Capture The Evidence v2 - June 2026 French gendarmerie 🇫🇷 organized a special CTF called “Capture The Evidence” from June 5 to June 15, 2026. I participated for the first time, with a team of 4 called Eternal Green. The name of our team is a play on words based on Eternal Blue, the organizing team where blue is the color of the gendarmerie, and Green in our case in reference to the (famous?

Back from Auvergn’hack 2026 Auvergn’hack is a recent, local security conference in Clermont Ferrand (France). It is rather small: a single day and a single track, but it was a great discovery with an excellent ratio of interesting talks. Yes, when you’re a “senior” with “20+ years of experience” (a kinder way of saying you’re old), you’ve already seen quite a lot. You don’t say it too often not to sound old and grumpy, but you are often disappointed with talks because they tell a story so similar to one you’ve already heard in the past.

CTFs and Artificial Intelligence. Post Ph0wn 2026 Thoughts. Update May 26, 2026: Link to feedback from NorthSec CTF Update May 19, 2026: Re-phrased first paragraph. In particular, replaced the title “Myth #1 CTF players hate AI [..]” with “CTF players hate AI [..]: True or False?” because I found my title was too biaised. It did not express fairly enough the reality. Added a paragraph on my (current) opinion. Added references to foreman, Kabir and Sthack CTF My opinion, in short The “problem” of AI in CTFs is very complex, with pros and cons…

THCon 2026 Badge The badge at THCon 2026 was created by DVID. It actually had 2 firmware: Shipped on the badges for the conference, and reversed by Virtualabs. Interesting blog post, read it! This firmware has the badges communicate with a master using BLE. A specific firmware for a challenge. Getting the XRefs in Ghidra I had dumped the firmware and retrieved the applicative part see Virtualab’s post, but I was annoyed not to have any xref in Ghidra.

CTE v2 (2026) - Le Vault This challenge begins with some OSINT where we need to find a program protected by password. This program is used by Melanie’s friend, Samir Taleb. NB. These are fake identities used all along “Capture The Evidence” v2. Then, we’ll need to provide the author’s name of this challenge as flag. The tags of the challenge suggest there’s a part with OSINT (first part) and a part with Reverse (second part).

CTE v2 (2026) - Toujours en Vente This is a reverse engineering challenge created by Miaou for Capture The Evidence (CTE) in June 2026. We are given a binary broker_tool, and we need to find a URL to flag, e.g https://u.rl/path. Reconnaissance The binary is an ELF x86-64, not stripped. We run it: 1 2 3 4 5 6 7 8 9 10 11 12 13 14 =================================== B U S I N E S S P O R T A L =================================== Welcome, valued partner.