Capture the Flag as a Tool for Training and Teaching

Augmenting classroom-based technical security training with hands-on capture the flag (CTF) environments enables participants to develop information security skills and to put theoretical knowledge to use in a controlled, purpose-built environment. Learning-by-doing, also known as experiential learning, is proven to be a very effective method to train technically inclined staff members, as concepts are put into practice immediately and consequences are demonstrated clearly. This presentation will provide an overview of using CTF as a teaching tool and show how system administrators and software developers alike have taken an immediate liking to it.