I’ve just found out that the results of the 2015 Underhanded C Contest have been published and (YIPPEE!!), I managed to bag a runner-up spot.
This year, the competition was sponsored by the Nuclear Threat Initiative. The goal of the contest was to fake the results of a test of a nuclear warhead to show that a warhead contained fissile material, when in fact it did not.
Congratulations to the winner, Linus Åkesson. You can read about his entry on his blog. It’s also worth reading about the other entrants’ ideas for how to hide malicious code inside normal looking code.
Here is the NTI’s article about the contest: http://www.nti.org/newsroom/news/underhanded-c-contest-highlights-challenges-nuclear-arms-control-verification-technologies/
Lastly, if you’re curious about my entry, I’ve posted the code and an explanation on GitHub: https://github.com/StephenOman/UnderhandedC2015