Offical URL: https://bbbirds.org/

Online qualifier for the Vegas finals.

Binjitsu by ddtek (... — 2012)
Legitimate Business Syndicate (2013 — 2017)
Order of the Overflow (2018 — 2021)
Nautilus Institute (2022 — 2025)
Benevolent Bureau of Birds (2026 — ?)

CTF events

NameWeight
DEF CON CTF Qualifier 202663.22
DEF CON CTF Qualifier 202569.44
DEF CON CTF Qualifier 202477.38
DEF CON CTF Qualifier 202376.38
DEF CON CTF Qualifier 202277.83
DEF CON CTF Qualifier 202180.92
DEF CON CTF Qualifier 202067.72
DEF CON CTF Qualifier 201957.39
DEF CON CTF Qualifier 201872.53
DEF CON CTF Qualifier 201766.20
DEF CON CTF Qualifier 201666.20
DEF CON CTF Qualifier 201590.00
DEF CON CTF Qualifier 201490.00
DEF CON CTF Qualifier 201390.00
DEF CON CTF Qualifier 2012100.00
DEF CON CTF Qualifier 2011100.00
Related tags: web pwn xss openvms x86 php trivia bin crypto stego rop sqli forensics gpg zpool writeup base64 android perl python tangle mips net pcap xor sha1 latex rsa smt z3 padding oracle elf bruteforce algebra javascript puzzle aes arm java js haskell go vm rand random exploitation misc otp pwnable re sql joy exploit stegano ppc admin pwnables steganography things security programming metasploit c c++ reverse engineering penetration testing hacking math nosql sandbox nodejs obfuscated coding nothing networking ruby mongodb injection http engineering technologies penetration packed shell pentest bash ios algorithms windows ai unix stuff network bordersprites c64 pentesting guessing asm libc arm64 html golf linux recon looking analysis lfi sql injection mysql pyjail image miscellaneous http headers dictionary attack armitage mitm css malware analysis sleeping blind remote snow irc artificial intelligence brute force sstv qr code driving kernel crackme maths automation language good binwalk volatility hash radare2 lua jail bof pwning x86_64 image proccessing design music vbscript powershell vulnerability research ida pro ollydbg nix machine learning opencv shellcode overflow deobfuscation ajax dns gdb command injection dos cookies qr reverse x86 regex mac use-after-free oldschool babyecho jit calculator compiler amd64 debugger nc golang prolog swordfish chiptune hanoi service escape cli server electronics md5 linux server admin ninja warmup vulnerability rust crytography angr captcha pdf patching cbc timing cipher rce lcg tbd qrcode lll pickle envrionment user-agent xmldecoder zip seccomp heap zlib proxy unserialize browser rsa-like buffer-overflow dsa c lattice reverse cryptography heap-overflow serialization reversing cgc brop pov peda stack_canaries rev intro easy kali collision env binary - ctf defcon aeg icectf hexdump icectf2016 command_injection stack paillier ecc coppersmith #sql curves elliptic bitcoin binaryninja heap-feng-shui shellcoding cryptography-rsa del reverse_engineering diffie-hellman aes-cbc osint web200 vim revesing rsa-crypto rethinkdb telegram crc32 picoctf input binaryexploitation race-condition jwt frida rmi beginner playfair format-string homomorphic backdoor null aes-ecb oauth baby python3 brute-force secret-sharing v8 ysoserial popen fastbin movfuscated steghide exiftool cbc-bit-flipping eval crpyto py2exe one_gadget popad vtable fingerprinting keylogger tcache unintended binary-exploitation python2 life single-byte bad-random machine_learning number_theory wasm aarch64 modular-arithmetic file_structure arm32 linear_algebra binary-search tcache-poisoning reverse-engineering nosql-injection potpourri speedrun duktape spectre code-golf np-complete frida-util image-processing format_string webassembly 2020 golly swift desync http-desync-attack pooot hyperelliptic-curves ml eulertheorem hashing 2.32 tcache-stash-unlink poison-null-byte azure macros tftp defcon2021 quantumcrypto quantumcrpyto adsfdfgh asdfg adsfdfg asfdfg adsfdgfgh adsfdfghj sdg asdfvbgh adsdfgh dsdfgnbvb fghjdvfh xzcxvc simic luajit prompt-leaking llm