Presentation is loading. Please wait.

Presentation is loading. Please wait.

 International  UCSB Sponsored  Application security  ! network security  ! os security  Custom services 2.

Published byDoreen Wilson Modified over 9 years ago

Similar presentations

Presentation on theme: " International  UCSB Sponsored  Application security  ! network security  ! os security  Custom services 2."— Presentation transcript:

1

2  International  UCSB Sponsored  Application security  ! network security  ! os security  Custom services 2

3  About a dozen  Unknown protocol or purpose  Variety of languages  Lots of flaws  Might be  interdependent  encrypted  obfuscated  compiled 3

4  Checks services each round  Sets “flags” in services  Updates status page  Receives stolen “flags” 4

5 5  This is a General Rule  See exact rules on the game day

6  Additional tasks for points  Copious  Various difficulty levels  Enough points to count  Adds to confusion 6

7 7

8  Tight teams around services  Responsible for  Patching  Exploiting  Monitoring **  Backing up  Reverting if broken  Challenge chasers  Administrators 8

9  Learn, interpret, and explain rules  Prioritize efforts  Keep network running  Keep services up  Patch gapping holes  Submitting flags  Developing exploits **  Challenges  Direct people into groups  Obtain refreshments – GTISC 9

10  Learn  Bash, Python, PHP, Perl, Java, JS, C,.Net, MySQL  Reverse engineering, Java decompilation  Build  Network  Tools for quick analysis **  Infrastructure for communication  Practice  Patching services, exploitation  Working as a team? 10

11  Everyone  SSH key-based login .ssh/config  SCP or SFTP  SVN or Other VCS 11

12 host sniffer hostname 192.168.1.4 user ctf identityfile ~/.ssh/id_rsa_sniffer host vuln hostname 10.X.1.3 user root port 10022 identityfile ~/.ssh/id_rsa_vuln  Have these keys available prior to the game (practice) 12

13  From Hackerz  svn co https://192.168.1.4/svn/ctf ▪ User: ctf ▪ Password: wearethew1nningteam!  svn add  svn up  svn ci  svn st  svn diff  svn log  From Vulnerable Image  svn co https://10.X.1.5/svn/ctf  svn up  no check in except the initial version

14  Service splitter (tcpflow/editcap/custom)  Process monitor/hider (htop/custom-ptrace)  Flag broker (custom)  Traffic rate-limiter (tc)  Top-talkers list (ntop/custom-libpcap)  Service monitor and reporter (custom)  Monitors when a service goes down or up and informs the responsible team  SVN, SSH, Chat room, etc.

15  01:00 Receive encrypted VMware image  09:15 Arrive, Eat**, Chat  09:50 Organize into tentative groups  10:00  Receive rules, Receive decryption key  Start image  Back up services on image !!!!!!!  Assign services - reorganize teams  11:00 Start competition  No changes to services before competition

16  Expect the unexpected  Some points from 2008: ▪ Key for fake image was “ucsb” ▪ Only attackers were needed ▪ More emphasis on challenges (New languages/ technologies – Haskell, PDF exploit)  Always backup patches / firewall un-patched services  Need for good co-ordination – Chat  Put in your best and keep your cool ! 16

17  Who will lead?  What skills do we lack?  How do we get the skills we need?  What tools do we need?  What should we eat?  How should we communicate?  We should organize a practice session, but when, who, how?  Does this serve our primary purpose of preparing you for InfoSec work?

Download ppt " International  UCSB Sponsored  Application security  ! network security  ! os security  Custom services 2."

Similar presentations

1 Chapter 8 Fundamentals of System Security. 2 Objectives In this chapter, you will: Understand the trade-offs among security, performance, and ease of.

1 Chapter 8 Fundamentals of System Security. 2 Objectives In this chapter, you will: Understand the trade-offs among security, performance, and ease of.
System and Network Security Practices COEN 351 E-Commerce Security.

System and Network Security Practices COEN 351 E-Commerce Security.
SSH : The Secure Shell By Rachana Maheswari CS265 Spring 2003.

SSH : The Secure Shell By Rachana Maheswari CS265 Spring 2003.
Assessing Vulnerabilities ISA 4220 Server Systems Security James A. Edge Jr., CISSP, CISM, CISA, CPTE, MCSE Sr. Security Analyst Cincinnati Bell Technology.

Assessing Vulnerabilities ISA 4220 Server Systems Security James A. Edge Jr., CISSP, CISM, CISA, CPTE, MCSE Sr. Security Analyst Cincinnati Bell Technology.
Security Awareness: Applying Practical Security in Your World Chapter 6: Total Security.

Security Awareness: Applying Practical Security in Your World Chapter 6: Total Security.
© 2010 VMware Inc. All rights reserved VMware ESX and ESXi Module 3.

© 2010 VMware Inc. All rights reserved VMware ESX and ESXi Module 3.
Network security policy: best practices

Network security policy: best practices
Internet Relay Chat Chandrea Dungy Derek Garrett #29.

Internet Relay Chat Chandrea Dungy Derek Garrett #29.
269200 Web Programming Language Dr. Ken Cosh Week 1 (Introduction)

Web Programming Language Dr. Ken Cosh Week 1 (Introduction)
Google AppEngine. Google App Engine enables you to build and host web apps on the same systems that power Google applications. App Engine offers fast.

Google AppEngine. Google App Engine enables you to build and host web apps on the same systems that power Google applications. App Engine offers fast.
Amazon EC2 Quick Start adapted from EC2_GetStarted.html.

Amazon EC2 Quick Start adapted from EC2_GetStarted.html.
Capture The Flag Review Fall 2003 Giovanni Vigna University of California Santa Barbara

Capture The Flag Review Fall 2003 Giovanni Vigna University of California Santa Barbara
Load Test Planning Especially with HP LoadRunner >>>>>>>>>>>>>>>>>>>>>> www.softwaretestinggenius.com

Load Test Planning Especially with HP LoadRunner >>>>>>>>>>>>>>>>>>>>>>
CTF Mike Gerschefske Justin Gray. What is it? Came from Defcon Came from Defcon UCSB sp0nsorz – won last years Defcon UCSB sp0nsorz – won last years Defcon.

CTF Mike Gerschefske Justin Gray. What is it? Came from Defcon Came from Defcon UCSB sp0nsorz – won last years Defcon UCSB sp0nsorz – won last years Defcon.
Port Knocking Software Project Presentation Paper Study – Part 1 Group member: Liew Jiun Hau (20086034) Lee Shirly (20095815) Ong Ivy (20095040)

Port Knocking Software Project Presentation Paper Study – Part 1 Group member: Liew Jiun Hau ( ) Lee Shirly ( ) Ong Ivy ( )
© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.1 ISP Responsibility Working at a Small-to-Medium Business or ISP – Chapter 8.

© 2007 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.1 ISP Responsibility Working at a Small-to-Medium Business or ISP – Chapter 8.
Best Practices in Moodle Administration Best Practices in Moodle Administration A variety of topics from technical to practical Jonathan Moore Vice President.

Best Practices in Moodle Administration Best Practices in Moodle Administration A variety of topics from technical to practical Jonathan Moore Vice President.
1 Infrastructure Hardening. 2 Objectives Why hardening infrastructure is important? Hardening Operating Systems, Network and Applications.

1 Infrastructure Hardening. 2 Objectives Why hardening infrastructure is important? Hardening Operating Systems, Network and Applications.
Cyber Patriot Training

Cyber Patriot Training
Brad Baker CS526 May 7 th, 2008 5/7/2008 1. 1. Project goals 2. Test Environment 3. The Problem 4. Some Solutions 5. ModSecurity Overview 6. ModSecurity.

Brad Baker CS526 May 7 th, /7/ Project goals 2. Test Environment 3. The Problem 4. Some Solutions 5. ModSecurity Overview 6. ModSecurity.

Similar presentations

Ads by Google