Drawing from case studies, security engineering, 3rd party reports and our own experiences with vulnerability disclosure, the OSIsoft team sought to create an environment that highlights common mistakes, misconfigurations and misuse in a way that is both informative, and hopefully jarring. This talk will share the philosophy and methodology behind OSIsoft’s contribution to the Killer Robots, Inc. CTF environment. We also provide a primer on PI security for any CTF player interested in attacking the safe harbor for data between IT and OT networks, the PI System.