Sat, 07 June 2025, 16:30 UTC — Sat, 07 June 2025, 20:30 UTC 
On-line
A DFIR Labs CTF event.
Format: Jeopardy 
Official URL: https://thedfirreport.com/services/dfir-labs/ctf/
This event is limited to individual participation! No global rating points.
Event organizers
Duration: Each CTF lasts 4 hours.
SIEM Options: Choose between Splunk and Elastic for your SIEM tool.
Communication: Join our DFIR Labs CTF Discord Server for support and real-time updates.
Cases: You will receive access to 1 detailed intrusion cases 1 hour before the start of the CTF. Cases include network and endpoint logs as well as Sigma and YARA hits.
Questions: Complete 20+ questions within the 4-hour timeframe.
Access: All you need is a web browser.
Support: Live support on Discord.
Winners: Top 3 players will receive a discount on swag, as well as names in the CTF winners page.
Top 3 players will receive discounted swag, as well as names in the CTF winners book.
Top 5 players will have the opportunity to join The DFIR Report as a volunteer analyst!
This event is limited to individual participation!
