WUST Cybersecurity CTF Competition 2026

Capture the Flag, Test Your Skills in Ethical Hacking

Date April 6, 2026

Format On-Site

Venue WUST SOC Lab, 3rd Floor, 2900 Eisenhower Avenue, Alexandria, VA 22314

Open To Local High Schools and Colleges

Registration Deadline February 2, 2026

Website soclab.wust.edu/ctf-2026

Overview

The WUST Cybersecurity CTF Competition 2026 brings students together for an exciting day of hands-on cybersecurity challenges. Teams compete across three escalating levels that test practical skills like network reconnaissance, credential discovery, database forensics, and privilege escalation. The event is beginner-friendly while still offering advanced problems for seasoned participants.

Organized by the WUST SOC Lab, the Security Operations Center Laboratory of Washington University of Science and Technology, the CTF Competition is the most direct and visceral expression of WUST's cybersecurity training mission. It takes everything students learn in the classroom and the lab, and puts it to the test in a structured, competitive, time-pressured environment where the only way to win is to actually know what you are doing.

What is a CTF?

Capture the Flag Explained

A Capture the Flag (CTF) competition is a type of cybersecurity competition in which participants solve a series of security challenges, each hiding a secret string of text called a "flag." Finding and submitting that flag proves you have successfully exploited a vulnerability, solved a puzzle, or cracked a system.

It is a team-based ethical hacking competition where participants solve security challenges across domains including forensics, web security, cryptography, binary exploitation, and networking, to earn points.

CTF competitions are widely used by cybersecurity professionals and students around the world as the gold standard for measuring real, applied security skills. At WUST, the CTF is not just a competition, it is a learning experience designed to push every participant to grow.

Competition Format

Jeopardy-Style Structure

The competition uses a Jeopardy-style CTF format with rounds designed for entry-level through advanced participants. Teams of up to three members compete on isolated lab virtual machines, a Kali Linux attacker and a Metasploitable target, with lab assistants on-site throughout the event.

Progressive difficulty from entry to advanced levels
Safe and isolated environment with no internet attacks
Hands-on support from lab assistants

Challenge Levels

The competition is structured across three progressive challenge levels, each requiring a deeper level of technical knowledge and skill:

CTF 1: Entry Level
Participants must perform port scanning and banner grabbing, exploit a backdoor, and access a flag stored in a directory.
CTF 2: Entry Level (Lab Manual)
Participants must crack Telnet credentials, perform MySQL enumeration, and retrieve a flag from a database.
CTF 3: Advanced
Participants must perform privilege escalation, change permissions to access a protected flag, and retrieve system-wide sensitive data.

What WUST Provides

WUST is committed to ensuring that every team, regardless of prior experience level, has everything they need to compete fairly and learn meaningfully. WUST provides teams with:

Free ethical hacking training workshops between January and February 2026 in the weeks before the event
Access to prepared workstations pre-configured with all required software
Isolated and safe lab environment using Kali Linux and Metasploitable virtual machines
Hints and debrief sessions with guided walkthroughs after each challenge
On-site lab assistants and instructors available throughout the day
Snacks and light refreshments to keep teams energized

Eligibility and Rules

Who Can Compete

Only currently enrolled high school, college, or university students are eligible to compete. All participants must present a valid student ID during check-in, and all team members must be from the same school. Teams must consist of two to three members.

Key Rules

All participants must use WUST lab computers provided in the SOC Lab, personal laptops and devices are not permitted. External storage media including USB drives are not allowed unless explicitly approved by organizers. Attending at least one official CTF training session is mandatory for every competing team. Professional and ethical conduct is required at all times, violations may lead to immediate disqualification.

The WUST SOC Lab enforces strict rules around its use: the lab is a place for study and work, food and drinks are not permitted, and users must not tamper with equipment or access inappropriate content. All participants are accountable for their actions within the lab environment, and failure to abide by the rules may result in severe penalties including loss of access privileges.

Disqualification

Actions that may lead to disqualification include using personal devices, compromising infrastructure beyond the scope of the challenge, collaborating with individuals outside the team, refusing ID checks, or violating conduct rules.

Prizes and Recognition

Cash awards are distributed per team. All finalists receive recognition and campus swag.

1st Place $600 per team

2nd Place $450 per team

3rd Place $300 per team

All placing teams receive certificates, campus swag, and recognition on WUST social channels. Winners may also be featured on the WUST website.

Location

WUST SOC Lab

The WUST CTF Competition 2026 takes place at the WUST SOC Lab, 3rd Floor, Washington University of Science and Technology, 2900 Eisenhower Avenue, Alexandria, VA 22314. Free parking is available on-site.

The SOC Lab is a state-of-the-art cybersecurity facility purpose-built for hands-on ethical hacking training and applied security research. It is equipped with industry-standard platforms including Splunk, IBM QRadar, Metasploitable, Wireshark, and Nmap, the same tools used by cybersecurity professionals in the field.

Why Compete?

The WUST SOC Lab helps students learn about threat detection, vulnerability analysis, penetration testing, and incident response, preparing them for real-world challenges in the cybersecurity field. By encouraging experimentation and collaboration, the WUST SOC Lab fosters a culture of innovation among students and ensures that they are career-ready, with the skills and confidence needed to succeed in the job market.

The CTF Competition is the highest-pressure, highest-reward version of that experience. Whether you are a first-year student trying ethical hacking for the first time, or an advanced student looking to prove your skills against peers, the WUST CTF offers a legitimate, supervised, and professionally meaningful arena to do exactly that.

How to Register

Registration Process

Teams can register through the official WUST CTF registration form. Each team must provide their team name, team leader contact information, and the full names of all team members. All team members must use their official school email address during registration.

For questions or additional information, contact the SOC Team at the WUST SOC Lab directly through the contact portal at soclab.wust.edu.

Event Gallery

Highlights from past WUST CTF competitions and training sessions. Experience the energy, collaboration, and hands-on learning that define our events.

Students collaborating during CTF competition

Team Collaboration

Training Workshop

Students working on cybersecurity challenges

Challenge Solving

WUST SOC Lab

Awards & Recognition

Learn More

Event Website →

Location: WUST SOC Lab, 3rd Floor, 2900 Eisenhower Avenue, Alexandria, VA 22314