From CTFs at DEFCON to NetWars at SANS, there is a culture of competition and solving puzzles in the security community. These “games” allow security pros to practice their craft on realistic data in a safe, challenging, and fun environment that up-levels their technical skills and helps to improve team communication. Why not run your own competition? In this presentation, we’ll discuss how to create custom jeopardy-style capture the flag (CTF) events for blue team education and skills development. We’ll be introducing brand new free scoring platform, a high-quality free dataset, associated questions, and tips on how to create your own fully custom CTF.
After completing this session, learners will:
- Learn what makes a compelling and valuable CTF for security teams
- Learn how to run a CTF to up-level your blue-team security skills
- Understand the free tools you have at your disposal to start running your own events
Dave Herrald is a technical security professional at Splunk with 20+ years experience. Dave presents at events like SAN CTI Summit, SOC Summit, and SIEM Summit. Dave holds a degree in Computer Science from Iowa State University and a gaggle of certifications including GIAC GSE #79. Dave lives near Denver where he is a cyclist, skier, and soccer-dad.
Ryan Kovar worked at DARPA detecting and mitigating advanced threats. He has since moved on to Splunk as a security strategist where he helps with incident response, hunting, and solving fun problems.