the principles of a Capture The Flag (CTF), this computer security competition is a challenge-based game played by teams of maximum 4 students. Over a limited timeframe, the teams must solve challenges covering a wide range of security issues, e.g. cryptography, reverse engineering, network security, web or mobile application security, wireless and forensics analysis. Complexity of challenges range from trivial up to very difficult.

We now have two tracks to better align the CSCBE (Cyber Security Challenge Belgium) with the European Cyber Security Challenge (ECSC) and to field a strong team of eligible candidates.

• CSCBE (Students): For students enrolled at a recognized Belgian academic institution. This track focuses on the national competition experience and team play.
• ECSC: For participants who are ≤ 25 years old on January 1 of the competition year. This track identifies candidates eligible for the European event.

Eligibility depends on the track:

• CSCBE (Students): Open to students enrolled at a recognized Belgian academic institution (valid student status required). PhD students and post-docs are not eligible.
• ECSC: Open to participants who are ≤ 25 years old on January 1 of the competition year (student status not required).

You are invited to the finals depending on your ranking at the end of the qualifiers, and your eligibility for the different tracks:

• CSCBE track: Top 25 players are invited and form teams for the finals.
• ECSC track: Top 25 players are invited individually.

The points that are earned during the qualifiers are not transferred to the finals.

Of course! Challenges have been designed for students, not for security specialists, so you don’t need to be a security expert to join. A good general IT knowledge and a good level of motivation is what matters most. The Cyber Security Challenge is composed of challenges designed with all levels of complexity.

A good way to get started with the Cyber Security Challenge is to take a look at write-ups from some of the past Cyber Security Challenge editions:

• 2024s Write-ups
• 2023 Write-ups
• Older write-ups

Once you feel you’re ready to try and solve some challenges on your own, you could take a look at the "awesome-ctf repository": it contains a list of useful tools sorted per category (reversing, cryptography, web, …). It also contains a list of "wargames" available 24/7 for practicing.

• Awesome CTF

For example, the "overthewire wargames" feature a series of challenges, and suggests an order in which to play them based on their difficulty. You can also ask questions on our Discord channel. The link can be found on our platform after authenticating.

• Overthewire wargames

The first "Qualifiers" round of the event will take place online, while the finals are onsite in Brussels.

The second "Final" round of the event will be hosted at a venue in Brussels

The challenge is energized by NVISO, supported by large private corporations and banks (our sponsors), as well as public agencies and organizations that are committed to raising our country’s awareness on cyber-security threats and help train a generation of security-aware professionals and security experts. All sponsors are regularly recruiting talented graduates to re-inforce their security teams, so you may also be meeting your future employer at our event!

We have a wide range of challenges ranging from general security knowledge over mobile security to reverse engineering and cryptography. Some of them will be easy and others will be a challenge even for the more skilled participants. To get a feel for what you can expect you can always head over to the write-ups of the previous editions on GitHub (see "How can I prepare for the Cyber Security Challenge?")