Home > bonsai, conferences, security > Capture the Captcha – The Game

Capture the Captcha – The Game

October 26th, 2010

Capture the Captcha FlagA Captcha is a type of challenge-response test used in computing to ensure that the response is not generated by a computer. It is a contrived acronym for “Completely Automated Public Turing test to tell Computers and Humans Apart.”

The process usually involves one computer asking a user to complete a simple test (Captcha) which the computer is able to generate and grade. Because other computers are unable to solve the Captcha, any user entering a correct solution is presumed to be Human.There are a lot of Captcha implementations out there, written in JSP, PHP, ASP, .NET which are very poorly implemented and introduce serious bugs in Web applications they are supposed to protect.

We developed 10 different Captcha implementations, each with its own weakness, for participants to break using automation and hacking techniques with the objective of bypassing the human verification process.

Captcha BotCaptcha Human

Teams (or a single participant) are scored on their success in breaking the security behind every presented Captcha on the game.

This CTC contest is designed to serve as an educational exercise to give participants experience in securing Web Applications from automated attacks, as well as conducting and reacting to the sort of Captchas found in the wild.

nahuel bonsai, conferences, security , , , , ,

  1. October 26th, 2010 at 10:15 | #1

    how do I join the game ?

  2. federico
    January 21st, 2011 at 14:06 | #2

    lo bueno seria usar imágenes ligadas a conceptos mas que una imagen de una palabra particular distorsionada, pero bueno tb tiene sus pro y sos contra.. como todo, después lo voy a pensar mejor

  3. March 20th, 2011 at 20:38 | #3

    Thanks for summing it up so well. I think I’ll be returning here often. Best Regards.

  1. October 26th, 2010 at 07:15 | #1