Skip to content

European Cybersecurity Challenge 2025

European Cybersecurity Challenge is an annual event in which teams from the across Europe, along with a few guest teams, compete in Jeopardy and A/D-style CTFs for eternal glory in the hall of fame.

Attacking-Lab was contracted by the NASK PIB to organize the ECSC 2025 A/D CTF, as well as for preparating 5 A/D services, and hosting 3 public infrastructure demos leading up to the event. The CTF took place on the 8th of October 2025.

Infrastructure

The game was hosted completely in the cloud. To this end, the venue of the event, COS Towar Arena, was directly peered with the Warsaw OVH Datacenter WAW1 for optimal connectivity.

Each team was provided a cloud-hosted vulnbox and exploiter, as well as their own cloud-hosted router to connect to the game network through.

Services

The following services were played:

  • firewall: An enterprise firewall via custom VPN, with an FTP and SNMP server behind it.
  • gitter: A git management platform, inspired by Github, with a frontend and SSH access.
  • pillarboxd: A service for managing movie watchlists and sharing them them with friends.
  • jitterish: A database service with a web frontend, using a custom JIT query language.
  • heavensent: A service simulating a multi-user satellite system, written in Angelscript.

Scoreboard

Final Scoreboard

The ECSC2025 scoring formula was used.

Also available at: https://scoreboard.ad.ecsc2025.pl