OWASP University Challenge

=Main=



{| style="padding: 0;margin:0;margin-top:10px;text-align:left;" |-
 * valign="top" style="border-right: 1px dotted gray;padding-right:25px;" |

OWASP University Challenge
The University Challenge is a competition among teams comprised of university students that will be held during the training days of the larger OWASP AppSec conferences (AppSec US, AppSec EU, …).

There is no admission fee for the University Challenge – participation in the conference is possible for free.

During the University Challenge teams will solve mission style security challenges using the Hacking-Lab framework.

The OWASP University Challenge could be limited to 8 teams, depending on available space and budget. Teams will consist of 4-8 students, with one team per university.

All team openings are on a first come first serve basis. If multiple teams are received from the same university the second team will be put on a wait list.

All team members must be registered. Registration for the University Challenge event is free.

Food and beverages will be provided during the challenge and all participants will get an OWASP University Challenge t-shirt. Of course, the first three winning teams will get some small prizes (to be announced).

Introduction
The OWASP University Challenge is a one or two day mission style security challenge event during the AppSec conferences training days! University / Student teams can compete solving hack challenges and defending insecure applications.

The challenges are even more dynamic and realistic now. Instead of just solving different security challenges, teams carry out a virtual online battle against each other in an attack-defense based competition, also known as CTF system. If you are interested to learn more about the CTF system, you will find here more information: http://www.hacking-lab-ctf.com


 * valign="top" style="padding-left:25px;width:200px;border-right: 1px dotted gray;padding-right:25px;" |

What is the OWASP University Challenge?
OWASP University Challenge provides:

The AppSec conference should take care of:
 * Venue / rooms during the conference training days
 * Feed the students
 * Local pr / announcements at local Universities

Presentation
Link to presentation

Project Leader
[mailto:Ivan.buetler@owasp.org Ivan Buetler]

[mailto:Mateo.martinez@owasp.org Mateo Martinez]

Related Projects
OWASP Student Chapters Program


 * valign="top" style="padding-left:25px;width:200px;" |

Classifications

 * }

=Set Up=

Conference Organisation:

 * Announcement
 * Room / Space for the University Challenge
 * Internet connection
 * Video projector (scoring/ranking)
 * Power and extensions
 * Outreach to the local Universities
 * Sponsor for winner prizes
 * Winner announcement during the main track / (before) end of the conference

Outline:
During the two training days
 * challenges will be organized together with Hacking-Lab
 * Hardware (challenge server) come from Hacking-Lab
 * Hardware (wilreless routers) come form the Education Committee

Expenses:
Travel and lodging has to be organized and covered by the student teams themselves The Conference should feed the students

Travel and lodging of the University Challenge project leader (running the challenge) is covered by the conference

It is recommended to give the University Challenge teams free entrance to the conference

Prices:
We could need the conference organization team to help finding sponsors for the prices.

=University Challenge Events=

Previous events:

 * AppSec EU 2016 Rome
 * AppSec EU 2015 Amsterdam
 * AppSec EU 2014 Cambridge
 * AppSec-EU 2013 Hamburg
 * AppSec-EU 2012 Athens
 * AppSec-US 2012 Austin
 * AppSec-US 2011 Minneapolis

Ticket winning" pre-conference challenges:
-> option for conference to offer free tickets via solving Hacking-Lab challenges -> qualifying for UC? -> Team qualifying

=FAQs=

Q1: When typically has the event run at AppSec, during the training days or during conference proper? A1: The UC is normally hosted during the training days

Q2: What size of room or seating capacity has typically been used? A2: Depending to the PR and number of teams (teams have a max of 8 members)

Q3: What prizes are usually awarded? A3: depends, if the conference manages to find sponsors there are prices. At the AppSec-Eu 2013, there where no prices, only the honor of winning

Q4: Do the teams have free conference access? A4: No, the teams have to organize travel and lodging themself. all we do is hosting the UC and feed them. There are no entrance / attendance fees charged previously The attendees usually get free access to the conference (because they travel from foreign countries too)

= Acknowledgements =

Hacking-Lab
The University Challenge is run by the OWASP/Hacking-Lab project. Real knowledge derives from hands-on experience.

About Hacking-Lab
Hacking-Lab is an online ethical hacking, computer network and security challenge platform, dedicated to finding and educating cyber security talents. Furthermore, Hacking-Lab is providing the CTF and mission style challenges for the OWASP University Challenges and for the European Cyber Security Challenge. The Hacking-Lab also provides free OWASP TOP 10 online security labs. Hacking-Labs’ goal is to raise awareness towards increased education and ethics in information security through a series of cyber competitions that encompass forensics, cryptography, reverse-engineering, ethical hacking and defense.

Learn more about Hacking-Lab: https://www.hacking-lab.com

= Road Map and Getting Involved =
 * University Challenge 2015 @ AppSec EU in Amsterdam (Martin Knobloch)

=Project About=