CTF as a Service: A reproducible and scalable infrastructure for cybersecurity training

Computer Science > Cryptography and Security [Submitted on 23 Mar 2026] CTF as a Service: A reproducible and scalable infrastructure for cybersecurity training Carlos Jimeno Miguel amd Mikel Izal Azcarate Capture The Flag (CTF) competitions have established themselves as a highly effective pedagogical tool in cybersecurity education, offering students hands-on experience in realistic attack and defense scenarios. However, organizing and hosting these events requires considerable infrastructure effort, which frequently limits their adoption in academic settings. This paper presents the design, iterative development, and evaluation of a CTF as a Service (CaaS) platform built on Proxmox virtualization, leveraging Infrastructure as Code (IaC) tools such as Terraform and Ansible, container orchestration via Docker Swarm, and load balancing with HAProxy. The system supports both a development-centered workflow, in which challenges are automatically deployed from a Git repository through a CI/CD pipeline, and a deployment-oriented workflow for ad-hoc infrastructure provisioning. The paper describes the design decisions made, the challenges encountered during development, and the solutions implemented to achieve session persistence, external routing, and challenge replicability. The platform is designed to evolve into a CTF hosting service with commercial potential, and future lines of work are outlined regarding automatic scaling, monitoring integration, and frontend standardization. Comments: 5 pages, 2 figures, sent to conference Jornadas Nacionales de Investigacion en Ciberseguridad JNIC 2026 Subjects: Cryptography and Security (cs.CR) ACM classes: K.3.2; D.4.6; J.3.0 Cite as: arXiv:2603.22511 [cs.CR]   (or arXiv:2603.22511v1 [cs.CR] for this version)   https://doi.org/10.48550/arXiv.2603.22511 Focus to learn more Submission history From: Mikel Izal [view email] [v1] Mon, 23 Mar 2026 19:17:16 UTC (169 KB) Access Paper: HTML (experimental) view license Current browse context: cs.CR < prev   |   next > new | recent | 2026-03 Change to browse by: cs References & Citations NASA ADS Google Scholar Semantic Scholar Export BibTeX Citation Bookmark Bibliographic Tools Bibliographic and Citation Tools Bibliographic Explorer Toggle Bibliographic Explorer (What is the Explorer?) Connected Papers Toggle Connected Papers (What is Connected Papers?) Litmaps Toggle Litmaps (What is Litmaps?) scite.ai Toggle scite Smart Citations (What are Smart Citations?) Code, Data, Media Demos Related Papers About arXivLabs Which authors of this paper are endorsers? | Disable MathJax (What is MathJax?)