Ph0wn is a Capture The Flag dedicated to smart devices (IoT, embedded systems, smart phones…). Come and challenge yourself on drones, IP web cameras,  console games,  smart toothbrushes and many other devices!

Ph0wn is a jeopardy-style local CTF. Free entrance.

Ph0wn 2018 is scheduled on Friday December 14th 2018. Please book your date!

Ph0wn 2017

Ph0wn 2017 is over! It took place on  Wednesday November 29 2017 at Campus SophiaTech, Sophia Antipolis, France. The contest started at 6 pm local time and finished at 2 am (November 30). Keep posted for next edition!


Prizes for first three CTF winners

  • 1st prize: Team adhoc. 1 Parrot MiniDrone Quadricopter Mambo + Raspberry Pi 3 16GB retro gaming bundle with 2 SNES Style controllers
  • 2nd prize: Team NOPS.  1 Parrot MiniDrone Quadricopter Mambo
  • 3rd prize:  Team pwntera. Raspberry Pi 3 16GB retro gaming bundle with 2 SNES Style controllers


Latest news


Write-ups repository is here. If you have written a write-up for a challenge, let us know on twitter/email so we can add it to github.

Ph0wn is on CTFtime, and the scoreboard is there too. Don’t forget to rate for the event!

A few pictures and videos of the event here


How to participate

You may compete individually or in a team.


  • Team registration shall be done on site. However, please register individually now to secure your seat & meal.
  • Team size is limited to 5 please.

What you should bring

  • Your laptop with at least 10 GB free, power cord & adapters, multi plug outlets.
  • Challenges will be accessible via wifi, so make sure your laptop supports wifi, or get a wifi dongle.
  • Bluetooth 4.0 dongle (if your laptop does not support it natively), various USB cables  (type A, B and C), SD card adapters or any other equipment you like to use (e.g multimeter, your own soldering station, Ubertooth, femtocell…)
  • Recommended software:  in addition to the usual CTF tools (e.g disassemblers), we recommend docker, VirtualBox, Android emulator, mbed, Arduino IDE.

Note this is a local CTF: challenges won’t be available remotely.


  • It’s a competition, but we ask that you remain fair play.  For instance, it is forbidden to prevent other teams from scoring.
  • Your target is challenges. That’s all. No DoS/automated scans/large amounts of traffic/deleting stuff on our servers, and of course, no attack on external servers.


Sponsored by

This CTF is sponsored by Fortinet and organized during the eSAME conference.


CTF organizers are:

–   Axelle Apvrille (Fortinet)

–   Ludovic Apvrille (Telecom ParisTech)

–   Michel Dubois (Plateforme Conception)

–   Aurélien Francillon (Eurecom)

–   Alain Forcioli (Fortinet)

–   Florian Lugou (Telecom ParisTech)

–   Marius Münch (Eurecom)

–   Philippe Paget (GreHack)

Friends / Related events