CTF Attack/Defense Ivan Bütler - OWASP · 2020-01-17 · Proxy, E-Mail, Apache, WordPress, ......
Transcript of CTF Attack/Defense Ivan Bütler - OWASP · 2020-01-17 · Proxy, E-Mail, Apache, WordPress, ......
![Page 1: CTF Attack/Defense Ivan Bütler - OWASP · 2020-01-17 · Proxy, E-Mail, Apache, WordPress, ... SCORING BOT TIMELINE ATTACK/DEFENSE team2 is requesting an new gold nugget the previous](https://reader034.fdocuments.in/reader034/viewer/2022050400/5f7df439b84a72049b17ec33/html5/thumbnails/1.jpg)
CTF Attack/DefenseIvan Bütler
https://www.owasp.org/index.php/OWASP_University_Challenge
1
![Page 2: CTF Attack/Defense Ivan Bütler - OWASP · 2020-01-17 · Proxy, E-Mail, Apache, WordPress, ... SCORING BOT TIMELINE ATTACK/DEFENSE team2 is requesting an new gold nugget the previous](https://reader034.fdocuments.in/reader034/viewer/2022050400/5f7df439b84a72049b17ec33/html5/thumbnails/2.jpg)
CTF Architecture
1 2
3 4
Proxy
DNS
Production
ESXi
1 2
3 4
Proxy
DNS
1 2
3 4
Proxy
DNS
1 2
3 4
Proxy
DNS
Team 1 Team 2 Team 3 Team 4
11
11
22 3
4
2 3
4
2 3
4
3
4
Internet
Uplink
Public CTF
ESXi
CTF Proxy
CTF DNS
Private CTF
Services
Gold NuggetWeb App
Score BoardWeb App
Hacking-Lab
Mobile CTF App
Mail Server
NTP Server
DHCP Server DHCP Server DHCP Server DHCP Server
DHCP Server
DIR Server
VPN toHL
Jeopardy CTFServers
ISO Server
2
![Page 3: CTF Attack/Defense Ivan Bütler - OWASP · 2020-01-17 · Proxy, E-Mail, Apache, WordPress, ... SCORING BOT TIMELINE ATTACK/DEFENSE team2 is requesting an new gold nugget the previous](https://reader034.fdocuments.in/reader034/viewer/2022050400/5f7df439b84a72049b17ec33/html5/thumbnails/3.jpg)
CTF Tasks
Setup and maintain a service like DNS, Proxy, E-Mail, Apache, WordPress, …
Hack in other CTF team servers and services and steal the gold nugget (EXPLOITATION)
Keep own services up and running (IT OPS)
Fix vulnerable software & services (IT DEV)
Safe guard own gold nuggets
Solving jeopardy challenges
Own a device/server and prove the attack by leaving a special gold nugget, known as evidence nugget (0-day)
CTF Tasks
3
![Page 4: CTF Attack/Defense Ivan Bütler - OWASP · 2020-01-17 · Proxy, E-Mail, Apache, WordPress, ... SCORING BOT TIMELINE ATTACK/DEFENSE team2 is requesting an new gold nugget the previous](https://reader034.fdocuments.in/reader034/viewer/2022050400/5f7df439b84a72049b17ec33/html5/thumbnails/4.jpg)
Scoring
• Scoring Application
4
![Page 5: CTF Attack/Defense Ivan Bütler - OWASP · 2020-01-17 · Proxy, E-Mail, Apache, WordPress, ... SCORING BOT TIMELINE ATTACK/DEFENSE team2 is requesting an new gold nugget the previous](https://reader034.fdocuments.in/reader034/viewer/2022050400/5f7df439b84a72049b17ec33/html5/thumbnails/5.jpg)
The CTF Glue
CTF players must find/hack/disclose a string, known as gold nugget, from the ‘vulnerable’ services of the other teams
The purpose of the gold nugget is to claim points for a successful attack
5
![Page 6: CTF Attack/Defense Ivan Bütler - OWASP · 2020-01-17 · Proxy, E-Mail, Apache, WordPress, ... SCORING BOT TIMELINE ATTACK/DEFENSE team2 is requesting an new gold nugget the previous](https://reader034.fdocuments.in/reader034/viewer/2022050400/5f7df439b84a72049b17ec33/html5/thumbnails/6.jpg)
The CTF GlueGold Nuggets
Gold Nuggets are digitally signed strings. The gold nugget app is issuing them. The gold nugget app knows, who owns which gold nugget
6
![Page 7: CTF Attack/Defense Ivan Bütler - OWASP · 2020-01-17 · Proxy, E-Mail, Apache, WordPress, ... SCORING BOT TIMELINE ATTACK/DEFENSE team2 is requesting an new gold nugget the previous](https://reader034.fdocuments.in/reader034/viewer/2022050400/5f7df439b84a72049b17ec33/html5/thumbnails/7.jpg)
Team ESX = DEV SYSTEM
• Every CTF team gets a physical server (ESXi) and the proper vSphere credentials
• The ESXi is pre-configured with several pre-installed VM’s
• The team ESXi is
named as “DEV” system
7
![Page 8: CTF Attack/Defense Ivan Bütler - OWASP · 2020-01-17 · Proxy, E-Mail, Apache, WordPress, ... SCORING BOT TIMELINE ATTACK/DEFENSE team2 is requesting an new gold nugget the previous](https://reader034.fdocuments.in/reader034/viewer/2022050400/5f7df439b84a72049b17ec33/html5/thumbnails/8.jpg)
CTF Architecture
1 2
3 4
Proxy
DNS
1 2
3 4
Proxy
DNS
1 2
3 4
Proxy
DNS
1 2
3 4
Proxy
DNS
Team 1 Team 2 Team 3 Team 4
11
11
22 3
4
2 3
4
2 3
4
3
4
Internet
Uplink
Public CTF
ESXi
CTF Proxy
CTF DNS
Private CTF
Services
Gold NuggetWeb App
Score BoardWeb App
Hacking-Lab
Mobile CTF App
Mail Server
NTP Server
DHCP Server DHCP Server DHCP Server DHCP Server
Production
ESXi
DHCP Server
DIR Server
VPN toHL
Jeopardy CTFServers
ISO Server
DEV
PROD
8
![Page 9: CTF Attack/Defense Ivan Bütler - OWASP · 2020-01-17 · Proxy, E-Mail, Apache, WordPress, ... SCORING BOT TIMELINE ATTACK/DEFENSE team2 is requesting an new gold nugget the previous](https://reader034.fdocuments.in/reader034/viewer/2022050400/5f7df439b84a72049b17ec33/html5/thumbnails/9.jpg)
Production ESXi
• The apps on DEV is ‘equal’ or ‘identical’ as on PROD
• On DEV, teamshave root access (SSH)
• On PROD teamsdo *NOT* have root or interactiveaccess
9
![Page 10: CTF Attack/Defense Ivan Bütler - OWASP · 2020-01-17 · Proxy, E-Mail, Apache, WordPress, ... SCORING BOT TIMELINE ATTACK/DEFENSE team2 is requesting an new gold nugget the previous](https://reader034.fdocuments.in/reader034/viewer/2022050400/5f7df439b84a72049b17ec33/html5/thumbnails/10.jpg)
Attacking
Stealing Gold Nugget
10
![Page 11: CTF Attack/Defense Ivan Bütler - OWASP · 2020-01-17 · Proxy, E-Mail, Apache, WordPress, ... SCORING BOT TIMELINE ATTACK/DEFENSE team2 is requesting an new gold nugget the previous](https://reader034.fdocuments.in/reader034/viewer/2022050400/5f7df439b84a72049b17ec33/html5/thumbnails/11.jpg)
Attacking
• Every team is allowed to attack other teams on the DEV or PROD environment
• On success, the attacking team discloses the gold nugget from the victim team
• The gold nugget is different in DEV and PRODfor any team and app (every gold nugget is unique)
• The gold nugget must be used to claim points using the gold nugget app
11
![Page 12: CTF Attack/Defense Ivan Bütler - OWASP · 2020-01-17 · Proxy, E-Mail, Apache, WordPress, ... SCORING BOT TIMELINE ATTACK/DEFENSE team2 is requesting an new gold nugget the previous](https://reader034.fdocuments.in/reader034/viewer/2022050400/5f7df439b84a72049b17ec33/html5/thumbnails/12.jpg)
Attacking
1 2
3 4
Proxy
DNS
Production
ESXi
1 2
3 4
Proxy
DNS
1 2
3 4
Proxy
DNS
1 2
3 4
Proxy
DNS
Team 1 Team 2 Team 3 Team 4
11
11
22 3
4
2 3
4
2 3
4
3
4
Internet
Uplink
Public CTF
ESXi
CTF Proxy
CTF DNS
Private CTF
Services
Gold NuggetWeb App
Score BoardWeb App
Mail Server
NTP Server
DHCP Server DHCP Server DHCP Server DHCP Server
DHCP Server
DIR Server
VPN toHL
Jeopardy CTFServers
ISO Server
12
![Page 13: CTF Attack/Defense Ivan Bütler - OWASP · 2020-01-17 · Proxy, E-Mail, Apache, WordPress, ... SCORING BOT TIMELINE ATTACK/DEFENSE team2 is requesting an new gold nugget the previous](https://reader034.fdocuments.in/reader034/viewer/2022050400/5f7df439b84a72049b17ec33/html5/thumbnails/13.jpg)
Scoring per Time Unit
team 3
team 2
Gold NuggetWeb App
SCORING BOT TIMELINE
ATTACK/DEFENSE
team2 is requesting an new gold nugget
the previous gold nugget becomes invalid
penalty period
3’ 3’ 3’ 3’ 3’ 3’
team 2
team 2
team 3
13
![Page 14: CTF Attack/Defense Ivan Bütler - OWASP · 2020-01-17 · Proxy, E-Mail, Apache, WordPress, ... SCORING BOT TIMELINE ATTACK/DEFENSE team2 is requesting an new gold nugget the previous](https://reader034.fdocuments.in/reader034/viewer/2022050400/5f7df439b84a72049b17ec33/html5/thumbnails/14.jpg)
Fixing VulnerableApps
Stealing Gold Nugget
Fix vulnerable software & services
Safe guard own gold nuggets
14
![Page 15: CTF Attack/Defense Ivan Bütler - OWASP · 2020-01-17 · Proxy, E-Mail, Apache, WordPress, ... SCORING BOT TIMELINE ATTACK/DEFENSE team2 is requesting an new gold nugget the previous](https://reader034.fdocuments.in/reader034/viewer/2022050400/5f7df439b84a72049b17ec33/html5/thumbnails/15.jpg)
Fixing vulnerable apps
1 2
3 4
Proxy
DNS
Production
ESXi
1 2
3 4
Proxy
DNS
1 2
3 4
Proxy
DNS
1 2
3 4
Proxy
DNS
Team 1 Team 2 Team 3 Team 4
11
11
22 3
4
2 3
4
2 3
4
3
4
Internet
Uplink
Public CTF
ESXi
CTF Proxy
CTF DNS
Private CTF
Services
Gold NuggetWeb App
Score BoardWeb App
Mail Server
NTP Server
DHCP Server DHCP Server DHCP Server DHCP Server
DHCP Server
DIR Server
VPN toHL
Jeopardy CTFServers
ISO Server
15
![Page 16: CTF Attack/Defense Ivan Bütler - OWASP · 2020-01-17 · Proxy, E-Mail, Apache, WordPress, ... SCORING BOT TIMELINE ATTACK/DEFENSE team2 is requesting an new gold nugget the previous](https://reader034.fdocuments.in/reader034/viewer/2022050400/5f7df439b84a72049b17ec33/html5/thumbnails/16.jpg)
Fixing vulnerable apps
• Teams have access to the source code of the vulnerable apps
• Teams must fix the vulnerabilities and commit changes to the source code repository = GIT
• The Jenkins-based building infrastructure is building the new release of the app
• The Jenkins-based building infrastructure is packaging the current team’s gold nugget into the new release
• The building infrastructure is automatically deploying the new app to DEV and PROD
16
![Page 17: CTF Attack/Defense Ivan Bütler - OWASP · 2020-01-17 · Proxy, E-Mail, Apache, WordPress, ... SCORING BOT TIMELINE ATTACK/DEFENSE team2 is requesting an new gold nugget the previous](https://reader034.fdocuments.in/reader034/viewer/2022050400/5f7df439b84a72049b17ec33/html5/thumbnails/17.jpg)
Fixing vulnerable apps
1 2
3 4
Proxy
DNS
1 2
3 4
Proxy
DNS
1 2
3 4
Proxy
DNS
1 2
3 4
Proxy
DNS
Team 1 Team 2 Team 3 Team 4
DHCP Server DHCP Server DHCP Server DHCP Server
Team 1 App - RW
Team 2 App - RW
Team 3 App - RW
Team 4 App - RW
Team 1 Build- RO
Team 2 Build - RO
Team 3 Build - RO
Team 4 Build - RO
Gold NuggetWeb App
Production
ESXi
11
11
22 3
4
2 3
4
2 3
4
3
4DHCP Server
player from team 2 is committing changes to Team 2 App RW Git Repo
GIT REPO
read-writeread-only
player is issueing a new gold nugget for App 01 of team 2
Team 2 App - RW
get nugget ()
git hook triggersinstallation on DEV
git hook triggersinstallation on PROD
17
![Page 18: CTF Attack/Defense Ivan Bütler - OWASP · 2020-01-17 · Proxy, E-Mail, Apache, WordPress, ... SCORING BOT TIMELINE ATTACK/DEFENSE team2 is requesting an new gold nugget the previous](https://reader034.fdocuments.in/reader034/viewer/2022050400/5f7df439b84a72049b17ec33/html5/thumbnails/18.jpg)
teamgit.hacking-lab.com
![Page 19: CTF Attack/Defense Ivan Bütler - OWASP · 2020-01-17 · Proxy, E-Mail, Apache, WordPress, ... SCORING BOT TIMELINE ATTACK/DEFENSE team2 is requesting an new gold nugget the previous](https://reader034.fdocuments.in/reader034/viewer/2022050400/5f7df439b84a72049b17ec33/html5/thumbnails/19.jpg)
![Page 20: CTF Attack/Defense Ivan Bütler - OWASP · 2020-01-17 · Proxy, E-Mail, Apache, WordPress, ... SCORING BOT TIMELINE ATTACK/DEFENSE team2 is requesting an new gold nugget the previous](https://reader034.fdocuments.in/reader034/viewer/2022050400/5f7df439b84a72049b17ec33/html5/thumbnails/20.jpg)
![Page 21: CTF Attack/Defense Ivan Bütler - OWASP · 2020-01-17 · Proxy, E-Mail, Apache, WordPress, ... SCORING BOT TIMELINE ATTACK/DEFENSE team2 is requesting an new gold nugget the previous](https://reader034.fdocuments.in/reader034/viewer/2022050400/5f7df439b84a72049b17ec33/html5/thumbnails/21.jpg)
Jeopardy Challenges
Stealing Gold Nugget
Fix vulnerable software & services
Safe guard own gold nuggets
Solving jeopardy challenges
21
![Page 22: CTF Attack/Defense Ivan Bütler - OWASP · 2020-01-17 · Proxy, E-Mail, Apache, WordPress, ... SCORING BOT TIMELINE ATTACK/DEFENSE team2 is requesting an new gold nugget the previous](https://reader034.fdocuments.in/reader034/viewer/2022050400/5f7df439b84a72049b17ec33/html5/thumbnails/22.jpg)
Jeopardy-style CTF
• Jeopardy-style CTFs have a couple of tasks in range of categories. For example, Web, Reverse Engineering, Crypto, Binary, Forensics, …
• Gold Nugget app is introducing the task (mission)
• Teams gain points for every solved task
• More points for more complicated tasks
• Teams are not fighting against each others
• The earlier a team solves the challenge, the more points they get
22
![Page 23: CTF Attack/Defense Ivan Bütler - OWASP · 2020-01-17 · Proxy, E-Mail, Apache, WordPress, ... SCORING BOT TIMELINE ATTACK/DEFENSE team2 is requesting an new gold nugget the previous](https://reader034.fdocuments.in/reader034/viewer/2022050400/5f7df439b84a72049b17ec33/html5/thumbnails/23.jpg)
Jeopardy-style CTF
1 2
3 4
Proxy
DNS
Production
ESXi
1 2
3 4
Proxy
DNS
1 2
3 4
Proxy
DNS
1 2
3 4
Proxy
DNS
Team 1 Team 2 Team 3 Team 4
11
11
22 3
4
2 3
4
2 3
4
3
4
Internet
Uplink
Public CTF
ESXi
CTF Proxy
CTF DNS
Private CTF
Services
Gold NuggetWeb App
Score BoardWeb App
Hacking-Lab
Mail Server
NTP Server
DHCP Server DHCP Server DHCP Server DHCP Server
DHCP Server
DIR Server
VPN toHL
Jeopardy CTFServers
ISO Server
23
![Page 24: CTF Attack/Defense Ivan Bütler - OWASP · 2020-01-17 · Proxy, E-Mail, Apache, WordPress, ... SCORING BOT TIMELINE ATTACK/DEFENSE team2 is requesting an new gold nugget the previous](https://reader034.fdocuments.in/reader034/viewer/2022050400/5f7df439b84a72049b17ec33/html5/thumbnails/24.jpg)
Scoring per Time Unit
3’ 3’ 3’ 3’ 3’ 3’
team 2
team 3
Mission 1Crypto
solved byteam 3
team 3
Mission 2Crypto
solved byteam 3
team 3
Mission 2Stegano
solved by team 2
team 2
24
![Page 25: CTF Attack/Defense Ivan Bütler - OWASP · 2020-01-17 · Proxy, E-Mail, Apache, WordPress, ... SCORING BOT TIMELINE ATTACK/DEFENSE team2 is requesting an new gold nugget the previous](https://reader034.fdocuments.in/reader034/viewer/2022050400/5f7df439b84a72049b17ec33/html5/thumbnails/25.jpg)
![Page 26: CTF Attack/Defense Ivan Bütler - OWASP · 2020-01-17 · Proxy, E-Mail, Apache, WordPress, ... SCORING BOT TIMELINE ATTACK/DEFENSE team2 is requesting an new gold nugget the previous](https://reader034.fdocuments.in/reader034/viewer/2022050400/5f7df439b84a72049b17ec33/html5/thumbnails/26.jpg)
• Jeopardy type 1: Secret flag
![Page 27: CTF Attack/Defense Ivan Bütler - OWASP · 2020-01-17 · Proxy, E-Mail, Apache, WordPress, ... SCORING BOT TIMELINE ATTACK/DEFENSE team2 is requesting an new gold nugget the previous](https://reader034.fdocuments.in/reader034/viewer/2022050400/5f7df439b84a72049b17ec33/html5/thumbnails/27.jpg)
• Jeopardy type 1: Solution Message / File
![Page 28: CTF Attack/Defense Ivan Bütler - OWASP · 2020-01-17 · Proxy, E-Mail, Apache, WordPress, ... SCORING BOT TIMELINE ATTACK/DEFENSE team2 is requesting an new gold nugget the previous](https://reader034.fdocuments.in/reader034/viewer/2022050400/5f7df439b84a72049b17ec33/html5/thumbnails/28.jpg)
AchievementsSetup and maintain a service
Stealing Gold Nugget
Fix vulnerable software & services
Safe guard own gold nuggets
Solving jeopardy challenges
28
![Page 29: CTF Attack/Defense Ivan Bütler - OWASP · 2020-01-17 · Proxy, E-Mail, Apache, WordPress, ... SCORING BOT TIMELINE ATTACK/DEFENSE team2 is requesting an new gold nugget the previous](https://reader034.fdocuments.in/reader034/viewer/2022050400/5f7df439b84a72049b17ec33/html5/thumbnails/29.jpg)
Achievements
• Technical Achievements
– Teams must setup and maintain services
– DNS, Proxy, Apache, NodeJS, AngularJS, …
• Non-Technical Achievements (Management)
– Write press release
– Announce news
– Create crisis organization during CTF game
– Presentation / Talk
29
![Page 30: CTF Attack/Defense Ivan Bütler - OWASP · 2020-01-17 · Proxy, E-Mail, Apache, WordPress, ... SCORING BOT TIMELINE ATTACK/DEFENSE team2 is requesting an new gold nugget the previous](https://reader034.fdocuments.in/reader034/viewer/2022050400/5f7df439b84a72049b17ec33/html5/thumbnails/30.jpg)
Achievements
1 2
3 4
Proxy
DNS
Production
ESXi
1 2
3 4
Proxy
DNS
1 2
3 4
Proxy
DNS
1 2
3 4
Proxy
DNS
Team 1 Team 2 Team 3 Team 4
11
11
22 3
4
2 3
4
2 3
4
3
4
Internet
Uplink
Public CTF
ESXi
CTF Proxy
CTF DNS
Private CTF
Services
Gold NuggetWeb App
Score BoardWeb App
Hacking-Lab
Mail Server
NTP Server
DHCP Server DHCP Server DHCP Server DHCP Server
DHCP Server
DIR Server
VPN toHL
Jeopardy CTFServers
ISO Server
30
![Page 31: CTF Attack/Defense Ivan Bütler - OWASP · 2020-01-17 · Proxy, E-Mail, Apache, WordPress, ... SCORING BOT TIMELINE ATTACK/DEFENSE team2 is requesting an new gold nugget the previous](https://reader034.fdocuments.in/reader034/viewer/2022050400/5f7df439b84a72049b17ec33/html5/thumbnails/31.jpg)
Scoring per Time Unit
3’ 3’ 3’ 3’ 3’ 3’
team 2
team 3
Achievement 1solved by
team 3
team 3
Achievement 1solved by
team 3
team 3
Achievement 1solved by
team 2
team 2
31
![Page 32: CTF Attack/Defense Ivan Bütler - OWASP · 2020-01-17 · Proxy, E-Mail, Apache, WordPress, ... SCORING BOT TIMELINE ATTACK/DEFENSE team2 is requesting an new gold nugget the previous](https://reader034.fdocuments.in/reader034/viewer/2022050400/5f7df439b84a72049b17ec33/html5/thumbnails/32.jpg)
Pown’edSetup and maintain a service
Stealing Gold Nugget
Fix vulnerable software & services
Safe guard own gold nuggets
Solving jeopardy challenges
Own a device/server 32
![Page 33: CTF Attack/Defense Ivan Bütler - OWASP · 2020-01-17 · Proxy, E-Mail, Apache, WordPress, ... SCORING BOT TIMELINE ATTACK/DEFENSE team2 is requesting an new gold nugget the previous](https://reader034.fdocuments.in/reader034/viewer/2022050400/5f7df439b84a72049b17ec33/html5/thumbnails/33.jpg)
Pown’ed
• Teams may find vulnerabilities that are not known to the CTF jury
• If a team could hack such a service, then the team could get a special gold nugget and leave it on the hacked server as ‘evidence’
• This special gold nugget is defined as the“evidence gold nugget”
• Teams can request such an evidence gold nugget from the gold nugget app, but only one at a time until it’s being verified by the jury
33
![Page 34: CTF Attack/Defense Ivan Bütler - OWASP · 2020-01-17 · Proxy, E-Mail, Apache, WordPress, ... SCORING BOT TIMELINE ATTACK/DEFENSE team2 is requesting an new gold nugget the previous](https://reader034.fdocuments.in/reader034/viewer/2022050400/5f7df439b84a72049b17ec33/html5/thumbnails/34.jpg)
Pown’ed
1 2
3 4
Proxy
DNS
Production
ESXi
1 2
3 4
Proxy
DNS
1 2
3 4
Proxy
DNS
1 2
3 4
Proxy
DNS
Team 1 Team 2 Team 3 Team 4
11
11
22 3
4
2 3
4
2 3
4
3
4
Internet
Uplink
Public CTF
ESXi
CTF Proxy
CTF DNS
Private CTF
Services
Gold NuggetWeb App
Score BoardWeb App
Hacking-Lab
Mail Server
NTP Server
DHCP Server DHCP Server DHCP Server DHCP Server
DHCP Server
DIR Server
VPN toHL
Jeopardy CTFServers
ISO Server
34
![Page 35: CTF Attack/Defense Ivan Bütler - OWASP · 2020-01-17 · Proxy, E-Mail, Apache, WordPress, ... SCORING BOT TIMELINE ATTACK/DEFENSE team2 is requesting an new gold nugget the previous](https://reader034.fdocuments.in/reader034/viewer/2022050400/5f7df439b84a72049b17ec33/html5/thumbnails/35.jpg)
Scoring per Time Unit
3’ 3’ 3’ 3’ 3’ 3’
team 2
team 3
team 3 found a 0-day exploit and left
an evidence nuggeton the server
team 3
35
![Page 36: CTF Attack/Defense Ivan Bütler - OWASP · 2020-01-17 · Proxy, E-Mail, Apache, WordPress, ... SCORING BOT TIMELINE ATTACK/DEFENSE team2 is requesting an new gold nugget the previous](https://reader034.fdocuments.in/reader034/viewer/2022050400/5f7df439b84a72049b17ec33/html5/thumbnails/36.jpg)
AvailabilitySetup and maintain a service
Stealing Gold Nugget
Keep own services up and running
Fix vulnerable software & services
Safe guard own gold nuggets
Solving jeopardy challenges
Own a device/server 36
![Page 37: CTF Attack/Defense Ivan Bütler - OWASP · 2020-01-17 · Proxy, E-Mail, Apache, WordPress, ... SCORING BOT TIMELINE ATTACK/DEFENSE team2 is requesting an new gold nugget the previous](https://reader034.fdocuments.in/reader034/viewer/2022050400/5f7df439b84a72049b17ec33/html5/thumbnails/37.jpg)
Availability
1 2
3 4
Proxy
DNS
Production
ESXi
1 2
3 4
Proxy
DNS
1 2
3 4
Proxy
DNS
1 2
3 4
Proxy
DNS
Team 1 Team 2 Team 3 Team 4
11
11
22 3
4
2 3
4
2 3
4
3
4
Internet
Uplink
Public CTF
ESXi
CTF Proxy
CTF DNS
Private CTF
Services
Gold NuggetWeb App
Score BoardWeb App
Hacking-Lab
Mobile CTF App
Mail Server
NTP Server
DHCP Server DHCP Server DHCP Server DHCP Server
DHCP Server
DIR Server
VPN toHL
Jeopardy CTFServers
ISO Server
37
![Page 38: CTF Attack/Defense Ivan Bütler - OWASP · 2020-01-17 · Proxy, E-Mail, Apache, WordPress, ... SCORING BOT TIMELINE ATTACK/DEFENSE team2 is requesting an new gold nugget the previous](https://reader034.fdocuments.in/reader034/viewer/2022050400/5f7df439b84a72049b17ec33/html5/thumbnails/38.jpg)
Scoring per Time Unit
team 2
team 3
one service from team 3 is not available
team 3
team 3 fixed the problem, everything ok
team 3
38
![Page 39: CTF Attack/Defense Ivan Bütler - OWASP · 2020-01-17 · Proxy, E-Mail, Apache, WordPress, ... SCORING BOT TIMELINE ATTACK/DEFENSE team2 is requesting an new gold nugget the previous](https://reader034.fdocuments.in/reader034/viewer/2022050400/5f7df439b84a72049b17ec33/html5/thumbnails/39.jpg)
CTF Scoring
39
![Page 40: CTF Attack/Defense Ivan Bütler - OWASP · 2020-01-17 · Proxy, E-Mail, Apache, WordPress, ... SCORING BOT TIMELINE ATTACK/DEFENSE team2 is requesting an new gold nugget the previous](https://reader034.fdocuments.in/reader034/viewer/2022050400/5f7df439b84a72049b17ec33/html5/thumbnails/40.jpg)
CTF Scoring
Scoring DB
Scoring Bot Engine
Gold Nugget App
40
![Page 41: CTF Attack/Defense Ivan Bütler - OWASP · 2020-01-17 · Proxy, E-Mail, Apache, WordPress, ... SCORING BOT TIMELINE ATTACK/DEFENSE team2 is requesting an new gold nugget the previous](https://reader034.fdocuments.in/reader034/viewer/2022050400/5f7df439b84a72049b17ec33/html5/thumbnails/41.jpg)
ECSC Award Ceremony 2015
41
![Page 42: CTF Attack/Defense Ivan Bütler - OWASP · 2020-01-17 · Proxy, E-Mail, Apache, WordPress, ... SCORING BOT TIMELINE ATTACK/DEFENSE team2 is requesting an new gold nugget the previous](https://reader034.fdocuments.in/reader034/viewer/2022050400/5f7df439b84a72049b17ec33/html5/thumbnails/42.jpg)
Thank You!
https://www.owasp.org/index.php/OWASP_University_Challenge
42