GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → OJ → bsides-2017-ctf-docker

OJ / bsides-2017-ctf-docker

Licence: other
BSidesCBR CTF docker compose files

Labels

docker-composectf

Projects that are alternatives of or similar to bsides-2017-ctf-docker

heaptrace
helps visualize heap operations for pwn and debugging
Stars: ✭ 252 (+276.12%)
Mutual labels:  ctf
CTF
🚩 A cheatsheet of useful tools and shell scripts that come in handy in capture the flag contests.
Stars: ✭ 31 (-53.73%)
Mutual labels:  ctf
ctfdump
ctf solutions
Stars: ✭ 64 (-4.48%)
Mutual labels:  ctf
EzpzShell
Collection Of Reverse Shell that can easily generate using Python3
Stars: ✭ 46 (-31.34%)
Mutual labels:  ctf
AHE17
Android Hacking Event 2017 Write-up
Stars: ✭ 40 (-40.3%)
Mutual labels:  ctf
dontgo403
Tool to bypass 40X response codes.
Stars: ✭ 457 (+582.09%)
Mutual labels:  ctf
penelope
Penelope Shell Handler
Stars: ✭ 291 (+334.33%)
Mutual labels:  ctf
nadbg
👀Dynamic memory watcher/tracer/analyzer for CTF pwn
Stars: ✭ 51 (-23.88%)
Mutual labels:  ctf
solveme
SolveMe - Jeopardy CTF Platform
Stars: ✭ 51 (-23.88%)
Mutual labels:  ctf
Resources-for-Application-Security
Some good resources for getting started with application security
Stars: ✭ 97 (+44.78%)
Mutual labels:  ctf
CTF-writeup
Write-ups for CTF challenges.
Stars: ✭ 15 (-77.61%)
Mutual labels:  ctf
kernelpwn
kernel-pwn and writeup collection
Stars: ✭ 348 (+419.4%)
Mutual labels:  ctf
hackergame2021-writeups
中国科学技术大学第八届信息安全大赛的官方与非官方题解
Stars: ✭ 444 (+562.69%)
Mutual labels:  ctf
machinescli
This tool provides commandline access for https://www.hackthebox.eu, https://tryhackme.com/ and https://www.vulnhub.com/ machines.
Stars: ✭ 34 (-49.25%)
Mutual labels:  ctf
Freed0m
个人学习笔记,多少有借鉴。请谅解。博客主页:
Stars: ✭ 60 (-10.45%)
Mutual labels:  ctf
ctf-eth-env
Moved to https://github.com/chainflag/eth-challenge-base/tree/main/geth
Stars: ✭ 30 (-55.22%)
Mutual labels:  ctf
Scuffed Low Level Stash
Stash for Binary Exploitation and Reverse Engineering Resources
Stars: ✭ 83 (+23.88%)
Mutual labels:  ctf
CJ2018-Final-CTF
Cyber Jawara 2018 Final - Attack & Defense CTF services environments based on Docker.
Stars: ✭ 58 (-13.43%)
Mutual labels:  ctf
ctf
ctf wp 2019-2020
Stars: ✭ 23 (-65.67%)
Mutual labels:  ctf
2021
WeCTF 2021 Source Code & Organizer's Writeup
Stars: ✭ 28 (-58.21%)
Mutual labels:  ctf
View All Similar Projects ➔

BSidesCBR 2017 CTF docker compose files

This repo contains all the docker-compose files that spin up the BSidesCBR 2017 CTF challenges. Each of the challenges listed here was available as part of the CTF, though unfortunately some challenges weren't able to be dockerised and released.

Don't cheat!

See the FAQ. Don't do yourself out of the challenge!

Running challenges

HTTPS stuff

Each of the web challenges has a certificate for web.shell.dance that was generated via Lets Encrypt. Expect to see SSL errors in your browser, unless you decide to add an entry to your hosts file that points web.shell.dance at 127.0.0.1 (this is recommended). If you don't, the rest of the instructions won't make sense! Skipping this step means using localhost instead of web.shell.dance wherever you see it.

Should I be pushing images with the SSL certs in them? Probably not, but they'll expire soon anyway.

Docker container execution

Each subfolder maps to a challenge. In order to run that particular challenge, simply:

  1. cd to the folder that contains the challenge you wish to attempt.
  2. run docker-compose up
  3. Read the README.md inside the folder for details on where to find the challenge.

At this time, we don't have the scoreboard available, but hopefully that won't stop you from owning it!

Make sure that you give the containers enough time to spin up. The first time you run them, they have to be downloaded, so give it a while. Once they're down, some of the challenges (web in particular) take a bit of time to get running. So if they don't work the first time, just wait a bit and try connecting again.

If you have issues running the containers a second time after you've closed them off, run docker-compose rm before trying again.

FAQ

Wait.. can't I just attach to the running container and cheat?

Yes, you can. Don't do that. It's lame, it's against the spirit of this release, and you won't learn as much. Do it the proper way! You'll hopefully feel a bit of pain while figuring things out, but you'll learn something in the process.

Can I produce a write-up for a challenge, or live-stream the process of completing it?

Yes, please do. Let us know when you publish/stream by hitting us up on Twitter.

Can I reuse your challenge for my own CTF?

You'll have to contact us to discuss this as we'd like to know the purpose of the CTF.

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].