For newcomers, Capture the Flag is an exercise in which "flags" are secretly hidden in purposefully vulnerable programs or websites. Competitors steal flags either from other competitors (attack/defense-style CTFs) or from the organizers (jeopardy-style challenges).
In Michelin , a CTF competition is organized every year. This competition is hosted and organized in multiple locations (France, India). There’s no remote participation but feel free to contact your Security team dedicated to your zone to organize it. The aim is to:
Sensibilize people around security: everyone can participate from managers to developers.
Initiate a cybersecurity career: if you want to improve your knowledge or to have a brief view of security activities, this is a good stepstone! Especially if you are interested in participating in a Security Champions Program or other kind of application security initiative.
But it's not a complete training on security. You will mainly see offensive topics (and even web offensive) while there are many types of activities (forensic, incident response, detection, organizational and compliance, etc.) which require different skills.
Well, a long introduction to tell you that after a long wait and many people asking for it, here it is!
You will need your best jutsu to get through this CTF!
Save the date: 14, December 2023
WeWork Raheja Woods, Kalyani Nagar, Pune, Maharashtra 411006, India
As we did for previous CTFs, it is open to anyone working for the Michelin Group, external and internal, subsidiaries.
AThis a particular year as we are now having this initiative in India
A 2.5-days training is mandatory to participate (2 days of theorical course, 0,5 of practice). Pay attention to it when you register as it will imply a validation from your manager.
The number of participants is limited to 80 people .
For external staff:
For internal people: Resource Manager or Manager validation and Security Correspondent if any.
Once you will be registered, and qualified (accepted by management, not too many people from one department, etc.) you will be asked, at the end of the registrations, to choose one of the training sessions that will be made available between October and November
No entrance fees for event day!
To participate, it's easy: just register on this website!
Well honestly this time we've been a bit lazy and we didn't want to create little challenges to tease the event. Previous participants are well aware of that; kind of boring isn't it?
So this year if you want to register, just click on this link : Registration
As a reminder : if the number of requests is above the limit (80 people), please be informed that a decision should be made regarding your participation (first time, number of teams per departments, etc.) so inform your team and security contact.
End of registration : 16th, October 2023
And spread the word, everyone is welcome in security ;)
Only few seconds to register and you will be a security ninja too ;)
While you will be trained before the event, it is recommended, especially for beginners, to train on your own.
You can train alone or even in team. Here are some interesting websites to do so: