CTFd

CTFd 3.7.3 has been released with a security fix for a vulnerability where an attacker could determine the names of accounts that had solved a challenge even though CTFd was configured to hide account information.

CTFd 3.7.3 CTFd 3.7.3 has been released with a security fix for a vulnerability where an attacker could determine the names of accounts that had solved a challenge even though CTFd was configured to hide account information. v3.7.3 has already been deployed to Hosted CTFd customers. Self-hosted users

CTFd 3.7.2 has been released with a security fix for a vulnerability where an attacker could extract flags from CTFd provided that an admin interacted with a malicious page.

More details available on our blog at

CTFd 3.7.2 CTFd 3.7.2 has been released with a security fix for a vulnerability where an attacker could extract flags from CTFd provided that an admin interacted with a malicious page. To mitigate the above vulnerability, CTFd will no longer return 404s in paginated listing pages and API endpoints. For

CTFd 3.7.0 is available now with scoreboard brackets, social sharing links, improvements to the file upload API and the introduction of Vite. Read more at

CTFd 3.7.0 CTFd 3.7.0 has been released with the introduction of scoring brackets and the social sharing system. We have also completely removed webpack from CTFd in favor of Vite.

CTFd v3.6.0 has been released with support for Translations!

This release has been long in the making with foundations being laid since the previous minor release.

Read more at https://buff.ly/3QMJzYU

CTFd v3.6.0 CTFd v3.6.0 has been released with Translations!

Introducing Tourist! We're open sourcing an internal project that makes it easier to run browser-based CTF challenges. Read more on our blog at https://buff.ly/3wtdkT6.

CTFd v3.5.0 has been released with Next Challenge, Hint Requirements, Importer Improvements, and a beta release of the next iteration of the default CTFd theme! 50% reduction in bundle size! Read more at https://buff.ly/3PbtU2b

CTFd v3.4.3 (and the shortlived 3.4.2) is available now with a security fix in a dependency to resolve CVE-2022-24724. Full changelog at Github https://buff.ly/3tHXh2h

CTFd v3.4.1 is available now with small UI fixes and performance improvements. Full changelog at Github: https://buff.ly/36qY7IF

CTFd 3.4.0 is out now with features like CSV importing, challenge topics, anonymous challenges, and lots of other nice features!

https://buff.ly/37CX59C

CTFd v3.3.1 is available now with a security fix for an issue where users could join a team without knowing the team password or having a team invite. All users are recommended to upgrade to v3.3.1. All Hosted CTFd users are already updated. Read More: https://buff.ly/3xIs1ks

A follow up to our previous post on our hosted challenge infrastructure: https://buff.ly/2SQ1h29. We're now allowing customers to request TCP ports!

We're making some changes to our hosted CTF challenges functionality for managed CTFd instances. TLDR: encrypted connections! Full details: https://buff.ly/3vv0rFs

We're now offering an Enterprise focused version of CTFd!

Some of the new features:
- King of the Hill challenges
- Web shells
- LDAP/SAML/SSO authentication
- All Hosted CTFd features

On-premise installs available now, cloud instances available in Q4.
https://buff.ly/3hHx2V4

CTFd v3.3.0 came out last week! Here's our blog post on the important updates for self hosted and hosted CTFd instances.
https://buff.ly/3fQby7w

CTFd v3.2.0 is out now! Blog post with the changelog highlights and some improvements in Hosted CTFd: https://buff.ly/3n9RZaY

CTFd v2.2.3 has been released with a critical security fix for CTFd versions >= 2.0.0. All CTFd administrators are recommended to update to 2.2.3 and reset administrator passwords.

More details available in the full changelog: https://buff.ly/38tYNbX

CTFd v2.0.6 was released earlier this week with some bugfixes and a proper fix for the privacy issue which was improperly fixed in 2.0.5. https://buff.ly/2USaXIh

CTFd 2.0.5 is available on Github with some bugfixes including a fix for a privacy issue where user email addresses could be accessed by non-admins. Hosted CTFd instances have already been updated. https://buff.ly/2OkUtmo

CTFd 2.0.3 has been released with a security fix for versions >= 2.0.0. Please update as soon as possible. You can find more details & changelog on Github: .

Hosted CTFd instances had the issue mitigated when we were made aware, and are fully updated.

CTFd/CTFd CTFs as you need them. Contribute to CTFd/CTFd development by creating an account on GitHub.

This year we beta tested Major League Cyber (our new team tracker) with the top finalists from the CSAW CTF competition. The feature set is limited but over time we'll be scaling up our work on MLC. In the meantime you can register your team account now! https://buff.ly/2EG5Vq8

Earlier this month we made CTFd 2.0 available on Github! Read about some of the biggest changes and our new CTF team tracker, Major League Cyber!
https://buff.ly/2EKBwrk

CTFd 2.0 & Major League Cyber – CTFd Earlier this month, we released CTFd 2.0 with over 300 commits, 40 closed issues, and a whole slew of new built-in features including…

For CTF organizers reach out to [email protected] or send a DM for sponsorship and partnership opportunities!

CTFd v2.0.0 development is officially underway. Have suggestions, feature requests, or ideas? Let's hear them in the Github issue tracker! You can also take a look at what's already planned https://buff.ly/2Owgnmq

We've been radio silent for awhile working on fancy new projects like our new hosted challenge platform: https://buff.ly/2JLCLW1. Deploy your challenges on https://ctfd.io/ with just git push ctf master!