Challenge 2026

Description

Hello analyst,

Following an alert from the ABSSI (*Agence Bretonne de la Sécurité des Systèmes d'Information*), we are suspecting a compromise of one of our contractors. An extract, containing a dubious network traffic, has been supplied. Could you please have a look at it? As usual, we are looking for an analysis of the exchanges, and any IOCs if relevant.

Please be careful with contained data, if any. The, maybe, compromised contractor is working on a highly sensitive infrastructure, all information related to this system MUST BE reported at the earliest opportunity.

Thanks for your assistance and your discretion,

-Incident Dispatcher - Investigation des Moyens et Plateformes Sous-traitées

Note: the IPs (203.0.17.X & 203.0.2.X) are internal ABSSI IP addresses and are not part of this challenge.

16/04-17h05: steps 2, 3 , 4 and 5 should be accessible again. Please report any cross instance access to support email. Thanks to Cryptanalyse for the report

To finish the challenge, you have to:

Find an e-mail address (format [0-9a-z]{64}@sstic.org) and send an e-mail to this address as quickly as possible.
Send a write-up to this same e-mail address before the challenge closing date (2026-05-15 23:59 UTC+2).

Speed Ranking

Position	Validation date	Name
(1.) 0-rulez	19/04/2026 10:40	Brendel
1.	19/04/2026 15:57	Fabien Perigaud [F4b]
(2.) 0-rulez	21/04/2026 08:46	👖🫒 [thewallondog]
2.	22/04/2026 21:53	Sory Magass [xMagass]
3.	23/04/2026 03:24	Nicolas Iooss [IooNag]
4.	25/04/2026 04:16	Valentino Ricotta [face0xff]
5.	29/04/2026 21:29	Denis Aouir [Denis]
6.	30/04/2026 17:42	Jérémy Jean [Cryptanalyse]

Quality Ranking

Position	Validation date	Name	Write-up date	Write-up
1.
2.
3.

Prizes

The top three of each ranking will win the following prizes:

1st place : Nintendo Switch 2 + an entry ticket for SSTIC 2026 (Your place will be refunded if you already have one)
2nd place : Flipper Zero
3rd place : Raspberry Pi 5 4GB

Moreover, the top 10 participants in the Speed Ranking and the top 3 in the Quality Ranking will receive a surprise prize, a symbolic yet classy souvenir to commemorate their achievement.

Rules

Duration

The challenge runs from 2026-04-15 15:00 UTC+2 to 2026-05-15 23:59 UTC+2
The deadline may be extended if there are less than three valid solves.

IA/LLMs

Using IA/LLMs to autonomously solve challenges is against the spirit of this challenge and is thus considered a violation of its rules.
Using IA/LLMs as a search engine (call for an artificial friend) is tolerated.
Usages of IA/LLMs for the writeup is allowed, but must be EXPLICITLY documented.

Rankings

There are two distinct rankings: speed and quality.
The speed ranking will be updated over time as we receive validation e-mails.
The quality ranking will reward the most detailed, elegant and best-written solutions. Therefore, even if you are not among the fastest finishers, you can still aim to win a prize by writing a high quality report.
The winner of the quality category will also be offered the opportunity to give a talk about the challenge solution during the SSTIC conference.
To be eligible for the Speed Ranking, participants must still submit a write-up before the challenge deadline, even if they do not wish to compete in the Quality Ranking. In this case, the write-up may be minimal, but must describe the approach taken.

Flags

At the end of each stage, optional intermediate flags may be obtained. These can be submitted at the bottom of the page to appear in the leaderboard for the corresponding stage.
Submission of the flags is not mandatory; only the final email submission is required to validate the challenge.
The format of these flags is SSTIC{hexa}

Eligibility

The challenge is open to everyone, except employees of DGA-MI and members of the SSTIC organizing committee.
Members of the SSTIC program committee are allowed to participate.
Team participation is not allowed. However, limited external help (e.g., “call-a-friend”) is tolerated. And yes, you are free to consider any AI as a friend.

Prizes

A participant may win two prizes (one for the speed ranking and another one for the quality ranking).
In order to claim prizes, winners are required to share their identity with the STIC association.
The organizers reserve the right, at their discretion, to award additional prizes to other participants.

Write-ups

Write-ups shall be written in either French or English.
They will be evaluated by a judging panel consisting of both the challenge authors and some members of the SSTIC organization.
By submitting a write-up, participants agree on having their solution published on this page and associated to their name (or pseudonym).

Code of Conduct

Attacking the challenge infrastructure is strictly forbidden.
There is no need to run automated tools such as scanners nor to conduct any network bruteforce.
Any publication of challenge solutions, in whole or in part, is strictly prohibited before the challenge deadline.

0-rulez

Rules are meant to be followed… but also occasionally bent.
If you choose to do so, you’ll receive a “0-rulez” tag. You will still be on the leaderboard, just not eligible for prizes.

Contact

Please write to challenge2026 [at] sstic.org for any question or issue.

Root

Challenge made by DGA-MI

Valider un flag

Validations

Step 4 : dancing in shadow (6 validations)

Position	Date de validation	Nom
1	2026-04-17 07:21	👖🫒 (FORMIND RECRUTE)
2	2026-04-18 19:39	brendel
3	2026-04-20 22:41	xMagass
4	2026-04-22 18:16	💻📡🛰️ IooNag
5	2026-04-24 21:07	F4b_from_the_past
6	2026-04-28 02:38	🥷2

Step 3 : overflowing faults (12 validations)

Position	Date de validation	Nom
1	2026-04-15 22:53	Laduce-thewallondog
2	2026-04-17 11:58	xMagass
3	2026-04-17 13:23	srchd
4	2026-04-18 16:44	F4b
5	2026-04-18 21:15	Cryptanalyse
6	2026-04-21 22:52	💻📡🛰️ IooNag
7	2026-04-23 01:05	panisse
8	2026-04-28 02:38	🥷2
9	2026-04-29 01:06	ken0s
10	2026-05-01 00:38	JBB
11	2026-05-04 08:06	Bertrand Danos 🌴🏖☀️
12	2026-05-04 21:21	nebucca

Step 3.1: lobster128 parameters (22 validations)

Position	Date de validation	Nom
1	2026-04-15 18:12	🥷
2	2026-04-15 18:19	
3	2026-04-15 18:31	Laduce-thewallondog
4	2026-04-15 23:38	F4b
5	2026-04-16 14:30	srchd
6	2026-04-16 15:19	Cryptanalyse
7	2026-04-16 22:30	Adam.Talbi
8	2026-04-17 04:27	cade
9	2026-04-17 16:15	Point d'arrêt
10	2026-04-17 21:33	KaerBannog
11	2026-04-18 01:25	🥷2
12	2026-04-18 18:34	Yddet Lehcim
13	2026-04-19 04:42	geneo
14	2026-04-20 16:40	💻📡🛰️ IooNag
15	2026-04-23 18:28	ken0s
16	2026-04-23 22:20	JBB
17	2026-04-25 17:19	delimaxxx
18	2026-04-26 22:17	Y
19	2026-04-29 19:52	Bertrand Danos
20	2026-04-29 23:47	nebucca
21	2026-05-01 20:50	tronchy
22	2026-05-03 22:03	8min

Step 2: a core lock (33 validations)

Position	Date de validation	Nom
1	2026-04-15 17:25	🥷
2	2026-04-15 17:45	guedou
3	2026-04-15 18:12	
4	2026-04-15 18:30	Laduce-thewallondog
5	2026-04-15 23:38	F4b
6	2026-04-16 02:20	socca
7	2026-04-16 10:03	Adam.Talbi
8	2026-04-16 11:27	srchd
9	2026-04-16 12:52	🥷2
10	2026-04-16 14:01	Cryptanalyse
11	2026-04-16 21:04	🦄szd🦄
12	2026-04-16 23:47	Point d'arrêt
13	2026-04-17 02:37	zu
14	2026-04-17 17:25	geneo
15	2026-04-17 20:04	Yddet Lehcim
16	2026-04-17 20:44	KaerBannog
17	2026-04-17 23:34	pol
18	2026-04-18 01:26	🐆
19	2026-04-18 22:17	DeltaTartine
20	2026-04-20 13:38	💻📡🛰️ IooNag
21	2026-04-21 23:10	ken0s
22	2026-04-22 17:42	Y
23	2026-04-22 18:31	JBB
24	2026-04-24 00:05	tronchy
25	2026-04-24 15:17	Nyarl
26	2026-04-24 23:56	delimaxxx
27	2026-04-27 02:35	nebucca
28	2026-04-28 19:36	mythos
29	2026-04-30 15:25	Lou
30	2026-05-02 12:10	0x100000
31	2026-05-02 21:25	7min
32	2026-05-03 18:20	T-800
33	2026-05-05 18:28	chrisrdlg

Step 1: vibe malwaring (56 validations)

Position	Date de validation	Nom
1	2026-04-15 16:07	🥷
2	2026-04-15 16:09	
3	2026-04-15 16:32	t4ble_flip 🥷🥷🥷
4	2026-04-15 16:45	guedou
5	2026-04-15 17:45	Laduce-thewallondog
6	2026-04-15 23:07	pan bagnat
7	2026-04-15 23:14	oshipa
8	2026-04-15 23:38	F4b
9	2026-04-15 23:40	nico
10	2026-04-16 10:38	srchd
11	2026-04-16 11:54	Elweth
12	2026-04-16 12:52	🥷2
13	2026-04-16 13:23	TRIKKSS
14	2026-04-16 13:30	🐆
15	2026-04-16 13:39	Adam.Talbi
16	2026-04-16 13:56	pol
17	2026-04-16 14:02	Cryptanalyse
18	2026-04-16 14:50	beussay
19	2026-04-16 18:50	Point d'arrêt
20	2026-04-16 18:54	zu
21	2026-04-16 19:05	Yddet Lehcim
22	2026-04-16 20:21	szd
23	2026-04-16 20:42	geneo
24	2026-04-16 21:26	gg99
25	2026-04-16 23:48	KaerBannog
26	2026-04-17 00:08	KucraP0C
27	2026-04-17 00:15	GammaTartine
28	2026-04-17 00:41	Wilmur _
29	2026-04-17 03:36	Opupuce4.7
30	2026-04-17 08:49	Chris
31	2026-04-17 16:32	💻📡🛰️ IooNag
32	2026-04-17 18:06	icecr4ck
33	2026-04-17 19:53	Puretek
34	2026-04-18 17:56	delimaxxx
35	2026-04-18 18:19	Rando123
36	2026-04-18 22:34	tronchy
37	2026-04-19 12:34	Plop
38	2026-04-19 20:41	ken0s
39	2026-04-19 23:19	Y
40	2026-04-20 16:10	6min
41	2026-04-21 07:11	asterix45
42	2026-04-21 16:13	MrExplosive
43	2026-04-22 01:22	pab
44	2026-04-22 10:29	JBB
45	2026-04-23 07:36	nebucca
46	2026-04-23 11:47	Nyarl
47	2026-04-24 15:10	mythos
48	2026-04-24 16:27	T-800
49	2026-04-24 17:55	Lou
50	2026-04-25 20:01	Renzo

Position	Date de validation	Nom
51	2026-04-28 12:23	no_name
52	2026-04-28 13:32	dummys
53	2026-04-28 21:41	0x100000
54	2026-04-29 13:22	pcklz
55	2026-04-30 15:40	Laure P.
56	2026-05-05 14:29	chrisrdlg

Step 0: linenoise (72 validations)

Position	Date de validation	Nom
1	2026-04-15 15:43	🥷
2	2026-04-15 15:49	t4ble_flip
3	2026-04-15 15:52	🥷2
4	2026-04-15 16:09	thbzz
5	2026-04-15 16:15	gg99
6	2026-04-15 17:44	Laduce-thewallondog
7	2026-04-15 18:22	nico
8	2026-04-15 18:38	TRIKKSS
9	2026-04-15 19:40	DRuIDS
10	2026-04-15 20:21	poly
11	2026-04-15 21:46	mink
12	2026-04-15 22:11	anonym
13	2026-04-15 22:16	fougasse
14	2026-04-15 22:43	Puretek
15	2026-04-15 22:48	oshipa
16	2026-04-15 23:01	Wilmur _
17	2026-04-15 23:18	pcklz
18	2026-04-15 23:35	tronchy
19	2026-04-15 23:37	F4b
20	2026-04-15 23:50	Chris
21	2026-04-16 00:34	zu
22	2026-04-16 09:19	Tid
23	2026-04-16 10:13	Elweth
24	2026-04-16 10:33	srchd
25	2026-04-16 11:39	Laure P.
26	2026-04-16 12:51	🐆
27	2026-04-16 12:56	pol
28	2026-04-16 13:00	Adam.Talbi
29	2026-04-16 14:02	Cryptanalyse
30	2026-04-16 14:27	beussay
31	2026-04-16 15:19	Biraid
32	2026-04-16 15:26	NossBlade
33	2026-04-16 17:28	Point d'arrêt
34	2026-04-16 18:29	Yddet Lehcim
35	2026-04-16 19:33	🦄 RainbowTeam 🦄
36	2026-04-16 20:42	geneo
37	2026-04-16 21:40	Opupuce4.7
38	2026-04-16 21:48	BetaTartine
39	2026-04-16 23:20	KaerBannog
40	2026-04-17 00:07	KucraP0C
41	2026-04-17 10:19	delimaxxx
42	2026-04-17 13:17	Ikwaw
43	2026-04-17 13:57	icecr4ck
44	2026-04-17 15:56	Carlito
45	2026-04-17 17:57	4min
46	2026-04-17 20:30	Rando123
47	2026-04-17 23:47	5min
48	2026-04-18 16:12	step1nsstic
49	2026-04-18 19:08	red0xfffd
50	2026-04-19 09:41	Plop

Position	Date de validation	Nom
51	2026-04-19 13:34	mythos
52	2026-04-20 12:21	💻📡🛰️ IooNag
53	2026-04-20 14:02	asterix45
54	2026-04-20 14:23	Nyarl
55	2026-04-20 18:10	Lou
56	2026-04-20 21:29	0x100000
57	2026-04-20 23:21	ken0s
58	2026-04-21 13:37	MrExplosive
59	2026-04-21 18:09	pab
60	2026-04-22 00:05	nebucca
61	2026-04-22 09:16	JBB
62	2026-04-22 14:00	nero
63	2026-04-22 22:29	bilatérien anonyme
64	2026-04-23 22:07	matteyeux
65	2026-04-24 01:00	Renzo
66	2026-04-24 15:13	T-800
67	2026-04-26 22:58	no_name
68	2026-04-28 11:53	dummys
69	2026-04-28 17:37	Vieux motard
70	2026-04-28 21:42	DucksAreCool
71	2026-05-03 15:38	zz
72	2026-05-05 11:34	chrisrdlg