PwnTillDawn

PwnTillDawn is a concept developed by wizlynx group to bring fun to cyber security by gamifying the process of penetration testing and allowing people to learn & exercise their offensive skills. Our hope with PwnTillDawn is to inspire new generations to join our Cyber Security field, which greatly lacks needed talent.

PwnTillDawn’s original format (as we now call it PwnTillDawn Original) is an onsite computer penetration testing competition organized by wizlynx group, which is purely oriented around offensive security. During the Capture the Flag (CTF) event, participants evolve within a network comprised of many machines representing real life vulnerabilities witnessed by wizlynx group through real-life advanced penetration tests.

The PwnTillDawn Original CTF series challenges contestants to break into as many machines as possible, using a succession of weaknesses and vulnerabilities within a twelve-hour window. Upon the compromise of a machine, contestants will have to collect flags awarding a certain amount of points. At the end of the contest, the cyber warrior with the most points wins!

With the goal to reach even more people and allow them to not only learn but also and have fun in a safe environment, wizlynx group decided to create PwnTillDawn Online Battlefield. This 100% online version allows anybody to practice their offensive security & penetration testing skills by discovering and exploiting vulnerabilities in various machines and hosts located in our penetration testing lab, and that anytime, anywhere.

To register to PwnTillDawn Online Battlefield and start practicing: https://online.pwntilldawn.com/

But that’s not all!! wizlynx group is regularly organising insane 24H (or even 48H)/Non-Stop online competitions known as PwnTillDawn Online Battlefield Competitions where 50+ challengers from all over the world compete against each other. Check the "Upcoming CTFs" section below to register to future competitions.

Our Key Differentiators

Fun but Realistic Machines

Our network is composed from machines with real-life vulnerabilities witnessed by wizlynx group through advanced penetration tests

Exotic Touch

PwnTillDawn not only includes systems you would typically find in a normal network, but we also incorporate emerging technologies such as IoT devices

More Than Just One Box!

Like in real-life, you will find in our network machines with dependencies and links to other machines

Preparing You for The Real-Life

In real life, not everything can be hacked… That’s why our network incorporates hosts that not necessarily contains known and publicly available vulnerabilities

Rules

No cooperation between participants; Sharing of keys or providing revealing hints to other participants is cheating - don’t do it!
No attacking the competition’s infrastructure; If bugs or vulns are found, please alert the competition organizers immediately
Absolutely no sabotaging of other competing participants, or in any way hindering their independent progress
No brute forcing of challenge flag/ keys against the scoring site
DoSing the CTF platform or any of the challenges is forbidden
The following cannot be used or performed during the PwnTillDawn CTF:
- Spoofing (IP, ARP, DNS, NBNS, etc)
- Commercial tools or services (Metasploit Pro, Burp Pro, etc.)
- Automatic exploitation tools (e.g. db_autopwn, browser_autopwn, SQLmap, SQLninja etc.)
- Mass vulnerability scanners (e.g. Nessus, NeXpose, OpenVAS, Canvas, Core Impact, SAINT, etc.)

The event is without a doubt a successful event. I’m pretty sure the experience gained by everyone of all levels especially me is priceless. Thank you for making the event real!
- Alif

Thank you for hosting the CTF event, it was a great experience, we were able to learn many new things and meet new people. Hope that challenges like this will be held in the future!
- Hais