1
play

1 Nex s t s Previou #TALK Presentation Discussion 45min - PDF document

Feb 17, 2024 •268 likes •557 views

Previou 1 Nex s t s Previou #TALK Presentation Discussion 45min 15min 2 Subject: CTF 2019-04-11 t Nex What is CTF? An introduction to competitive hacking Carl Svensson @ 0xFF April 2019 Agenda - What are we going to talk about?

  1. Previou 1 Nex s t

  2. s Previou #TALK Presentation Discussion 45min 15min 2 Subject: CTF 2019-04-11 t Nex

  3. What is CTF? An introduction to competitive hacking Carl Svensson @ 0xFF April 2019

  4. Agenda - What are we going to talk about? ● Biography ● Capture the Flag - Basics ○ Categories ● Jeopardy style ● Attack/Defense ● Demo - Examples ● Resources

  5. Biography - Who am I? What am I doing here? ● Carl Svensson, 27 ● MSc in Computer Science, KTH ● Previously: Consultant @ Bitsec ● Currently: Head of Security @ KRY/LIVI ● CTF team: HackingForSoju (world #12) ● Contact: ○ E-mail: calle.svensson@zeta-two.com ○ Twitter: @zetatwo ○ Website: https://zeta-two.com ○ YouTube: https://youtube.com/ZetaTwo

  6. Capture the Flag - Competitive hacking ● Security challenges ● Categories ○ Pwn ○ RE ○ Web ○ Crypto ○ Forensics ○ Misc ● Individual or in teams ● Online or offline ● Time constrained (CTF) or long running (Wargame)

  7. Category: Pwnable ● Exploit programs ● Set-up ○ Remote ○ Local ● Contexts ○ Machine code: x86, ARM, MIPS, etc. ○ Userland vs Kernel ○ Higher level: Java, Python, etc. ● Tools ○ IDA, Binja, Ghidra, radare2 ○ GDB, pwndbg, windbg, qemu ○ Python, lots and lots of Python

  8. Category: Reverse engineering ● Understand ○ Software ○ Hardware ○ Protocols ● Setups ○ Crackme ○ Packers ○ Encryption ● Tools ○ IDA, Binja, Ghidra, radare2 ○ GDB, pwndbg, windbg, qemu ○ Python, lots and lots of Python

  9. Category: Web ● Server side ○ PHP, Python, Java ○ Injections - SQL, CMD, Template ○ Deserialization, XXE ○ SSRF ● Client side ○ XSS ○ CSRF ● Context ○ Flag in file, DB, other ● Tools ○ Burp Suite, sqlmap ○ Python, lots and lots of Python

  10. Category: Cryptography ● Break encryption ○ Recover key ○ Recover message ○ Forge signature ● Scenarios ○ Custom schemes ○ Academic attacks ● Tools ○ Academic papers, blogs ○ SageMath ○ Python, lots and lots of Python

  11. Category: Forensics ● Recover lost/hidden data ○ File systems ○ Network traffic ○ File formats ● Tools ○ Foremost, Sleuth Kit ○ Wireshark ○ binwalk, 010 Editor

  12. Category: Miscellaneous ● DSP ● Machine learning ● Smart contracts ● Programming

  13. Category: Zajebiste ● Polish: “Awesome” ● CTF: 0-day ● Previously unknown ● Typically difficult

  14. Jeopardy Style - The standard format ● Pick a challenge Web RE Pwn Misc Crypto Forensics ● Solve it ● Submit flag ● Get score ● Repeat ● Most points win

  15. Attack/Defense - The intense classic ● One setup per team ● Find vulnerabilities ○ Patch your own ○ Exploit the others ● Keep services running ○ Checker ● Deflect attacks ● Tools, tools, tools ● Movie like

  16. Other formats - Quests/scenarios ● Simulated attacks ● Whole networks ● Not challenge based ● Emulating “real world” ● Very rare

  17. So what’s the purpose of all this? ● Educational ○ Improve within your area ○ Discovers completely new areas ● Competitive ● Fun ● Social

  18. Example 1 - PicoCTF 2018 Irish Name Repo

  19. Example 2 - Säkerhets-SM - BiffCrypt

  20. Example 3 - Midnight Sun CTF HFS-VM2

  21. Convinced? Great! Where do you start? ● PicoCTF.com - Beginner friendly ● CTFTime.org - Calendar and rankings ● OWASP Juice shop - Web CTF in a box ● pwnable.kr - Pwnables ● OverTheWire.org - Mix with focus on pwn

  22. Thanks for listening - Now go hack!

  24. CTF introduction workshop How to play CTF Carl Svensson @ 0xFF April 2019

  25. Biography - Who am I? What am I doing here? ● Carl Svensson, 27 ● MSc in Computer Science, KTH ● Previously: Consultant @ Bitsec ● Currently: Head of Security @ KRY/LIVI ● CTF team: HackingForSoju (world #12) ● Contact: ○ E-mail: calle.svensson@zeta-two.com ○ Twitter: @zetatwo ○ Website: https://zeta-two.com ○ YouTube: https://youtube.com/ZetaTwo

  26. We are going to play an entry level CTF 1. Go to https://2018game.picoctf.com/ 2. Register an account and login 3. Go to the problems page

  27. Let’s start with some easy challenges ● Forensics ○ “admin panel” ● Cryptography ○ “hertz” ● Web ○ “Irish Name Repo” ● Binary exploitation ○ “buffer-overflow-0” ● Reversing ○ assembly-0

  28. Now for something more difficult ● Forensics ○ “now you don’t” ● Cryptography ○ “rsa-madlibs” ● Web ○ “Buttons” ● Binary exploitation ○ “leak-me” ○ “shellcode” ● Reversing ○ be-quick-or-be-dead-1

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

NiCT/ATR in NTCIR-7 CCLQA Track Youzheng WU, Wenliang CHEN, Hideki KASHIOKA NiCT/ATR, Japan

NiCT/ATR in NTCIR-7 CCLQA Track Youzheng WU, Wenliang CHEN, Hideki KASHIOKA NiCT/ATR, Japan

NiCT/ATR in NTCIR-7 CCLQA Track Youzheng WU, Wenliang CHEN, Hideki KASHIOKA NiCT/ATR, Japan NTCIR CCLQA Complex Cross-Lingual Question Answering. List/Event questions List major events in formation of European Union. R l i Relationship

483 views • 23 slides
October 16 - Quest for Civic Pride in a Peoples Park San Francisco Chronicle - July 20, 1895

October 16 - Quest for Civic Pride in a Peoples Park San Francisco Chronicle - July 20, 1895

t o r y o f A H i s A History of Golden Gate Park Fromm Institute - Fall 2019 - John Freeman October 16 - Quest for Civic Pride in a Peoples Park San Francisco Chronicle - July 20, 1895 Fateful End to the Bonets Electric Tower

401 views • 14 slides
COMPLEX ORGANIZATIONS Prepared for: UW Foster School of Business Executive MBA Program October

COMPLEX ORGANIZATIONS Prepared for: UW Foster School of Business Executive MBA Program October

LEADERSHIP OF COMPLEX ORGANIZATIONS Prepared for: UW Foster School of Business Executive MBA Program October 11, 2017 BARRY R. McCAFFREY GENERAL, USA (RETIRED) 3213 West Wheeler St, Suite 701 GEN Barry R. McCaffrey, USA (Ret.) Seattle, WA

248 views • 10 slides
Welcome Lakehurst Small Business Roundtable (LKE-SBR) July General Meeting Topic: Winning

Welcome Lakehurst Small Business Roundtable (LKE-SBR) July General Meeting Topic: Winning

Welcome Lakehurst Small Business Roundtable (LKE-SBR) July General Meeting Topic: Winning Proposals Guest Speakers from: NAWCAD Lakehurst Program Management Department NAWCAD Lakehurst Contracts Department JMR Program Management LLC Account

132 views • 12 slides
Mtrologie et expertise de la performance sportive (slides in English) Conference Paper May

Mtrologie et expertise de la performance sportive (slides in English) Conference Paper May

See discussions, stats, and author profiles for this publication at: https://www.researchgate.net/publication/233864099 Mtrologie et expertise de la performance sportive (slides in English) Conference Paper May 2009 CITATIONS READS 0 86 2

630 views • 30 slides
Motion capture A technology of recording the movement of real things -- usually humans

Motion capture A technology of recording the movement of real things -- usually humans

What is motion capture? Motion capture A technology of recording the movement of real things -- usually humans Applications What is captured? Computer animation Biomechanics Robotics Objects Humans Cinema Video games Anthropology

1.48k views • 8 slides
Showcasing Distinguished Texas A&M researchers in Material Science Faculty Research Areas

Showcasing Distinguished Texas A&M researchers in Material Science Faculty Research Areas

Showcasing Distinguished Texas A&M researchers in Material Science Faculty Research Areas Computational Materials Science Biomaterials Functional Materials (Electronic, Magnetic, Multifunctional, Optical) Nanomaterials

584 views • 17 slides
Data Visualization in Python 1 / 16 Data Visualization Data graphics visually display measured

Data Visualization in Python 1 / 16 Data Visualization Data graphics visually display measured

Data Visualization in Python 1 / 16 Data Visualization Data graphics visually display measured quantities by means of the combined use of points, lines, a coordinate system, numbers, words, shading, and color. Edward Tufte, The Visual

405 views • 16 slides
Processing Independent Component Analysis Class 8. 23 Sep 2013 Instructor: Bhiksha Raj 23 Sep

Processing Independent Component Analysis Class 8. 23 Sep 2013 Instructor: Bhiksha Raj 23 Sep

Machine Learning for Signal Processing Independent Component Analysis Class 8. 23 Sep 2013 Instructor: Bhiksha Raj 23 Sep 2013 11755/18797 1 Correlation vs. Causation The consumption of burgers has gone up steadily in the past decade

1.11k views • 82 slides
Classes: From Use to Implementation Weve used several classes, a class is a collection of

Classes: From Use to Implementation Weve used several classes, a class is a collection of

Classes: From Use to Implementation Weve used several classes, a class is a collection of objects sharing similar characteristics A class is a type in C++, like int , bool , double A class encapsulates state and behavior A class

733 views • 32 slides
1: Getting Personal Economic and wage stagnation Within the home Rapid rise in divorce

1: Getting Personal Economic and wage stagnation Within the home Rapid rise in divorce

Making the Computer Personal: Theme of Paper Reconstructing Domesticity for the Information Age How did people decide they needed a computer in their home? Cultural work of reconstruction Looked at another way What kind of a

261 views • 9 slides
Making the Computer Personal: Making the Computer Personal: Reconstructing Domesticity for the

Making the Computer Personal: Making the Computer Personal: Reconstructing Domesticity for the

Making the Computer Personal: Making the Computer Personal: Reconstructing Domesticity for the Reconstructing Domesticity for the Information Age Information Age Thomas Haigh Thomas Haigh University of Wisconsin- -Milwaukee Milwaukee

784 views • 45 slides
MOOCs Betters Education and Teaching- t he Case of Shanghai Jiao Tong University and its CnMOOC Dr

MOOCs Betters Education and Teaching- t he Case of Shanghai Jiao Tong University and its CnMOOC Dr

MOOCs Betters Education and Teaching- t he Case of Shanghai Jiao Tong University and its CnMOOC Dr Zhibin Jiang Dean of MOOCs Institute and Chair Professor and Head of IEM& Department of SJTU Outline MOOCs development in China 1 Massive and

550 views • 52 slides
Experiments in Matlab: Iteration John Burkardt burkardt@vt.edu Advanced Research Computing

Experiments in Matlab: Iteration John Burkardt burkardt@vt.edu Advanced Research Computing

Experiments in Matlab: Iteration John Burkardt burkardt@vt.edu Advanced Research Computing Virginia Tech .......... 10:00-11:00, 01 March 2017 .......... Slides available at: https://secure.hosting.vt.edu/www.arc.vt.edu/class note/ John

837 views • 50 slides
Occupational segregation, poverty and race Carlos Gradn Background papers: Race and Income

Occupational segregation, poverty and race Carlos Gradn Background papers: Race and Income

Engagement on on Str Strategie ies to to Overcome In Inequali lity in in So South Afr frica 1-2 Ju June e 2017, Pret retoria, Sou outh Afr fric ica SESSION 5: PROMOTING SOCIAL MOBILITY Occupational segregation, poverty and race

534 views • 36 slides
West Midlands Local Industrial Strategy Overall Economy Evidence September 2018 See the WMCA

West Midlands Local Industrial Strategy Overall Economy Evidence September 2018 See the WMCA

West Midlands Local Industrial Strategy Overall Economy Evidence September 2018 See the WMCA State of the Region 2018 report for more detail: https://www.wmca.org.uk/media/2435/state-of-the-region-2018.pdf DELIVERING INCLUSIVE GROWTH Table of

517 views • 50 slides
Rebuilding the Economy System Change, COVID, Nonprofits & the Economy May 21, 2020 Image

Rebuilding the Economy System Change, COVID, Nonprofits & the Economy May 21, 2020 Image

Rebuilding the Economy System Change, COVID, Nonprofits & the Economy May 21, 2020 Image courtesy of artist Heather Goodwind Steve Dubb, Nonprofit Quarterly, Boston, MA Elizabeth Castillo , Arizona State University, Phoenix, AZ Will Cordery ,

349 views • 8 slides
Di Discussion on: Wealth, Ra Race, a and C Con onsumption on S Smoothing of Typ ypical

Di Discussion on: Wealth, Ra Race, a and C Con onsumption on S Smoothing of Typ ypical

Di Discussion on: Wealth, Ra Race, a and C Con onsumption on S Smoothing of Typ ypical Inco come Sh Shocks Ganong Jones Noel Farrell Greig Wheat Con onsumption on, C Credit, and the Missing You oung Cooper Gorbachev Luengo-Prado

427 views • 21 slides
BUILDING THE CARING ECONOMY: Workforce Investm ents to Expand Access to Affordable, High Quality

BUILDING THE CARING ECONOMY: Workforce Investm ents to Expand Access to Affordable, High Quality

BUILDING THE CARING ECONOMY: Workforce Investm ents to Expand Access to Affordable, High Quality Early and Long-Term Care S E L F D I R E C T I O N C O N F E R E N C E B A L T I M O R E , M A R Y L A N D M A Y 8 , 2 0 17 N I N A K . D

461 views • 20 slides
WELCOMING+ SERIES: WELCOMING + ECONOMIC DEVELOPMENT October 7, 2016 The webinar will begin

WELCOMING+ SERIES: WELCOMING + ECONOMIC DEVELOPMENT October 7, 2016 The webinar will begin

WELCOMING+ SERIES: WELCOMING + ECONOMIC DEVELOPMENT October 7, 2016 The webinar will begin shortly. If you experience a problem signing on, please contact the ReadyTalk Technical Support Line at 800.843.9166 for direct assistance.

1.01k views • 65 slides
Spectral properties of Google matrix Klaus Frahm Quantware MIPS Center Universit e Paul

Spectral properties of Google matrix Klaus Frahm Quantware MIPS Center Universit e Paul

Wikipedia Physical Review 1 1 0.5 0.5 0 0 -0.5 -0.5 -1 -1 -1 -0.5 0 0.5 1 -1 -0.5 0 0.5 1 Spectral properties of Google matrix Klaus Frahm Quantware MIPS Center Universit e Paul Sabatier Laboratoire de Physique

568 views • 36 slides
Commissioning of the ATLAS Experiment J rgen Thomas (University of Birmingham, UK) for the

Commissioning of the ATLAS Experiment J rgen Thomas (University of Birmingham, UK) for the

Commissioning of the ATLAS Experiment J rgen Thomas (University of Birmingham, UK) for the ATLAS Collaboration HCP2008: 19th Hadron Collider Physics Symposium 2008 Galena, IL, USA Commissioning of ATLAS Juergen Thomas, HCP 2008 Galena, 30

554 views • 41 slides
Impact of Lyman Alpha Pressure on Metal-Poor Dwarf Galaxies Taysun Kimm (Cambridge Yonsei

Impact of Lyman Alpha Pressure on Metal-Poor Dwarf Galaxies Taysun Kimm (Cambridge Yonsei

Kimm et al. (2018, MNRAS, 475, 4617) Impact of Lyman Alpha Pressure on Metal-Poor Dwarf Galaxies Taysun Kimm (Cambridge Yonsei University) in collaboration with Jeremy Blaizot (Lyon) P LyA Martin Haehnelt (Cambridge) Joki Rosdahl

966 views • 16 slides
Analytical and numerical methods for pricing financial derivatives Lectures on Computational

Analytical and numerical methods for pricing financial derivatives Lectures on Computational

Analytical and numerical methods for pricing financial derivatives Lectures on Computational Finance D. Sev covi c Comenius University, Bratislava Lectures at Faculty of Mathematics, Physics and Informatics Lectures by D. Sev

2.59k views • 181 slides

More recommend