Competition Rules

Triada CTF '26 — Read carefully before participating

By registering and participating in Triada CTF '26, you agree to follow all the rules listed below. Violations may result in disqualification.

15 rules
🎓 01 Eligibility

Triada CTF '26 is open to currently enrolled college students. Participants may be required to present a valid college ID for verification during the event.

👥 02 Team Format

Participants may compete either solo or as a team of up to 2 members.

  • Solo participation is allowed
  • Teams may have a maximum of 2 members
  • Team changes will not be allowed once the event has started
🪪 03 Account Usage

Each participant may use only one account on the platform.

  • Account sharing is strictly prohibited
  • Credential sharing is strictly prohibited
  • Access sharing is strictly prohibited
04 Event Scope

Participants may only attack or interact with the official Triada CTF challenge infrastructure. The following are strictly out of scope:

  • Attacking the CTFd platform itself
  • Attempting to access admin panels or organizer accounts
  • Interfering with the scoreboard
  • Brute-forcing platform logins
  • Denial-of-service or resource exhaustion attacks
  • Any action that disrupts the competition for others

Unless explicitly stated in a challenge, the platform and infrastructure itself are out of scope.

05 Fair Play

Participants must compete fairly and only within their registered team. The following are not allowed:

  • Flag sharing between teams
  • Collaboration with anyone outside your registered team
  • Receiving unauthorized help from other participants
  • Creating or joining multiple teams
  • Impersonation or misrepresentation
  • Sabotaging other teams in any form
🤖 06 Tools & AI Usage

The use of publicly available tools is permitted. AI usage is also permitted.

Participants may use AI tools, scripts, automation, and other resources for learning, analysis, scripting, or solving challenges, as long as they:

  • Do not attack out-of-scope systems
  • Do not disrupt the platform or other participants
  • Do not violate any other event rules

Participants remain fully responsible for all actions performed using such tools.

07 Flag Format

Unless stated otherwise, flags will follow the format:

>_ TRIADA{...}

Please submit flags exactly in the required format.

As a small reward for reading the rules carefully, here is a hidden rules flag:

>_ TRIADA{read_the_rules_play_fair}
08 Writeups & Information Sharing

During the event, participants must not share flags, hints, solutions, exploit steps, or writeups with other teams or publicly.

Writeups may be published only after the event ends, unless the organizers state otherwise.

09 Scoring & Ranking

Scoring will be managed through the official CTF platform. In the event of suspicious activity, technical issues, platform abuse, or disputes, the organizers reserve the right to review submissions and revise scores or rankings if necessary.

🏆 10 Prize Eligibility

Prize eligibility is subject to:

  • Compliance with all event rules
  • Successful verification of participant identity and eligibility
  • Organizer review where required

Any participant or team found violating the rules may be disqualified and may forfeit prizes.

11 Conduct

All participants are expected to behave respectfully toward fellow participants, organizers, volunteers, and sponsors.

Harassment, abuse, discrimination, or disruptive behavior will not be tolerated.

12 Organizer Authority

The organizers reserve the right to modify challenge infrastructure, patch technical issues, issue clarifications, revise scoring, invalidate solves, and disqualify participants if necessary.

All organizer decisions are final.

🚀 13 Final Note

The purpose of Triada CTF '26 is to promote learning, fair competition, and cybersecurity skill-building.

Compete hard, play fair, and enjoy the event.