ISSessions CTF 2019 – Thank you!

Another CTF has come and gone, and we’d like to take the opportunity to thank everyone who came out and participated. With over 15 teams taking part in the event, this has been our largest CTF to date!

A special thanks goes out to our sponsors Security Compass:

They really helped to make this CTF the best it’s been!

All the teams played well and really impressed us with their ability to solve problems they’ve never encountered before, but at the end of the day one team came out on top, and we’d like to congratulate team USSR for winning this year’s CTF.

Team USSR, ISSessions’ CTF 2019 Winners

Their win scores them some sweet Raspberry Pi’s and of course the eternal glory from winning. Congratulations also go out to Dr Dongos Bigger Bongos and TAZAmanian Trolls for coming in 2nd and 3rd place respectively.

We’d also like to thank the two teams that made it out from Seneca College to participate bright and early on a Saturday morning, they played hard and we’d love to have them back again next year.

A final thanks goes out to all the non-club exec volunteers who lent a hand with running the event, whether they designed challenges, created the infrastructure, or just ran around lending a hand on event day. The event was a great success and it would not have been possible without your support

We plan to host another CTF next year, so see you for ISSessions CTF 2020!

ISSessions CTF Code of Conduct

Code of Conduct


Our goal is to bring the Local InfoSec community together for a conference

about the excitement, joy, and surprise of Information/Cyber Security.

We value the participation of each member of the community and want

all attendees to have an enjoyable and fulfilling experience.

Accordingly, all attendees are expected to show respect and courtesy

to other attendees throughout the conference and at all conference

events, whether officially sponsored or not.

All attendees, speakers, exhibitors, organizers and volunteers at any

event are required to observe the following Code of Conduct.

Organizers will enforce this code throughout the event.

The Short Version


ISSessions is dedicated to providing a harassment-free conference

experience for everyone, regardless of gender, sexual orientation,

disability, physical appearance, body size, race, religion, or

anything else. We do not tolerate harassment of conference

participants in any form.

All communication and behaviours should be appropriate for a

professional audience including people of many different backgrounds.

Sexual language and imagery is not appropriate for any conference

venue, including talks.

Be kind to others. Do not insult or put down other attendees. Behave

professionally. Remember that harassment and sexist, racist, or

exclusionary jokes are not appropriate at ISSessions.

Attendees violating these rules may be asked to leave at the sole

discretion of the conference organizers.

Thank you for helping make this a welcoming, friendly event for all.

The Longer Version


Harassment includes offensive verbal comments related to gender,

sexual orientation, disability, physical appearance, body size, race,

religion, sexual images in public spaces, deliberate intimidation,

stalking, following, harassing photography or recording, sustained

disruption of talks or other events, inappropriate physical contact,

derisive comments regarding technical background, and unwelcome sexual


Participants asked to stop any harassing behavior are expected to comply immediately.

Be careful in the words that you choose. Remember that sexist, racist,

and other exclusionary jokes can be offensive to those around you.

Excessive swearing and offensive jokes are not appropriate for ISSessions

If a participant engages in behavior that violates the anti-harassment

policy, the conference organizers may take any action they deem

appropriate, including warning the offender or expulsion from the


Social Rules


In addition to having a code of conduct as an anti-harassment policy,

we have a small set of social rules we follow. We (actually Max)

learned and lifted these rules from Hacker School, where we felt that

they contributed enormously to a supportive, productive, and fun

learning environment. We’d like ISSessions to share that environment. These

rules are intended to be lightweight, and to make more explicit

certain social norms that are normally implicit. Most of our social

rules really boil down to “don’t be a jerk“ or “don’t be annoying.” Of

course, almost nobody sets out to be a jerk or annoying, so telling

people not to be jerks isn’t a very productive strategy.

Unlike the anti-harassment policy, violation of the social rules will

not result in expulsion from the conference or a strong warning from

conference organizers. Rather, they are designed to provide some

lightweight social structure for conference attendees to use when

interacting with each other. We also believe that if we all learn from

these social rules we can make the infosec community a more positive

and healthy environment for everyonw and we wish to share them with you.

[The social rules](

If you have any questions about any part of the code of conduct or

social rules, please feel free to reach out to any of the conference





If you have any questions about any part of the code of conduct or

social rules, please feel free to reach out to any of the organizers.

Contact Information

If you are being harassed, notice that someone else is being harassed,

or have any other concerns, please contact a member of conference

staff (they’re wearing green buttons).

Conference staff will be happy to help participants contact local law

enforcement, provide escorts, or otherwise assist those experiencing

harassment to feel safe for the duration of the conference. We value

your attendance.



The ISSessions code of conduct is under a [Creative Commons

Zero]( and has been forked from the

The BSides Toronto Code of Conduct is under a [Creative Commons

Zero]( license. It was forked

from the [!!Con 2014 Code of Conduct](

which was forked from the [PyCon 2013 Code of Conduct](,

which is licensed under a [Creative Commons Attribution 3.0 Unported License](,

and which itself was forked from an [example policy from the Geek Feminism wiki, created by the Ada Initiative and other volunteers](

and available under a Creative [Commons Zero license](

ISSessions CTF Connection Guide

Download the configuration file

Linux Configuration

Once you have the file downloaded you just need to unzip it and run:

sudo openvpn –config <configuration file>

IMPORTANT: it’s – – config (minus the spaces)

OSX Configuration

Click on the OpenVPN Icon in the menu bar at the top of the screen, which will give you a dropdown menu. Click on Import > From Local File and select the provided .ovpn. Then click on the IP address that appears and > Connect.

Windows Configuration

Follow the useful link here:

Participation Link