All vulnerabilities are welcome, but winners will be determined based on various criteria.

Damage (Scoring). Attacks that demonstrate significant damage are scored higher than weaker attacks.

• Full device control: 5000 points
• Unprivileged/partial control: 4000 points
• Corruption/compromise internal network: 4000 points
• Modification of router behavior or controls: 3000 points
• High-value* information leakage: 3000 points
• Bricking: 3000 points
• Denial of Service: 1000 points
• Low-value** information leakage: 1000 points

**High-value information may include administrative or other passwords, user files, network information, etc.
**Low-value information may include router-specific information, such as router name, user names, etc., but nothing that would ordinarily have value on its own.

Penalties. Attacks that require special conditions and caveats are subject to point reductions.

• Non-remote attack: -1000 points
• Requires human interaction: -1000 points
• Requires authenticated session: -1000 points
• Requires administrative password: -1000 points
• Requires other system/network information: -500 points
• Requires special system configuration: -500 points
• Relies on other special circumstances: -500 points
• Exploit is unreliable: -500 points
• Lack of post-exploit control: -500 points

Guru compromise. Must score 5000 points
- demonstrate the most powerful attack in all categories with no caveats.

• Hotel accommodations for two (2) people for DEF CON 26
• 2 DEF CON 26 Badges (Cash Value*)
• $500 Cash
• Trophy

1337 compromise. Must score 3000 points
- pretty damn close to grand prize, but constrained by falling short from most powerful in any category, or having sufficient caveats to make the real-world application of this attack less likely.

• 1 DEF CON 26 Badge (Cash Value*)
• $250 Cash
• Trophy

Rabble rouser compromise. Must score 1000 points
- less damaging attacks than full control, but still represent significant security compromises.

• $50 Cash
• Trophy

Still good compromise. Must score 100 points
- weaker attacks, but exploits nevertheless.

• $25 Cash
• Trophy

You may submit multiple exploits, compete multiple times, and win multiple and duplicative awards.
Prizes are limited.

O-DAY TRACK

Jmaxxz - 18500 points

• Four 1337 compromises: >
• Three Rabble Rouser compromises:

Bb1ack0wl - 8,500 points

• Two 1337 compromises:

Jeff Kitson - 6,000 points

• One 1337 compromise:
  • LockState Wi-Fi Lock
• One Rabble Rouser compromise:

Fred Bret-Mounet - 4,000 points

• One 1337 compromise:

Omri Malis & Rony Minutz - 4,000 points

• One 1337 compromise:

---

CTF TRACK

First place: Team Eversec - 16,000 points

Second place: Team æøå - 13,001 points

Third place: Team livercrossfit - 13,000 points

O-DAY TRACK

Lyon Yang [@l00p3r] - 21,000 points

• Four 1337 compromises:
  • Zhone ZNID 2426A
• Three Rabble Rouser compromises:
  • Zhone ZNID 2426A

Brian Waters - 1,000 points

• Still Good compromise:
  • Samsung SmartCam 2.12_141027

Joseph Paul Cohen - 500 points

• Still Good compromise:
  • LockState Wi-Fi Lock

---

CTF TRACK

First place: Team froggystyle - 13,000 points

• Gabe Marshall, Clayton Dorsey, Ping He, Manish Pannala, Eoin Corrigan, and Paul Whelan

Second place: Team 1_man_wolf_pak - 7,000 points

• Matt Brown

Third place: Team adhoc - 6,000 points

• Chris newman, Adith Sudhakar, and Anton

O-DAY TRACK

Craig Young [Tripwire] - 26,000 points

• FIVE 1337 compromises:
  • Asus AC66U
  • Netgear WNDR-4700 (2x)
  • DLink 865L
  • Belkin N900
• Four Rabble Rouser compromises:
  • Belkin N900
  • Netgear WNDR-4700 (2x)
  • Linksys EA6500
• Still Good compromise:
  • Belkin N900

Averagebusinessuser - 4,000 points

• 1337 compromise
  • Trendnet TEW-812DRU

Michael Losee [Emagined Security] - 4,000 points

• 1337 compromise
  • Actiontec Q1000

Chase Schultz - 3,500 points

• 1337 compromise
  • DLink 865L

---

CTF TRACK

First place: Team VERT - 15,000 points

• Craig Young, Ian Turner [Tripwire]

Second place: Team Craig Cummings - 3,000 points

• Craig Cummings

Third place: Team Nights Watch - 3,000 points

• Clayton Dorsey, Gabe Marshall

---

SURPRISE TRACK

This was a spontaneous challenge where attendees were tasked with grabbing a flag off a router that was only available on the network for a short time.

r1 - Clayton Dorsey

• ASUS AC66U

r2 - Clayton Dorsey, Gabe Marshall, and Paul Whelan

• DLINK 865L