About

ZoiteCTF is a closed, beginner friendly capture the flag competition which takes place under 24 hours. No prior hacking experience is required, but being acquainted with a programming language such as C or Python will work in your favour.

Maximum 1 person per team
During 18-19th July at 16:00 UTC+1
$15 cash prize winner-take-all

Each problem has a flag. Once a flag is submitted, you earn points for the given problem. A valid flag looks like this: ZCTF{...} and only contains alpahnumeric characters. Harder challenges reward more points.

Hints, when available, are shared publicly and will trigger the bell icon (top right) to light up red. For updates, consider keeping an eye on #zoitectf.

Rules

To be able to participate, a player needs to be registered on the Zoite IRC network. Note that players registered after July 1st, 2026 are not eligble for cash rewards.
Keep to one account. If you've forgotten your login credentials, they can be reset. PM @katt for help.
Keep solutions to your team. It is not allowed to share solutions or hints during the CTF with players outside your own team.
The usage of LLMs is permitted, but with some caveats. Do not upload entire challenges and have them solve it for you. MCP servers are not permitted.
Do not brute-force online services. Automated traffic is perfectly fine, but if your solution requires >10,000 attempts, your solution needs to be refined. This prohibition extends to bruteforcing tools like dirbuster.

Rewards

ZoiteCTF is a winner-take-all competition, meaning there are no prizes for second place. The winning team will be awarded $15 U.S dollars.

ZoiteCTF 2026

About

Rules

Rewards