1 / 28

Team BAM!

Team BAM!. Scott Amack Everett Bloch Maxine Major. Network Layout. .100 .200 Kali1 .101 .201 Kali2 .102 .202 Kali3 .103 .203 Ubuntu 8.03 “Swiss Cheese Edition” .104 .204 Windows XP SP1. Flags. Goals: Hidden in plain sight Easy to find Limited number

sagittarius-lucas
Télécharger la présentation

Team BAM!

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Team BAM! • Scott AmackEverett Bloch Maxine Major

  2. Network Layout • .100 .200 Kali1 • .101 .201 Kali2 • .102 .202 Kali3 • .103 .203 Ubuntu 8.03 “Swiss Cheese Edition” • .104 .204 Windows XP SP1

  3. Flags Goals: • Hidden in plain sight • Easy to find • Limited number • Similar flags for both teams • Location variations

  4. Flag 1400 Points • Clue: “On your opponent’s machine there is an image of a pony. Hidden with this image is a message. Send us the message.” • Location: On Ubuntu root folder • File: Rainbow-Dash-American-salute-486.bmp • Tool to decode was preinstalled on XP images

  5. Flag 2200 Points • Clue: “Somewhere in your opponent’s important Windows files is a flag which contains a message. Send us the message.” • Location: Hidden in the windows registry • Needed to download the registry and search for flag “Team BAM! is too cool for school” “Team BAM! is laughing at your efforts!”

  6. Flag 2200 Points • Clue: “Somewhere in your opponent’s important Windows files is a flag which contains a message. Send us the message.” • Location: Hidden in the windows registry • Needed to download the registry and search for flag “Team BAM! is too cool for school” “Team BAM! is laughing at your efforts!”

  7. Flag 350 Points • Clue: “Maxine left a picture of her cute puppy on your opponent’s machine. Find it.” • Location: My Pictures on the XP machine • Just had to look through the images. Flag 3 clearly stated right on the image.

  8. Flag 350 Points • Clue: “Maxine left a picture of her cute puppy on your opponent’s machine. Find it.” • Location: My Pictures on the XP machine • Just had to look through the images. Flag 3 clearly stated right on the image.

  9. Flag 450 points • Clue: “Find the hashes of the account passwords on your opponent’s machines.” • Easy to obtain with Metasploit

  10. Flag 5200 Points • Clue: “Crack the password hashes you found for Flag 4. Send us the passwords and associated user accounts.” • Highly difficult, but tools to crack were on Kali machines

  11. Flag 5200 Points • Clue: “Crack the password hashes you found for Flag 4. Send us the passwords and associated user accounts.” • Highly difficult, but tools to crack were on Kali machines

  12. Flag 650 Points • Clue: “On your opponent’s Ubuntu server, somewhere in the home directory folder(s) there is a hidden file. Find it and send us the name of the file and the contents.” • Location: File hidden in each team’s directories • Just had to search for hidden files and realize one looked out of place. .hidden_dragon .crouching_tiger

  13. Flag 725 Points • Clue: “On your opponents windows machine modify their wallpaper image to include your team name.”

  14. Flag 725 Points • Clue: “On your opponents windows machine modify their wallpaper image to include your team name.”

  15. Flag 875 Points • Clue: “On your opponents Ubuntu machine modify their wallpaper image to include your team name. “ • Harder to accomplish

  16. Flag 875 Points • Clue: “On your opponents Ubuntu machine modify their wallpaper image to include your team name. “ • Harder to accomplish

  17. Flag 9100 Points • Clue: “Create an account on your opponents’ windows machine and maintain this account until the end of the competition. “ • Instructions said to email white team when the account was created.

  18. Flag 9100 Points • Clue: “Create an account on your opponents’ windows machine and maintain this account until the end of the competition. “ • Instructions said to email white team when the account was created.

  19. Flag 1050 Points • Clue: “Somewhere on one of your opponents machines is a hidden song. Find this song and identify it. Send us the song title and artist.” • Location: Song was in the My Music folder of the Windows machine. Attributes of file were changed to hidden. • MP3 was intentionally renamed. “Never Gonna Give You Up” - Rick Astley  “Code Monkey” - Jonathan Coulton

  20. Flag 1050 Points • Clue: “Somewhere on one of your opponents machines is a hidden song. Find this song and identify it. Send us the song title and artist.” • Location: Song was in the My Music folder of the Windows machine. Attributes of file were changed to hidden. • MP3 was intentionally renamed. “Never Gonna Give You Up” - Rick Astley  “Code Monkey” - Jonathan Coulton

  21. Bonus Time200 Points • Sent emails indicating someone broke into NOC • Advised physical access could be gained • Waited 3 hours • Added cron job to shutdown every 5 minutes on Kali1 and Kali2 and added shutdown script. • Emailed teams to request a report on what happened

  22. More Bonus200 Points • Emailed teams at 11:55 PM that person who broke into NOC was out of jail. • 10:30 AM accessed all VM’s and shut down VM’s with screens not locked. PHYSICAL SECURITY

  23. More Bonus200 Points • Emailed teams at 11:55 PM that person who broke into NOC was out of jail. • 10:30 AM accessed all VM’s and shut down VM’s with screens not locked. PHYSICAL SECURITY

  24. Points & Scoring • Flags 1200 • Uptime 800 • Bonus Fun Time 400 • Total Available 2400

  25. Observations • Don’t attack your own boxes (oops) • Don’t block ALL traffic (you blocked the scorebot) • Don’t leave machines unlocked • Never give up

  26. Infrastructure • Ran like a champ • Small number of issues, but nothing major Thank you, Nate and Theora!!

  27. Uptime Team Awesome 91 % Team PAI 56 %

  28. Team Scores Team Awesome 1378 Team PAI 673

More Related