HITCON Cyber Range 2026 企業藍隊競賽

HITCON Cyber Range:打造你的資安事件應變超能力!

這是一場專為磨練企業級「藍隊」防禦戰力而生的頂級競賽。我們精心打造了一個高度擬真的 Cyber Range 環境，模擬企業遭受複雜網路攻擊的情境。參賽者將扮演企業內部資安團隊，於情境中執行調查、分析與應變工作，在多變的實戰情境下快速判讀、溯源追擊，做出關鍵應變決策。

HITCON Cyber Range 為台灣藍隊競賽的指標性競賽，這裡考驗的不只是技術深度，更是團隊合作與臨場反應的極限。透過 HITCON Cyber Range，你將:

• 演練 最逼真的資安事件應變流程。
• 探索 從蛛絲馬跡找出真相的調查技巧。
• 強化 面對真實威脅的實戰防禦力。

準備好接受挑戰，成為企業與政府機構渴求的頂尖防禦型資安將才了嗎? 快來 HITCON Cyber Range 一較高下!

辦理單位

• 指導單位:數位發展部數位產業署
• 主辦單位:社團法人台灣駭客協會 / 財團法人工業技術研究院
• 協辦單位:TRAPA Security

競賽說明

HITCON Cyber Range 2026 為單一場次的全球線上競賽，通過資格審核之隊伍即可於指定時間參賽，並於賽後依成績排名頒發獎項。

本屆競賽特別開放資安公司組，邀請資安專業團隊參與賽事挑戰，促進產業技術交流，共同提升台灣整體藍隊實戰能量。

一、重要時程 (皆為 UTC+8 時區)

• 競賽報名開放：2026 年 5 月 4 日 (一)
• 競賽報名截止：2026 年 8 月 31 日 (一) 23:59 
• 資格審核通知：採分批審核、先報先審。最終批次於 2026 年 9 月 11 日 (五) 前以 E-MAIL 通知聯絡人。
• 行前通知：2026 年 9 月 24 日 (四) 寄送 
• 全球線上競賽：2026 年 10 月 2 日 (五) 10:00 - 17:00
• 公告競賽結果：2026 年 10 月 16 日 (五)
• 頒獎典禮暨交流餐敘：2026 年 11 月 8 日 (日) 

二、資格入選規則

為確保競賽品質與系統穩定運作，本屆各組別將依報名及資格審核情形開放入選名額；名額額滿後，主辦單位得提前截止報名。

• 資安公司組：預計至多 10 支隊伍入選。
• 非資安公司組：預計至多 50 支隊伍入選。

三、頒獎典禮地點

• 地點:新北電競基地
• 地址:新北市三重區重新路一段 87 號 3 樓 

四、聯絡方式

若有任何疑問，歡迎隨時聯繫 HITCON Cyber Range 團隊 Email: cyberrange@hitcon.org

---

獎勵說明

一、參賽獎勵

凡符合報名資格並全程參與本競賽之隊伍，每隊均可獲得乙份載明企業名稱之 HITCON Cyber Range 電子參賽證明。

二、排名獎勵

非資安公司組

取得優異成績的隊伍，將獲得獎盃與獎金:

• 冠軍 (第一名):團隊獎盃乙座 + 獎金 $2,500 美金 (USD)
• 亞軍 (第二名):團隊獎盃乙座 + 獎金 $1,250 美金 (USD)
• 季軍 (第三名):團隊獎盃乙座 + 獎金 $500 美金 (USD)

資安公司組

• 資安公司組以榮譽參賽為主，不提供競賽獎金。
• 優勝隊伍將獲頒團隊獎盃乙座，以表彰其專業能力與競賽表現。

三、得獎隊伍專屬福利

• 獨家紀念品:代表榮譽與歷程的 HITCON Cyber Range 專屬紀念品。
• 參賽證書:核發個人與企業得獎證書。
• 交流晚宴席位:提供每隊 4 位名額，參與賽後交流晚宴，與資安領域專家及同好互動。
• 隊伍成果報告:將於賽後提供詳細的隊伍表現分析報告，助於複盤與成長。
• 曝光機會：經得獎企業同意後，得獎名單將於新聞稿及官方社群平台公開露出。

四、頒獎典禮

頒獎典禮預計於 2026 年 11 月 8 日 (日) 舉行，共同慶祝與表揚優勝隊伍，並接續舉辦交流餐敘。

---

報名相關資訊

一、報名資格

本屆競賽分為「非資安公司組」與「資安公司組」兩組別，參賽隊伍須符合以下資格:

團隊組成

• 每隊選手 4 位為上限。
• 每隊須指定團隊內 1 位聯絡人作為主要聯繫窗口。

團隊要求

• 所有成員必須隸屬於同一間企業或單位。
• 嚴格禁止跨公司／單位組隊報名。
• 本競賽不開放個人名義組隊參賽。

企業/單位組別認定

• 非資安公司組:報名之企業/單位，其主要核心業務不得為對外提供資安顧問、資安產品、資安代管或相關資安專業服務之廠商 (即非資安 Vendor / MSSP / Consultant Firm)。本組別旨在強化非資安產業自身的防禦應變能力。
• 資安公司組:核心業務為提供資安顧問、資安產品、資安代管或相關資安專業服務之廠商，可報名此組別。

隊伍數限制

• 單一企業/單位 (以統一編號或具體法人單位為準) 僅限報名 1 隊代表隊。若同一企業有多個團隊有意參賽，請務必事先完成內部協調，推派出唯一代表隊伍。
• 本屆採先報先審制，系統將依報名完成順序進行資格審核。若同一企業出現多筆報名，主辦單位將以「最先完成報名程序」之隊伍作為正式參賽代表，恕不另行協調。

二、報名時程 (皆為 UTC+8 時區)

• 報名開放：2026 年 5 月 4 日 (一)
• 報名截止：2026 年 8 月 31 日 (一) 23:59 (額滿提前截止) 
• 資格審核通知：採先報先審、分批寄送通知。
• 第一批：7 月底前完成審核並通知。
• 最終批次：預計 2026 年 9 月 11 日 (五) 前以 E-MAIL 通知聯絡人。

三、報名方式

• 報名平台
  • 本競賽統一採網路報名。請於報名期間內，至 KKTIX 報名系統完成報名程序。
  • 報名連結：hitcon.kktix.cc/events/hitcon-cyberrange-2026
• 審核與通知
  • 主辦單位將依據上述資格條件進行審核，採先報先審方式分批處理。
  • 審核結果 (無論通過與否) 及後續的賽前通知、注意事項等，均將透過 E-MAIL 發送給各隊聯絡人。

 

---

競賽方式與規則

競賽形式

HITCON Cyber Range 2026 為單一場次的全球線上競賽，旨在模擬真實的資安攻防情境，全方位考驗團隊的事件應變實戰能力。

核心重點:全方位資安事件實戰

本競賽旨在考驗團隊在模擬企業環境壓力下的綜合資安實戰能力。

任務涵蓋:

• 事件調查與威脅識別:分析主辦單位提供的多種數位證據 (如網路流量、伺服器日誌、端點活動記錄、等) ，從中挖掘駭客蹤跡、判斷真實攻擊事件，並找出關鍵的入侵指標 (Indicator of Compromise, IOC)。

• 攻擊鏈深入調查:追蹤完整攻擊鏈，釐清攻擊者進入點、橫向移動路徑與最終目標。

• 應變處置實作:擬定並實際執行應變措施，例如:隔離受駭主機、清除惡意程式、修補系統漏洞、強化安全設定等。

建議技能

• 熟悉常見作業系統 (Windows / Linux)、網路設備 (Firewall / Proxy) 之日誌判讀。
• 具備閱讀與理解 SQL 查詢語法及 PowerShell Script 的能力。
• 熟悉 SIEM 事件調查（例：異常登入行為、可疑檔案落地、橫向移動跡象）。
• 了解駭客常用手法，能應用 MITRE ATT&CK® 框架進行分析 (例:辨識 Initial Access、Persistence、Lateral Movement 等戰術階段)。

建議團隊組成

挑戰多元，建議團隊成員可具備以下互補的專業背景與實作能力:

• IT 維運與系統管理 (伺服器、網路、AD/DC 管理)
• 應用程式安全與管理
• 資安專業技能 (SOC 監控分析、事件應變 IR、數位鑑識 Forensics)

進行方式

• 形式：全球線上競賽 (各隊伍於各自地點透過網路連入競賽環境)。
• 時間：2026 年 10 月 2 日 (五) 10:00 - 17:00 (UTC+8，共 7 小時)。
• 帳號：每隊將獲得 4 組登入帳號，供隊員同時線上競賽。
• 環境：建議使用最新版本的 Chrome 或 Edge 瀏覽器以獲得最佳體驗。
• 頒獎典禮：2026 年 11 月 8 日 (六) 另行舉辦，並接續交流餐敘。

排名與獎項

• 競賽成績將依據解題積分與完成時間進行排名。非資安公司組與資安公司組將分別排名。
• 詳細的競賽流程、操作環境、評分標準及注意事項，將於賽前另行通知通過審核之隊伍。

---

重要禁止事項

為維護競賽的公平、公正性，參賽隊伍及成員務必遵守以下規定，違反者可能會被立即取消參賽或得獎資格:

• 禁止任何破壞競賽公平性之行為:包括但不限於隊伍之間交換、洩漏、購買或散播任何形式的解題答案 (Flag)、提示或解題方法。
• 禁止攻擊或干擾行為:嚴禁對競賽平台、相關基礎設施、工作人員或其他參賽隊伍進行任何形式的網路攻擊、惡意掃描、阻斷服務或未經授權的存取嘗試。
• 禁止一人參與多隊:每位參賽者僅能報名並代表一支隊伍參賽。

主辦單位保有最終修改、變更、活動解釋及取消本活動之權利，並保留對違規情事之最終判定權與處置權。

---

注意事項

請報名人員詳細閱讀以下同意書:

• 台灣駭客協會與工業技術研究院個人資料蒐集、處理及利用之告知暨同意書
• 數位發展部數位產業署個人資料蒐集、處理及利用之告知暨同意書

 

HITCON Cyber Range: Sharpen Your Cybersecurity Incident Response Superpower!

This is a premier competition designed specifically to train enterprise-level "Blue Team" defensive capabilities. We have meticulously crafted a highly realistic Cyber Range environment simulating scenarios where enterprises face complex cyberattacks. Participating teams will act as internal enterprise cybersecurity teams, executing investigation, analysis, and response tasks within the scenario. Under dynamic real-world conditions, teams will quickly interpret data, trace attacks back to their origins, and make critical response decisions. 

HITCON Cyber Range is one of Taiwan's benchmark challenges for Blue Teams, testing not only technical depth but also the limits of teamwork and on-the-spot reaction. Through HITCON Cyber Range, you will: 

• Experience the most realistic cybersecurity incident response processes.

• Hone investigation skills to uncover the truth from subtle clues.

• Enhance practical defense capabilities against real-world threats.

Are you ready to accept the challenge and become the top-tier defensive cybersecurity professional sought after by enterprises and government agencies? Come compete in the HITCON Cyber Range! 

Organisations

• Advising Organisation: Administration for Digital Industries, Ministry of Digital Affairs

• Organisers: Association of Hackers in Taiwan (HIT) / Industrial Technology Research Institute (ITRI)

• Co-Organiser: TRAPA

Competition Description

HITCON Cyber Range 2026 is a single-event Global Online Competition. Approved teams will compete on the scheduled date, and awards will be presented based on final post-competition rankings. 

This year, the competition features a dedicated Cybersecurity Vendor Track, inviting professional security teams to participate, promote industry technical exchange, and jointly elevate Taiwan's overall Blue Team combat readiness.  

I. Important Dates (All times are UTC+8) 

• Registration Opens: May 4, 2026 (Monday)

• Registration Deadline: August 31, 2026 (Monday) 23:59

• Eligibility Review Notification: Rolling review on a first-come, first-served basis. Final batch notifications will be sent by September 24, 2026 (Thursday) via E-MAIL to the team POC.

• Pre-competition Notification: Expected by September 18, 2026 (Friday)

• Global Online Competition: October 2, 2026 (Friday) 10:00 - 17:00

• Announcement of Results: October 16, 2026 (Friday)

• Award Ceremony & Dinner: November 8, 2026 (Sunday)

II. Eligibility Selection Rules

To ensure competition quality and system stability, slots for each track will be opened based on registration and eligibility reviews; the organizers reserve the right to close registration early if capacity is reached. 

• Cybersecurity Vendor Track: Expected maximum of 10 teams. 

• Non-Cybersecurity Track: Expected maximum of 50 teams. 

III. Award Ceremony Venue

• Venue: New Taipei City Esports Base

• Address: 3F., No. 87, Sec. 1, Chongxin Rd., Sanchong Dist., New Taipei City

IV. Contact Information

For any questions, please contact the HITCON Cyber Range team via Email: cyberrange@hitcon.org 

 

---

 

Awards and Recognition

I. Participation Recognition

All teams that meet the eligibility criteria and fully participate in the competition will receive one HITCON Cyber Range digital certificate of participation listing their enterprise name.

II. Ranking Awards (Non-Cybersecurity Group) 

Teams achieving outstanding results will receive trophies and cash prizes: 

• Champion (1st Place): One team trophy + Prize money: USD $2,500 

• Runner-up (2nd Place): One team trophy + Prize money: USD $1,250 

• Third Place (3rd Place) : One team trophy + Prize money: USD $500 

III. Cybersecurity Vendor Group

• Teams in the Cybersecurity Vendor Group participate primarily on an honorary basis and do not compete for cash prizes. 

• Winning teams will receive one team trophy to recognize their professional capabilities and competition performance. 

IV. Exclusive Benefits for Winning Teams 

All teams that pass review and complete the competition will enjoy the following exclusive benefits:

• Exclusive Souvenirs: Special HITCON Cyber Range memorabilia representing honor and the journey.

• Participation Certificate: Issuance of individual and corporate award certificates.

• Dinner Seats: Provides 4 seats per team to participate in the post-competition networking dinner.

• Team Performance Report: A detailed post-competition analysis report on team performance will be provided to aid in review and growth.

• Exposure Opportunities: With the consent of the winning enterprises, the list of winners will be publicly disclosed in press releases and official social media platforms.

V. Award Ceremony

The award ceremony is scheduled for November 8, 2026 (Sunday), followed by a networking dinner to celebrate and recognize the winning teams. 

 

---

 

Registration Details

I. Eligibility Criteria

The competition is divided into two tracks: Non-Cybersecurity Track and Cybersecurity Vendor Track. Participating teams must meet the following qualifications:

Team Composition

• Each team may have a maximum of 4 members.

• Each team must designate one Point of Contact (POC) as the primary liaison.

Affiliation Requirements:

• All members must belong to the same company or organization.

• Cross-company/organization teams are strictly prohibited.

• This competition does not allow teams formed by individuals participating in a personal capacity.

Company/Organization Eligibility Restrictions:

• Non-Cybersecurity Group: Enterprises whose primary core business is NOT providing external cybersecurity consulting, products, managed security services, or related professional cybersecurity services (i.e., not Vendors / MSSPs / Consultant Firms). This track aims to enhance the defensive capabilities of non-cybersecurity industries.

• Cybersecurity Vendor Group: Enterprises whose core business is providing cybersecurity services, products, or consulting. This track is for honorary participation only.

Team Limits

• A single company/organization (based on its Tax ID or specific legal entity) is limited to registering only one representative team.

• This year operates on a first-come-first-served basis for review. If multiple registrations from the same enterprise appear, the organizers will recognize the team that first completed the registration process as the official representative.

II. Registration Schedule (All times are UTC+8)

• Registration Opens: May 4, 2026 (Monday)

• Registration Deadline: August 31, 2026 (Monday) 23:59 (or earlier if full) 

• Eligibility Review Notification: Reviewed and notified in rolling batches.

• First batch: Reviewed and notified before end of July 2026.

• Final batch: By September 11, 2026 (Friday), notified via email to the team POC. 

III. Registration Method

Registration Platform

• This competition uses online registration exclusively via the KKTIX system.

• Registration Link: hitcon.kktix.cc/events/hitcon-cyberrange-2026

Review and Notification

• Eligibility review is conducted on a rolling, first-come-first-served basis.

• Review results and all subsequent pre-competition notices will be sent via Email to each team's POC.

 

---

 

Competition Format and Rules

Format

HITCON Cyber Range 2026 is a single-event Global Online Competition that simulates realistic cybersecurity attack and defense scenarios, comprehensively testing teams' incident response capabilities.

Core Focus: Comprehensive Incident Response Practice

This competition is designed to test the team's overall cybersecurity Incident Response (IR) capabilities under simulated enterprise pressure.

Tasks include:

• Incident Investigation and Threat Identification: Analyze various forms of digital evidence provided by the organizers (e.g., network traffic, server logs, endpoint activity records, EDR detection events) to uncover hacker traces, identify real attack incidents, and find key Indicators of Compromise (IOCs).

• Attack Chain Investigation: Trace the full attack chain to clarify the attacker's entry point, lateral movement path, and ultimate objective.

• Response Action Implementation: Formulate and actually implement response measures, such as isolating compromised hosts, removing malware, patching system vulnerabilities, and hardening security settings.

Recommended Skills

• Familiarity with log interpretation for common operating systems (Windows / Linux) and network devices (Firewall / Proxy).

• Ability to read and understand SQL query syntax and PowerShell scripts.

• Familiarity with EDR tools for alert triage and event tracking (e.g., reviewing host process behavior, suspicious file drops, lateral movement indicators).

• Understanding of common attacker techniques and the ability to apply the MITRE ATT&CK® framework for analysis (e.g., identifying tactics such as Initial Access, Persistence, Lateral Movement).

Recommended Team Composition

The challenges are diverse. Recommended complementary backgrounds include:

• IT Operations and System Administration (Server, Network, AD/DC Management)

• Application Security and Management

• Cybersecurity Expertise (SOC Monitoring & Analysis, Incident Response, Digital Forensics)

Procedure

• Format: Global Online Competition (teams compete remotely from their own locations via the cyber range platform).

• Time: October 2, 2026 (Friday) 10:00 - 17:00 (UTC+8, 7 hours total).

• Accounts: Each team will receive 4 login accounts for concurrent solving.

• Environment: Latest version of Chrome or Edge browser recommended.

• Award Ceremony: To be held separately on November 8, 2026 (Saturday), followed by dinner.

Ranking and Awards

Competition scores will be ranked based on points earned and completion time. The Non-Cybersecurity Track and Cybersecurity Vendor Track will be ranked separately.

Detailed procedures, operating environment, scoring criteria, and important notes will be provided to approved teams before the competition.

 

---

 

Prohibited Actions

To maintain the fairness and integrity of the competition, all participating teams and members must adhere to the following rules. Violators may face immediate disqualification:

• Any action undermining the fairness of the competition is prohibited: including, but not limited to, exchanging, leaking, purchasing, or disseminating solutions (Flags), hints, or solving methods in any form between teams.

• Attacking or disruptive behavior is prohibited: Strictly forbidden are any forms of network attacks, malicious scanning, denial-of-service attacks, or unauthorized access attempts against the competition platform, related infrastructure, staff, or other participating teams.

• Prohibition of participating in multiple teams: Each participant may only register for and represent one team.

The organizers reserve the final right to determine and act upon any violations.

 

---

 

Important Notes

Registrants are required to carefully read the following consent forms:

• Association of Hackers in Taiwan (HIT) and Industrial Technology Research Institute (ITRI) Personal Data Collection, Processing, and Use Notification and Consent Form

• Administration for Digital Industries, Ministry of Digital Affairs Personal Data Collection, Processing, and Use Notification and Consent Form