Revision as of 22:18, 9 December 2013

9 December, 2013 - 8 PM

Capture The Flag evening - Part I

We'll start at 8 PM. Please bring along a laptop with you!!!

See the page for the Ctf-evenings

Link to the Tech Inc Challenge Website Scoreboard: TechInc-CTF-Scoreboard

7 people present: some programmers, some sysadmins, some security folks
We probably won't start out being very good -- BUT after the CTF events, we should analyse them, so we can improve.
We started with general discussion - see the Ctf-evenings CTF evening page for the notes!
After that, we got started with playing the Bandit challenge at

@@ Line 21: / Line 21: @@
 * 7 people present: some programmers, some sysadmins, some security folks
 * We probably won't start out being very good -- BUT after the CTF events, we should analyse them, so we can improve.
+* We started with general discussion - see the [[Ctf-evenings CTF evening page]] for the notes!
-== Types of evenings ==
+* After that, we got started with playing the Bandit challenge at
-I envision the following kinds of CTF training evenings
-* 1 - '''Learning evenings''' - network analysis/forensics (Wireshark), filesystem forensics, reversing/Pwnables(Ollydbg, etc..), code deobfuscation, pentesting (Nessus/Metasploit/stack overflows), cryptology, web security (XSS, SQL injection, etc..), stenography, Commandline kung-fu, recon/trivia/etc..
-** Example: I've got a whole slew of Wireshark training videos - we can watch them together!
-* 2 - '''Challenge website evenings'''
-** I setup a scoreboard, so we can keep track of who's done which challenges
-* 3 - '''Actual CTF events'''
-** There's a bunch of them on CTF Time - we should participate!
-** We can probably also join VUBAR when they are playing here!  (Etienne said that this would probably be okay)
-** We can also participate in own events, at other times..
-== Other things that we can do ==
-* We could setup a vulnerable server (Damn Vulnerable Linux, etc..) and attack it