http://fixme.ch/w/index.php?action=history&feed=atom&title=Fixme.ch%3AOldWiki%2FRwthCTF_2011Fixme.ch:OldWiki/RwthCTF 2011 - Revision history2026-04-17T02:16:14ZRevision history for this page on the wikiMediaWiki 1.25.1http://fixme.ch/w/index.php?title=Fixme.ch:OldWiki/RwthCTF_2011&diff=14055&oldid=prevRorist: 1 revision imported2019-03-06T20:36:44Z<p>1 revision imported</p>
<table class='diff diff-contentalign-left'>
<tr style='vertical-align: top;'>
<td colspan='1' style="background-color: white; color:black; text-align: center;">← Older revision</td>
<td colspan='1' style="background-color: white; color:black; text-align: center;">Revision as of 20:36, 6 March 2019</td>
</tr><tr><td colspan='2' style='text-align: center;'><div class="mw-diff-empty">(No difference)</div>
</td></tr></table>Roristhttp://fixme.ch/w/index.php?title=Fixme.ch:OldWiki/RwthCTF_2011&diff=14054&oldid=prev62.220.137.2 at 12:15, 13 October 20112011-10-13T12:15:05Z<p></p>
<p><b>New page</b></p><div>= Quick links =<br />
<br />
* [https://grid.nimag.net/uri/URI%3ADIR2-RO%3Apn4ojukzl5wbr5qw7fumxzrlie%3Aobmcas6ttnjysvyahijofo2cumdsripjhkmqfczjxek2mvd3kghq/ Fichiers (network dumps, vm images, etc.)]<br />
* [http://10.11.0.1/#scoreboard Scoreboard]<br />
* [http://10.11.20.51/zabbix/index.php Monitoring] admin/zabbix<br />
* [[Game]]<br />
* [[Challenges]]<br />
* Secret: shohwuinikeiquop<br />
* Flag regex: <pre>^[a-zA-Z0-9]{40}$</pre><br />
<br />
= SSH Access =<br />
<br />
Public key:<br />
<br />
<pre><br />
ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQC5twrX47WdsuPX8BohNmuInE3Vjbd9XQ05gLMCjDaFaZDgt7B4BpQNfyGlvlCq3upPOwmpvFkH9+i7jSb3NCngN358OORWAuKm3rwLh0r1N/zL/uhz3Dzlpv1IFkm3Iev+J1eV1w4wfKhxvw2RyqL6t4csfowYlntpif5CCQ6wZqzJd+xFeJcTDlUHi9eVD8ew8qh4Wa2fZ1J4AdoKiYsVxHgVu2CzHGVKYSr217WuAiEg+P2guT/E99ZB4nRTWv8TNf4925BzsImvswNTnQjgh7h+q+zru4DncZn5EKlRJP/npTBcoLD274rLpehDdiBBKsIGNrwqYxWIi982ilPD FIXME@rwthCTF2011<br />
</pre><br />
<br />
'''Ask info@fixme.ch for the private key!'''<br />
<br />
= Shared Git Repository =<br />
<br />
<pre><br />
git clone fixme@guest1.fixme.ch:/home/fixme/rwthctf2011/repo/ rwthCTF-2011<br />
</pre><br />
<br />
Fancy tools, mass exploitation!<br />
<br />
<pre><br />
$ scoreboard.py targets | foreach.py attack1.py | upload-flags.py<br />
Hello Team FIXME! You may now submit flags, one per line.<br />
66c69cb0354079a1ad26e405851bc13c70964d51<br />
Unknown flag.<br />
5b713c95c31555bb76f8e4795e8a726c289918ce<br />
Unknown flag.<br />
[...]<br />
</pre><br />
<br />
= SMB Share =<br />
<br />
<pre><br />
smb://fixme@guest1.fixme.ch/media/rwthCTF-2011<br />
</pre><br />
= First Contact =<br />
<br />
'''Email'''<br />
<br />
<div style="background-color: #eee; padding:3px; border: 1px dotted black"><br />
Hi rwthCTF Teams,<br />
<br />
with this message, the first ever rwthCTF is officially in the "team-preparation" phase. Attached to this mail you can find the first instructional README.txt file, a rough diagram of our network setup and a second document (codewars.txt) that serves as a small appetizer for the upcoming challenges in the CTF. The appetizer (codewars documentation) only describes a small part of the CTF event - we will have lots of programming languages and skill areas covered. Also the scripts mentioned in the document will only be made available when the competition starts.<br />
<br />
Additionally we prepared a "test-vulnbox" that can be downloaded from the link below. This is _NOT_ the final vulnbox image. Please refer to the README for further pointers. You will need this once VPN credentials are released - probably on next Monday (again see README).<br />
<br />
This E-Mail is signed with a PGP key and sent in PGP/MIME. Please download the corresponding public key from http://ctf.itsec.rwth-aachen.de/ and verify the signature. All further mail communication from rwthCTF organizers will be signed with this key as well.<br />
<br />
Cheers,<br />
<br />
rwthCTF Orga<br />
<br />
Test-Vulnbox: xxxxxxx<br />
<br />
GPG-symmetric-passphrase: xxxxxxx<br />
</div><br />
<br />
<br />
'''Attachments: ''' [[File:README.txt]] [[File:codewars.txt]]<br />
<br />
[[File:network.png|450px]]<br />
<br />
= VPN Credentials =<br />
<br />
'''Email'''<br />
<br />
<div style="background-color: #eee; padding:3px; border: 1px dotted black"><br />
Hi rwthCTF Teams,<br />
<br />
with this mail you get your VPN credentials. This includes the openvpn config<br />
file (client.conf), your team certificate (teamX.cert) and your private key<br />
(teamX.key). Also needed by OpenVPN and attached to this mail are the CA<br />
certificate "rwthctfca.pem" and a TLS shared key "ta.key". These credentials can<br />
only be used from _ONE_ machine at a time.<br />
<br />
The X in the files you receive is your team ID. This also specifies your IP<br />
subnet 10.11.X.0/24! Please refer to the earlier README.txt for further details.<br />
<br />
Please connect to the VPN, set your IP addresses and bring up your routing. Also<br />
start the Test Vulnbox and set it to 10.11.X.2.<br />
<br />
You can view a preliminary scoreboard at http://10.11.0.1/ During the CTF we<br />
allow flag submission at 10.11.0.1 port 1/tcp. This should already be online for<br />
testing purposes, but you can not score any points before the CTF starts on<br />
September 30th. The rest of the network is pretty locked down at the moment -<br />
you may ICMP, though.<br />
<br />
Any further questions should be asked via E-Mail or the #rwthctf IRC channel on<br />
freenode.<br />
<br />
One last thing: each team was assigned a unique secret passphrase (secret.txt)<br />
that is needed for certain critical actions during the competition. Keep it<br />
safe!<br />
<br />
Cheers,<br />
-rwthCTF Orga<br />
</div><br />
<br />
= Thanks =<br />
<div style="background-color: #eee; padding:3px; border: 1px dotted black"><br />
Hi rwthCTF Teams,<br />
<br />
thank you for participating in the rwthCTF 2011 competition. Hopefully we will meet again at another event or next year at rwthCTF.<br />
<br />
We updated the website with some pictures taken during the CTF and some results. Give it a visit at http://ctf.itsec.rwth-aachen.de/<br />
<br />
Thanks again,<br />
-rwthCTF Orga<br />
</div><br />
<br />
= Network =<br />
<br />
* [[File:network-setup.pdf]]<br />
* labo.ctrlaltdel.ch: Virtual machine host<br />
* rwthctf.fixme.ch: OpenVPN router<br />
<br />
'''10.11.20.0/25 DMZ'''<br />
* 10.11.20.1 OpenVPN router<br />
* 10.11.20.2 Vulnbox<br />
* 10.11.20.3 Test vulnbox (dès le début de la compétition)<br />
* 10.11.20.50 ructfe2010 vulnbox (testing purpose)<br />
* 10.11.20.51 Monitoring<br />
'''10.11.20.128/25 VPN clients'''<br />
* 10.11.20.129 OpenVPN router<br />
<br />
Une capture réseau (tcpdump) tourne en permanence et sauve le trafic à destination de la vulnbox depuis le réseau du concours. Un nouveau fichier est créé chaque heure (attention aux sessions TCP coupées).<br />
<br />
=== Tcpdump ===<br />
<br />
<pre><br />
ssh root@rwthctf.fixme.ch<br />
root@openvpn:~# ls /srv/network-dumps/<br />
</pre><br />
<br />
=== Snort ===<br />
<br />
How to update the Snort IPS rules?<br />
<br />
<pre><br />
ssh root@rwthctf.fixme.ch<br />
root@openvpn:~# vi /usr/local/etc/snort/rules/local.rules<br />
root@openvpn:~# sv restart snort<br />
</pre><br />
<br />
== Orga Network ==<br />
<br />
* 10.11.0.1 Scoreboard + Flag submission<br />
* 10.11.199.1 Vidéo surveillance?<br />
<br />
== Config OpenVPN ==<br />
<br />
* Créer un compte utilisateur après vous être connecté sur root@rwthctf.fixme.ch<br />
* Créer les deux fichiers suivants<br />
* ''$ openvpn openvpn.conf'' et entrer votre nom d'utilisateur/mot de passe<br />
<br />
'''openvpn.conf'''<br />
<br />
<pre><br />
client<br />
remote rwthctf.fixme.ch<br />
ca ./ca.pem<br />
auth-user-pass<br />
dev tun<br />
proto tcp<br />
nobind<br />
persist-key<br />
persist-tun<br />
comp-lzo<br />
</pre><br />
<br />
'''ca.pem'''<br />
<br />
<pre><br />
-----BEGIN CERTIFICATE-----<br />
MIIFqTCCA5GgAwIBAgIJAOSjXeaKBcRpMA0GCSqGSIb3DQEBBQUAMB4xCzAJBgNV<br />
BAYTAkNIMQ8wDQYDVQQDFAZNb25fQ0EwHhcNMTEwOTI0MTY1OTQ2WhcNMjEwOTIx<br />
MTY1OTQ2WjAeMQswCQYDVQQGEwJDSDEPMA0GA1UEAxQGTW9uX0NBMIICIjANBgkq<br />
hkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAqvKdC+tqLLB1Yfx8gcP2enLtfLdmVHHm<br />
vnRBGQ9OpgBNZ1F5YHej7Z5y8Hnf3FuSzpYWJXprTxYFW6yK6G4FVxMF8WsyGPHz<br />
CvYoBBUAAXt5D9fh5LQAa08cCtIzIGXw6NsVnfEwteqkzXa9eT8y8er81Da8FkLQ<br />
fbnpTAwa03/eUds8JXLJEJ4+b2vV2Lh8+h1++3snuKpbGC1yEcUah0TT2SSI/a5Z<br />
aQTOQ7A9oQ7+HbicFTj/p+/F+GwtnyJ8rNUJ976BGpdyna+IYOgW9BRFVWXjDkaE<br />
iV3H7ms69WMNj7KQiavHqwkhxFsFLKSW5uUSKs5foRBosU3V5eKIS36lgMpX+jiu<br />
9lAZfDebTlR1GLyuu6R9h4P1XJCN+ARRraza+fXgvOpNs5nK2H5eIdn2pc+I0EC0<br />
hRgl0FkNSgUHg0UBLL6rcemHWMe16RbERJm3rWQZrxleT0DVPRq+CPcYdcfPTb91<br />
TM7a/0z1d1uIJ7j/b1P81pLzBi8iYo0mUYV4b/thsHiHArmD2oGlUMVX/XIxfyvY<br />
hxKtJ5TjouVj/4dSToUInYIiKoRYETlQ98glHIKVcSe3wmfoxBmDT9/DU/n1DRba<br />
+5R7l4O1XNG7dWswgQeo71iDdmm5NfGHO2dNaMVjBE6sRKOvjFTFajBiCnThaWjI<br />
MCHqBnU7fmcCAwEAAaOB6TCB5jAdBgNVHQ4EFgQU1LcU8uQlperS2ANo8aW+CiMG<br />
rlYwTgYDVR0jBEcwRYAU1LcU8uQlperS2ANo8aW+CiMGrlahIqQgMB4xCzAJBgNV<br />
BAYTAkNIMQ8wDQYDVQQDFAZNb25fQ0GCCQDko13migXEaTAPBgNVHRMBAf8EBTAD<br />
AQH/MBEGCWCGSAGG+EIBAQQEAwIBBjAJBgNVHRIEAjAAMCsGCWCGSAGG+EIBDQQe<br />
FhxUaW55Q0EgR2VuZXJhdGVkIENlcnRpZmljYXRlMAkGA1UdEQQCMAAwDgYDVR0P<br />
AQH/BAQDAgEGMA0GCSqGSIb3DQEBBQUAA4ICAQBpVrrhHjcWxoHZ/3WJ61r5WvUC<br />
H3+op0yzZkG/z498Gv4oUSErD5WfhG2K9+lV8VhRx2JSXCKv1SskHlJuPKDnWTdZ<br />
bAUERSwZT/LvLYwRfH+8pWxSBMQRvvHEIzkrrRBNDQl4291/901o7nu41UFl6nBw<br />
819+F+lWB+fRFm0YGIR4zzhvx3bFMGWCM3475l4WyRruYbe+soHs+g4+SUFYTK59<br />
4PSjVrNvR8wMKQJByez0TaffGAxjeXde74kWPBPmhwqjq78fZ8wYAjVdn2ae/xjA<br />
wIf+UvvntOkLwOiQWeCy2LMX3JbLvIUeirqtBeTDfgX80kcr6NHu6tDtiwY+V1/O<br />
149pewBHebrMnJl90CayqDyF34RfZI/t2Z50LdLwPw2nTFgl1IO0Cou9qmfKW4gB<br />
RNHtfGveYaR4wL6pF0ruiKGlwnh6cHFtS4a32G3HrQ7WKjk9FVGiDJvo93TBfUMl<br />
mDjIqpq3wCCJynxGyVmQVWH65/3gtnduCDfKrmbrL2DYUJeqBWW3cyPlSxEO/ei7<br />
3Jx3qM5Jzngh9YRSUYBh5+3XB+4smsjRqpNtC3RdD074qxKhM5Acb0YcGmLJfgw4<br />
3/d2JXQFvPJv8bKZ/WsK5VUeTGgqvi/8j2BqZjf6TMXKQRVmJ8tvvW/SBSqPZlCJ<br />
kAslCDHslFeD6QYwMA==<br />
-----END CERTIFICATE-----<br />
</pre></div>62.220.137.2