This is a hacking challenge focussed on web applications and
challenges both hackers as well as coders. Each team gets a Ubuntu
VM with a vulnerable Java application. The team gets about an hour
to go through the application to identifiy vulnerabilities in the
code and make appropriate code changes to fix these issues.
After an hour the IP addresses of each team's VM is made available to other users. At this point the teams access the applications of the other teams and hunt for vulnerabilities in them.
Positive points are awarded for each vulnerability that a team identifies on other's application. Negative points are awarded for each vulnerabilty that is discovered on the team's application.
The team with the most number of points at the end, win.
Points can vary based on the complexity of the vulnerability.