Policies & Acceptable Use

Important: Ignorance of the law is not a defence. You can be fined or prosecuted even if you didn’t realise an action was illegal.

Legal framework (UK)

You must comply with UK law, including the Computer Misuse Act 1990 and related legislation. Unauthorised access, data extraction, denial of service, or interference with systems is illegal.

Ethical conduct

Use skills responsibly; only test systems you own or have explicit written permission to test.
Respect privacy and confidentiality at all times.
Do not attempt to bypass security controls on any university or third-party systems.

Prohibited activities

Attempting to break into this website or any service it uses (e.g., brute forcing, exploiting vulnerabilities, scraping restricted areas).
Sharing or attempting to crack passwords for restricted materials without authorisation.
Launching scans, DoS/Stress tests, or automated attacks against any systems not expressly permitted.

Reporting and consequences

Suspected abuse or security issues related to this site will be documented and reported to the appropriate authorities.
Breaches may lead to removal from the society and referral to university authorities and law enforcement.
Found issues? Act responsibly and contact the society committee; do not exploit or publicise vulnerabilities.

Learning safe hacking

Practice only in controlled environments (CTF platforms, local labs, intentionally vulnerable VMs).
Follow guidance from sessions on ethical hacking and responsible disclosure.