Palmetto Cyber Defense Competition 2016 Enterprise Meeting 13 January 2016 Jeff Sweeney PCDC Director Space and Naval Warfare Systems Center Atlantic (SSC Atlantic) Information Assurance Policy & Risk Management For PCDC Planning Purposes Only 1

2 PCDC 2016 PCDC will be at Trident Technical College On 9/10/11 April 2016 Enterprise Meeting Schedule: (every other Thursday at 10 AM at SRC) 28 January: Cooper I 11 February: Cooper II 25 February: Cooper I 10 March: Cooper I 24 March: Cooper I 7 April: Cooper I

3

PCDC 2016 Team updates ▼White and Blue teams still looking for volunteers ▼Gold Team  Continues to work on images and injects  Will move to CSRA on Aviation next month?  Incorporating IXIA network traffic generation tool (Josh Thiry, lead) ▼Continuing to recruit Red Team members (Sam Cappella posted call on PCDC FB page). Bryan Rhodes is local lead ▼White team still recruiting members ▼Blue Team mentors/schools will again have access to NETLAB training environment hosted at TTC ▼Still awaiting CyberPatriot rankings for High School invites ▼AFCEA Updates – Ken Dilks:  Located 150 medals  New sponsors: Southern Education System, Athena Consulting Group, LLC and Dilks – Simone, Inc. 4

PCDC 2016 December BoD meeting ▼Will again give out Raspberry PIs rather than Arduinos ▼Follow-on Budget meeting with AFCEA: Slightly increasing coins, T- shirts and meals this year ▼Will be selecting top 6 from CyberPatriot – LTA is out ▼Will still be using Pro-2-Serve for medals and trophies ▼Sponsors will not be on T-shirts ▼Discussed potential VIPs 5

Discussion/Voting ▼Sunday VIP ▼2 nd Plasma scrolling through pictures from previous years in addition to scrolling display ▼PCDC logo swag (POC: Paul Wilbur)  Cup $2.26 each  Lanyard: $2.10 each  Mouse Pad: $2.32 each  others ▼T-shirt color:  Heather Military Green (231C)  Safety Green (188C)  Purple (81C)  Daisy (98C) 6

New this year ▼Cyber Forensics Challenge with tablet as first prize ▼Medical Information network will be scenario ▼Free Security+ test vouchers from COMPTIA ▼We will allow collegiate teams the option of having their advisors provide 15 minutes hands-off advice once during the morning of the competition for X points ▼Updated scoring engine, more points deducted as downtime increases 5 7

Also new this year: a 9 th Pro Team, from the US Department of Cyber Security 8

9 PCDC 2016 ▼SPAWAR Executive Director specifically called out PCDC as a priority for command and that STEM volunteer efforts will be factored into appraisals ▼Ken Dilks, AFCEA PCDC lead has put out sponsorship brochure ▼Kelly Anderson, Air Force, offering up volunteers - status ▼Will increase competition time on Pro Day if okay with TTC ▼Bags and bottles – SPAWAR, looking for other items for goody bags ▼PCDC-SC.com website now has pictures posted and link to video. Can also just search Palmetto Cyber Defense Competition on youtube.

Monday, April 13, 2014 Pro Day Competition Schedule (Tentative)  7:00 am – 7:30 am:Registration  7:15 am – 7:20 am: Team location drawing  7:20 am – 7:30 am:Blue Teams Briefing  7:30 am – 7:50 am:Opening Ceremony – Senator Graham?  7:50 am – 4:00 pm:Operate Network Under Hacker Attacks  12:00 pm - 12:30 pm:Lunch-time speaker?, room 507  4:00 pm - 4:15 pm:Red Team members visit Blue Teams  4:15 pm – 4:30 pm:Break/View Sponsor Booths/Networking  4:30 pm – 4:45 pm: Red/Gold Team Debrief: Common Mistakes  4:45 pm – 4:55 pm: USCYBERCOM General  4:55 pm – 5:15 pm: Awards / Closing Ceremony 10

PCDC 2016 ▼We will providing network diagrams ahead of time this year ▼Pro Day: Gov’t: USCYBERCOM, SCNG - confirmed ▼Pro Day: Cont: SCANA Energy, SRA, SRC, MERCOM-confirmed ▼6 of 8 college teams confirmed, deadline is Friday ▼No scanning or recon of network before hand, you do not want to be caught – may be moot if we do not have wireless ▼Checking to see if Pearson will be providing table, course info and free vouchers- unable to contact yet ▼Colleges set up tables on Friday for students ▼Hotel update ? 11

PCDC 2016 Team Leads ▼Director – Jeff Sweeney ▼Gold – Josh Lewis ▼Red – Sam Cappella/Bryan Rhodes ▼White – Andrew Osti ▼Blue/High School Coordinator – Dennis Wilson ▼Collegiate Coordinator – Vince Van Houten, (Deputy Director) ▼Pro Day Coordinator – Bob Miller, (Deputy Director) ▼AFCEA POC – Ken Dilks ▼AFCEA President – Don Pearsall 12

Palmetto Digital Forensics Competition

ObjectiveObjective Solve as many forensic scenarios as possible within the allotted time and accumulate the most points possible. 14

The Competition Participants will be provided access to a large number of forensic scenario exercises ranging in difficulty. Participants will be provided access to a large number of forensic scenario exercises ranging in difficulty. Each exercise will require the participant to utilize different forensic techniques to uncover a designated “flag”. Each exercise will require the participant to utilize different forensic techniques to uncover a designated “flag”. Flags will be unique to each scenario which can range from date/time stamps, hashes, passwords, etc. Flags will be unique to each scenario which can range from date/time stamps, hashes, passwords, etc. Discovered flags will be submitted for grading and will be rewarded with the appropriate point value if the correct flag was provided Discovered flags will be submitted for grading and will be rewarded with the appropriate point value if the correct flag was provided. 15

SetupSetup Server 1)Access to challenges 2)Instructions 3)Submissions 4)Scoring Engine/Leaderboard [Webserver, File Server, DHCP… Server 1)Access to challenges 2)Instructions 3)Submissions 4)Scoring Engine/Leaderboard [Webserver, File Server, DHCP… Admin BYOD 5 systems provided (SIFT) 16

Challenge Examples Hidden data: Hidden data: – Find a specific “Key” word Hashing: Hashing: – Identify the correct hash of a file Password Cracking: Password Cracking: password – Crack a password representation to discover the plaintext password Metadata Metadata – Identify a particular embedded metadata element Data Recovery Data Recovery – Recover a specific filename Malware Analysis Malware Analysis PCAP Analysis PCAP Analysis Memory Analysis Memory Analysis 17

Rules & Eligibility Eligibility Eligibility – Any attendee at the PCDC event – Excludes SPAWAR Employee’s Rules Rules – Must be completed within the day of the competition – Individual participation only Cannot receive help from others No Teams – Disqualification: Hacking the competition server, admin workstation or any competition resource Attacking other competitors – (e.g. DoS, Remote Access, packet captures, etc.) Cheating (i.e. teaming, copying from other competitors, etc.) 18

Submissions, Scoring & Winning Submissions Submissions – Submitted via local forensic competition website Scoring Scoring – Exercises are broken into 4 difficulty levels 100 pts, 200 pts, 300 pts & 400 pts 100 pts, 200 pts, 300 pts & 400 pts – Exercises MUST be submitted via the forensic website Winning the Competition Winning the Competition – Most points submitted – In the event of a tie Submission of the last completed solution first will receive precedence Submission of the last completed solution first will receive precedence – Must be present to win 19

PrizesPrizes 1 st Place: Samsung Galaxy? (Sentar) 1 st Place: Samsung Galaxy? (Sentar) 2 nd Place: TBD (Bill Littleton) 2 nd Place: TBD (Bill Littleton) 3 rd Place: TBD (Bill Littleton) 3 rd Place: TBD (Bill Littleton) 20

Thanks to our 2016 Corporate Sponsors !. 21

Thanks to our 2016 Corporate Sponsors. 2222

23 Important Links ▼ PCDC Website: pcdc-sc.com ▼ PCDC Facebook : ▼ PCDC Twitter : ▼ Cyber Patriot : ▼ AFCEA : ▼#PCDC

PCDC Primary POCs ▼ Jeff Sweeney, SSC Atlantic, PCDC Director , ▼ Bob Miller, SSC Atlantic, PCDC Deputy Director , ▼ Vince Van Houten, SSC Atlantic, PCDC Facilitator, Collegiate Coordinator , ▼ Josh Lewis, SSC Atlantic, PCDC Gold Team Tech Lead , ▼ Whitney Bridges, AFCEA Treasurer, Alutiiq , ▼ Ken Dilks, AFCEA PCDC Lead, Dilks-Simone, Inc , ▼ Tonya Davis, Trident Technical College , ▼ Don Pearsall, AFCEA President , ▼ Dennis Wilson, SPAWAR, Blue Team Mentor Lead, High School Coordinator , 24

25 Wrap Up ▼Thoughts? ▼Big Ideas? ▼Innovations? ▼Questions?