War Gamez / Capture the Flag
Submitted by tintagel on Thu, 2006-03-30 00:09.
Applied | Exploits | Hardware | Methodology | Monitoring | Research | Risk Analysis | Security Research | Software | Training | Vulnerabilities
I would like to put together our own version of War Gamez/CTF. The basic premise is that we setup a 'sandbox' environment with several different flavors of servers and compete to see who can keep their stuff running while cracking the other teams' stuff. Structure isn't very formal right now - looking for suggestions on ground rules, format, etc. Please post to this forum to contribute.
Maybe we can run some different IDS/IPS systems during the festivities and evaluate their performance afterwards.
The main goal is to share and learn - hope you can contribute to the development and participate! Join the mailing List!
Based on my highly scientific polling method of asking people who I think might be interested I have identified about 10 AZSPF members to participate so far.
Strategy or broadside?
Submitted by nuclear-cowboy on Sun, 2006-08-27 18:20.
New guy here (will attend first meeting tomorrow), but are you looking to do more of a broadside-blow-em-up-until-they-fall-down (i.e. no security other than what can be done on the hosts themselves), or more of a strategy game with a hopefully more realistic multi-tier DMZ environment? Having root access on a web server might give you all the crown jewels in one environment, or a nice view of a small data stream going by but no access to the stream's source in another.
Strategy
Submitted by tintagel on Mon, 2006-10-16 16:03.
I was thinking that it would be more interesting to have a multi-tier DMZ with carefully crafted vulnerabilities at different levels. eventually it would be neat to have an educational track with known vulnerabilities to teach hacking methods and a challenging, evolving environment that ups the ante for each go around. This would allow us to introduce concepts and techniques to fledgling White Hat Hackers while allowing others to hone their skills.
Environment
Submitted by tintagel on Fri, 2006-03-31 01:14.
For ease of creation/reuse I'd like to leverage virtualization technology [either VMware or VirtualPC] to create the target and attack servers. This way we can create a single base-image of each category of machine and duplicate them easily into the environment.
Brainstorming Ideas:
- OS Choices (or a subset):
- Windows [2000/XP/2003]
- FreeBSD/OpenBSD
- Linux [RedHat/CentOS, Debian/Ubuntu, other]
- FreeBSD/OpenBSD
- Services (or a subset):
- Web (Apache/IIS)
- File (NFS/FTP/SFTP/CIFS/SMB)
- Terminal (telnet/ssh/RDP/X)
- DNS
- NTP
- DB/SQL
- SMTP
- SNMP
- VoIP (VOMIT)
- File (NFS/FTP/SFTP/CIFS/SMB)
- Application Platforms:
- .NET
- PHP
- PHP
Services to attack
Submitted by ken on Thu, 2006-03-30 18:06.
For this game to work, participants will need something to attack. Here are some suggestions:
Web services. A successful attack would be to post content to the attacked web site showing a successful compromise.
Remote shell/SSH. A successful attack would be to obtain a key file or other file from the compromised machine.
One step further would be a root/administrator level compromise. A successful attack would be to shut down service or even the server.
Some rule suggestions:
No worms or attacks that could spread to other machines.
Nothing obscene.
The only valid targets are those on the game network. All other machines are off-limits.
Participants must share their attacks with the entire group. This includes unsuccessful attacks.
Comments?
-- Ken
Where's my Secury? I think someone stole it.
Links to hackable web apps for educational purposes
at Foundstone