TryHackMe | Checkpoint | WriteUp
📰 Medium · Cybersecurity
Learn to assess and secure AI models in a Capture The Flag challenge on TryHackMe, applying security guardrails and policy templates to make production calls
Action Steps
- Assess Candidate A's load session to identify suspicious file access events
- Evaluate the security guardrails in Candidate A's inference session
- Query Candidate A's agent to determine the policy template governing its review behaviour
- Apply security best practices to make the production call
- Analyze the results of the automated screening to identify potential security threats
Who Needs to Know This
Security engineers and AI developers can benefit from this challenge to improve their skills in securing AI models and making informed production decisions
Key Insight
💡 Security guardrails and policy templates are crucial in ensuring the security of AI models in production
Share This
Secure AI models with TryHackMe's CTF challenge! Assess and apply security guardrails to make informed production calls #AIsecurity #CTF
Key Takeaways
Learn to assess and secure AI models in a Capture The Flag challenge on TryHackMe, applying security guardrails and policy templates to make production calls
Full Article
Title: TryHackMe | Checkpoint | WriteUp
URL Source: https://medium.com/h7w/tryhackme-checkpoint-writeup-6e8e4783af2b?source=rss------cybersecurity-5
Published Time: 2026-04-16T12:14:55Z
Markdown Content:
# TryHackMe | Checkpoint | WriteUp. Four candidates. Three threats. Make… | by Axoloth | Apr, 2026 | Medium
[Sitemap](https://medium.com/sitemap/sitemap.xml)
[Open in app](https://play.google.com/store/apps/details?id=com.medium.reader&referrer=utm_source%3DmobileNavBar&source=post_page---top_nav_layout_nav-----------------------------------------)
Sign up
[Sign in](https://medium.com/m/signin?operation=login&redirect=https%3A%2F%2Faxoloth.medium.com%2Ftryhackme-checkpoint-writeup-6e8e4783af2b&source=post_page---top_nav_layout_nav-----------------------global_nav------------------)
[](https://medium.com/?source=post_page---top_nav_layout_nav-----------------------------------------)
Get app
[Write](https://medium.com/m/signin?operation=register&redirect=https%3A%2F%2Fmedium.com%2Fnew-story&source=---top_nav_layout_nav-----------------------new_post_topnav------------------)
[Search](https://medium.com/search?source=post_page---top_nav_layout_nav-----------------------------------------)
Sign up
[Sign in](https://medium.com/m/signin?operation=login&redirect=https%3A%2F%2Faxoloth.medium.com%2Ftryhackme-checkpoint-writeup-6e8e4783af2b&source=post_page---top_nav_layout_nav-----------------------global_nav------------------)
Member-only story
# TryHackMe | Checkpoint | WriteUp
## Four candidates. Three threats. Make the production call.
[](https://medium.com/?source=post_page---byline--6e8e4783af2b---------------------------------------)
[Axoloth](https://medium.com/?source=post_page---byline--6e8e4783af2b---------------------------------------)
Follow
1 min read
·
Just now
[](https://medium.com/m/signin?actionUrl=https%3A%2F%2Fmedium.com%2F_%2Fvote%2Fp%2F6e8e4783af2b&operation=register&redirect=https%3A%2F%2Faxoloth.medium.com%2Ftryhackme-checkpoint-writeup-6e8e4783af2b&user=Axoloth&userId=988e01079481&source=---header_actions--6e8e4783af2b---------------------clap_footer------------------)
[](https://medium.com/m/signin?actionUrl=https%3A%2F%2Fmedium.com%2F_%2Fbookmark%2Fp%2F6e8e4783af2b&operation=register&redirect=https%3A%2F%2Faxoloth.medium.com%2Ftryhackme-checkpoint-writeup-6e8e4783af2b&source=---header_actions--6e8e4783af2b---------------------bookmark_footer------------------)
[Listen](https://medium.com/m/signin?actionUrl=https%3A%2F%2Fmedium.com%2Fplans%3Fdimension%3Dpost_audio_button%26postId%3D6e8e4783af2b&operation=register&redirect=https%3A%2F%2Faxoloth.medium.com%2Ftryhackme-checkpoint-writeup-6e8e4783af2b&source=---header_actions--6e8e4783af2b---------------------post_audio_button------------------)
Share
TryHackMe | Checkpoint | WriteUp
**_Disclaimer: This writeup is based on a Capture The Flag (CTF) challenge hosted on TryHackMe and it is intended for educational purposes only._**
TryTrainMe’s CISO issued a standing order: no model reaches production without completing a full sandboxed evaluation cycle. Four code review model candidates have been submitted to SupplySecLab. All four have completed their evaluation runs. The automated screening has flagged three candidates as unsafe. Your task is to assess Candidate A and make the production call.
**Task 1 The Audit**
Candidate A’s load session shows a suspicious file access event. What file did it attempt to read?
> /etc/passwd
What security guardrail flag is disabled in Candidate A’s inference session?
> security_review_flag
Query Candidate A’s agent to find out which policy template governs its review behaviour. What is the policy template?
## Create an account to r
URL Source: https://medium.com/h7w/tryhackme-checkpoint-writeup-6e8e4783af2b?source=rss------cybersecurity-5
Published Time: 2026-04-16T12:14:55Z
Markdown Content:
# TryHackMe | Checkpoint | WriteUp. Four candidates. Three threats. Make… | by Axoloth | Apr, 2026 | Medium
[Sitemap](https://medium.com/sitemap/sitemap.xml)
[Open in app](https://play.google.com/store/apps/details?id=com.medium.reader&referrer=utm_source%3DmobileNavBar&source=post_page---top_nav_layout_nav-----------------------------------------)
Sign up
[Sign in](https://medium.com/m/signin?operation=login&redirect=https%3A%2F%2Faxoloth.medium.com%2Ftryhackme-checkpoint-writeup-6e8e4783af2b&source=post_page---top_nav_layout_nav-----------------------global_nav------------------)
[](https://medium.com/?source=post_page---top_nav_layout_nav-----------------------------------------)
Get app
[Write](https://medium.com/m/signin?operation=register&redirect=https%3A%2F%2Fmedium.com%2Fnew-story&source=---top_nav_layout_nav-----------------------new_post_topnav------------------)
[Search](https://medium.com/search?source=post_page---top_nav_layout_nav-----------------------------------------)
Sign up
[Sign in](https://medium.com/m/signin?operation=login&redirect=https%3A%2F%2Faxoloth.medium.com%2Ftryhackme-checkpoint-writeup-6e8e4783af2b&source=post_page---top_nav_layout_nav-----------------------global_nav------------------)
Member-only story
# TryHackMe | Checkpoint | WriteUp
## Four candidates. Three threats. Make the production call.
[](https://medium.com/?source=post_page---byline--6e8e4783af2b---------------------------------------)
[Axoloth](https://medium.com/?source=post_page---byline--6e8e4783af2b---------------------------------------)
Follow
1 min read
·
Just now
[](https://medium.com/m/signin?actionUrl=https%3A%2F%2Fmedium.com%2F_%2Fvote%2Fp%2F6e8e4783af2b&operation=register&redirect=https%3A%2F%2Faxoloth.medium.com%2Ftryhackme-checkpoint-writeup-6e8e4783af2b&user=Axoloth&userId=988e01079481&source=---header_actions--6e8e4783af2b---------------------clap_footer------------------)
[](https://medium.com/m/signin?actionUrl=https%3A%2F%2Fmedium.com%2F_%2Fbookmark%2Fp%2F6e8e4783af2b&operation=register&redirect=https%3A%2F%2Faxoloth.medium.com%2Ftryhackme-checkpoint-writeup-6e8e4783af2b&source=---header_actions--6e8e4783af2b---------------------bookmark_footer------------------)
[Listen](https://medium.com/m/signin?actionUrl=https%3A%2F%2Fmedium.com%2Fplans%3Fdimension%3Dpost_audio_button%26postId%3D6e8e4783af2b&operation=register&redirect=https%3A%2F%2Faxoloth.medium.com%2Ftryhackme-checkpoint-writeup-6e8e4783af2b&source=---header_actions--6e8e4783af2b---------------------post_audio_button------------------)
Share
TryHackMe | Checkpoint | WriteUp
**_Disclaimer: This writeup is based on a Capture The Flag (CTF) challenge hosted on TryHackMe and it is intended for educational purposes only._**
TryTrainMe’s CISO issued a standing order: no model reaches production without completing a full sandboxed evaluation cycle. Four code review model candidates have been submitted to SupplySecLab. All four have completed their evaluation runs. The automated screening has flagged three candidates as unsafe. Your task is to assess Candidate A and make the production call.
**Task 1 The Audit**
Candidate A’s load session shows a suspicious file access event. What file did it attempt to read?
> /etc/passwd
What security guardrail flag is disabled in Candidate A’s inference session?
> security_review_flag
Query Candidate A’s agent to find out which policy template governs its review behaviour. What is the policy template?
## Create an account to r
DeepCamp AI