BASIC RULES

1. Do not attack the infrastructure

This includes the Virginia Cyber Range, Montgomery Co Public Schools Network, or any of the CTF infrastructure, including external communication channels and other platforms associated with the CTF. You should only attack specifically designated targets in your assigned challenges (cityinthe.cloud subdomains). If you believe you have found an unexpected vulnerability, please submit a ticket.

2. Do not share flags or solutions outside of your team

This is a team competition and you may collaborate with members of your team, but no one outside of your team. Scripts or flags should not be shared outside of the team – any violation of this rule will disqualify the entire team.

Using online resources is OK. Every participant is free to use any outside resources they have at their disposal in order to solve problems but should not search or ask (e.g. on StackOverflow) for the solutions to specific problems.

Do not post solutions or write-ups online.

3. Scoring

Each challenge is worth a fixed number of points. You get points by solving challenges. Any malicious acts that violate the spirit of the competition will disqualify the user from the competition. The team with the most points at the end of the competition wins. If two or more teams have the same score at the end of the competition, the team that reached their point total first will be ranked ahead of other teams with the same point total. Explore, learn, and have fun!

4. Comments/Suggestions/Questions

Please email commonwealthcybercup@gmail.com.