Capture the Flag from WWE Bank CSIRT-MU, Masaryk University, Brno KYPO game for practising penetration testing ‹#› §Objective: Steal confidential information from an internal database. § §Background: fictitious WWE Bank organizes a hacking challenge. §Structure: several levels (more than 4 and less than 8) with particular tasks. §Game characteristics: learning by doing, fun, stress, frustration, uncertainty, time pressure, eureka, satisfaction. Game Essentials Martin Laštovička, Jan Vykopal, CSIRT-MU, Masaryk University, Brno KYPO game ‹#› 1.Getting familiar with the environment 2.Select target 3.Find vulnerability 4.Find a way to exploit vulnerability 5.Make the target useful for attacker § Attack Phases Martin Laštovička, Jan Vykopal, CSIRT-MU, Masaryk University, Brno KYPO game ‹#› §Hints: each level offer several hints for penalty points, hints can be taken in arbitrary order §Recommended solution: if you are struggling, you can access step-by-step solution of the level §Game characteristics: learning by doing, fun, stress, frustration, uncertainty, time pressure, eureka, satisfaction. Game Hints and Solutions Martin Laštovička, Jan Vykopal, CSIRT-MU, Masaryk University, Brno KYPO game ‹#› Network Topology You are here Martin Laštovička, Jan Vykopal, CSIRT-MU, Masaryk University, Brno KYPO game ‹#› §2-hour session allows your own pace. §Ask us for help, we may tell you something useful. §Each team/player has own sandbox, do not hesitate to try everything. §Take hints and be prepared to spend some points for that. §Use Google, use Google, use Google! Recommendations Martin Laštovička, Jan Vykopal, CSIRT-MU, Masaryk University, Brno KYPO game ‹#› Let’s Go! Martin Laštovička, Jan Vykopal, CSIRT-MU, Masaryk University, Brno KYPO game §Open Chrome browser and go to kypo2.ics.muni.cz. §Log in with your university account using Shibboleth. §Choose your sandbox in a table. §Now you can see network topology. §Open CTF game in a new tab. §Read introduction. §Fill questionnaire. §Start the game! Make a photo of your final score and compare it with your friends. ‹#› Let’s Go! Martin Laštovička, Jan Vykopal, CSIRT-MU, Masaryk University, Brno KYPO game QUESTIONS? GOOD LUCK! Martin Laštovička, Jan Vykopal @ics.muni.cz www.kypo.cz @csirtmu ‹#› Homework Martin Laštovička, Jan Vykopal, CSIRT-MU, Masaryk University, Brno KYPO game §You have access to a sandbox IP 147.251.255.133 with two networks §The attacker is in the network 10.10.20.0/24 §Victims are in the network 10.10.10.0/24 §Use nmap and Metasploit §Credentials for your machine login:root pass:toor ‹#› Homework – How to Connect on Windows Martin Laštovička, Jan Vykopal, CSIRT-MU, Masaryk University, Brno KYPO game §Using Windows Putty ‹#› Homework – How to Connect on Linux Martin Laštovička, Jan Vykopal, CSIRT-MU, Masaryk University, Brno KYPO game §Using Linux ssh: § §ssh –p 50022 root@147.251.255.133 ‹#› Homework – How to Submit Martin Laštovička, Jan Vykopal, CSIRT-MU, Masaryk University, Brno KYPO game §Submit the homework in a format: §Number of active Ips in the 10.10.10.0/24 subnet §Version of Samba servers from 10.10.10.0/24 subnet §Ordered list of existing vulnerabilities of the Samba servers according to the CVE database (use cvedetails.com) having score >= 9.0 §Describe briefly used commands § §