// Capture-the-flag program

Our platform.

Your CTF.

Live-fire, competitive red-team events that test real offensive security capabilities. The Rogue Arena Invitational runs every summer for ROPS graduates and invited corporate teams. We also build and host private CTFs for companies that want to put their own security teams through one.

Why Rogue Arena?

  • Most CTF platforms hand you a list of standalone challenges. Rogue Arena runs sequential attack chains. Recon, initial access, lateral movement, privilege escalation, persistence, all connected the way real engagements actually unfold. Participants walk away with reps that map to the work they'll actually do.

  • Run it as a solo onboarding exercise for a new hire, a squad of five for a red team, or a full internal competition with a hundred operators or more. Same platform, same scenarios, scaled to whatever format you need.

  • Want a walled garden where your security team competes against itself? Done. Want to put your team in a shared arena alongside ours or another company's? Also done. Every environment is provisioned independently and torn down clean at the end.

  • Participants run the chain on their own schedule. No scheduled lab windows, no fixed cohorts. Login at 2 AM, log out at noon, pick it up again Saturday. The arena stays up.

  • Every action surface tracked. See who solved what, where teams stalled, which hops gated the field. Live leaderboards, per-operator progress, and analytics after the event that show you exactly where your team has skill gaps to fill.

  • Squads coordinate inside the platform. No bouncing between Slack, Discord, and a CTF dashboard for scoring. Comms, scoring, and the engagement all live in one place.

  • Hosting a CTF for your company? We can build the attack chain to match your actual tech stack, threat model, and training goals. Your engineers should be solving problems that look like the ones they'll see in production.

upcoming Events

Operation Cybderdyne

Operation Cyberdyne is the 2026 edition of the Rogue Arena Invitational, a live-fire red team CTF running from 14 to 31 July. Eighteen days of competitive offensive security against a hardened simulated environment, structured as an 11-hop attack chain.

Squads of five operators work the chain end-to-end. Reconnaissance, initial access, lateral movement, privilege escalation, persistence. Real techniques, real infrastructure, real reps that map to the work participants will actually do in production.

The 2026 field is set at 20 squads, for a total of 100 operators. Registration is open to graduates of our ROPS-RT1 red team operator program and selected corporate red teams.

Operators who complete the full chain receive the Operation Cyberdyne completer kit: a custom-embroidered Rogue Labs hoodie, an Operation Cyberdyne sticker pack, and a Credly digital badge that is verifiable on this site.

Registration

Still have questions? Take a look at the FAQ or reach out anytime. If you’re feeling ready, go ahead and book a demo below or email us at info@roguelabs.io

Your Questions, Answered
Contact Us

  • Yes. Scenario design is part of the package, not an upsell. We work with you to define the objectives, the threat model, and the kind of environment your team needs to face, then we build it. That includes user accounts with realistic backstories, multi-stage escalation paths, custom tooling where it makes sense, and bespoke command and control infrastructure. Operation Cyberdyne, our 2026 flagship event, runs an eleven-hop attack chain we built from scratch. Your scenario can be just as deep or as tight as you need.

  • No. We host red, blue, and purple team events. The platform runs on a plugin architecture, so we can spin up whatever infrastructure the scenario calls for: Active Directory forests, segmented networks, custom detection stacks for blue, full attack and defend ranges for purple, and bolt on the tooling your participants will actually use. The same flexibility that lets us run an offensive chain lets us run a SOC simulation with realistic alerts, dwell time, and incident response objectives.

  • No. The arena is up 24/7 for the duration of your event. Persistent environments mean an operator can disconnect for sleep, come back in the morning, and pick up exactly where they left off. No daily resets, no time-boxed sessions, no waiting for an instructor to provision anything. The same model that has ROPS-RT1 graduates working at 2 AM on a Saturday is what powers every hosted event.

  • Anywhere from a few hours to several weeks. Operation Cyberdyne runs eighteen days continuously. A corporate one-day onboarding exercise might run six hours. A red team certification track might run a full month. The platform doesn't care. We agree on the window with you and the arena holds the line.

  • No. The arena is browser-accessible. Participants log in from any modern browser and the VMs, tooling, and infrastructure live in the cloud. For engagements that require specialized local tooling (Kali, custom C2 clients, niche attack frameworks), we can provision per-participant workstations remotely accessible from the browser as well. No corporate laptop conflicts, no IT tickets, no week one spent fighting with VPN clients.

  • Every action a participant takes surfaces in platform telemetry. Command execution, hop completion, scoring events, dwell time, lateral movement attempts. You see individual operator progress alongside team progress. After the event, you get a structured report that shows you exactly which participants drove outcomes and which ones were riding along. Especially useful for hiring slates, internal promotion tracking, and skill gap analysis.