Eternal fame and bragging rights ahead:

Bob the Breaker CTF

Low-code / no-code Hacking!

Created especially for OWASP Lisbon 2024, this is your chance to hack the first CTF for low-code/no-code applications. Get hands-on experience, encounter real-world scenarios, and have fun!

Bob the Breaker

THE CTF IN LISBON HAS ENDED.

Thanks, everyone for joining the CTF. We hope you had fun. FOR UPDATES AND INFORMATION ABOUT THE BOB THE BREAKER GLOBAL CTF, STARTING TODAY,
PLEASE CLICK HERE!

CAN WE HACK IT? YES, YOU BET!

Low-code/no-code Hacking

Bob the Breaker has been given access to some innocuous low-code/no-code enterprise apps.
Will he be able to take a sneak, unauthorized peek at PII, customer, and employee data?
Will he cheat his way into the President’s Club?
Come help Bob hack his way through the corporate Low-code/No-Code universe!

Join us at OWASP Global Appsec Lisbon or

enter the second instance of the CTF open for the global community.

Prizes Up for Grabs

Bring home those flags and get a change to win a Whoop 4.0!

All players who successfully complete the CTF will be entered for a drawing to win a WHOOP 4.0 Fitness & Activity Tracker (including a one-year subscription) and one of nine Gyro Balls.

We hope to have stickers of Bob the Breaker ready for all players in Lisbon.

Prizes CTF

When & Where

Join us live at OWASP Lisbon!

The CTF will open on Friday, June 28
from 10:00 am – 2:00 pm (GMT+1)

Our friends at OWASP reserved Room 1.10 CCL  at the event for the CTF. 

Informational flyers and rollups, including the unique registration code, will be made available at the event. 

If you have questions, you can always come by the Nokod booth SU9 for additional information. 

GLOBAL ACCESS TO THE CTF FOR  EVERYONE! 

To give all OWASP members and the global security community a chance to participate in the CTF, we will open another instance:

Friday, June 28,
starting at
6 PM (GMT+1) | 12 PM EST |  9 AM PT
and keep it open for 24 hours
.

Link to CTF – Bob the Breaker Global Edition Registration Code
will be available on the CTF site once it starts.

Rules and Fair Play

  • We keep it simple:
    Be Nice! Play Fair! Don’t share Flags! Have Fun!
  • Single players, no teams
  • You do not play against time! If you complete the CTF successfully, you will be entered into the drawing for the prizes. 
  • How to get your prize (OWASP Global Lisbon): Starting 3:30 PM, you can check at Nokod’s Stand SU9 to see if you are one of the lucky winners!
  • Who wins (online, global access): Everyone who finishes the CTF enters a draw for prizes. Another Whoop 4.0 and 9 Gyro Ball (it might be a different type) are at stake. You will be allowed to ask for Amazon cards instead of the prizes we have chosen. IMPORTANT – please use a real email address so we can notify the winners. 

Updates per Email?

If you want to be updated about the CTF and get reminders per email, please let Ursula (ursula[at]nokodsecurity.com) know. 

Scroll to Top