What is CTF
CTF is the abbreviation of Capture The Flag. We call it Capture the Flag in Chinese , and its original meaning is a traditional sport in the West. In the game, the two armies will compete with each other for the flag. When one side's flag has been captured by the enemy, it means that side is defeated. CTF in the field of information security means that through various attack methods , after obtaining the server, look for the specified field , or a field with a fixed format in the file. This field is called flag , and its form is generally flag{xxxxxxxx}, which is submitted to the referee. machine can score.
The history of information security CTF can be said to be very long. It originated from the DEFCON Global Hacking Conference in 1996 (the largest network security conference in the United States, which was held in Beijing in May this year. If you are interested, you can listen to it, it is very interesting).
Why CTF
Getting started with infiltration, you must have all kinds of practice, right? However, due to the promulgation of the "Network Security Law", random scanning of other people's websites, or unauthorized penetration testing has certain risks. There is also news recently:
To be honest, this guy was just scanning, the attack was blocked by the firewall, and he didn't get anything, but he was sentenced to the same sentence.
So remember not to scan domestic websites randomly, especially education and government websites. However , it is impossible for beginners to learn penetration testing without a corresponding environment, and common drones are too complicated for Xiaobai, and it is easy to not know how to start.
Author: Li Yugui Linus
Link: https://zhuanlan.zhihu.com/p/61715277
Source: Zhihu
The copyright belongs to the author. For commercial reprint, please contact the author for authorization, for non-commercial reprint, please indicate the source.
At this time, CTF is very suitable. CTF is generally a topic with one or several knowledge points mixed with each other, which is relatively targeted. If you want to experience a safe sense of accomplishment and fun, and promote yourself to learn while practicing, CTF is a good choice.
Types of CTFs
CTF topic types are generally divided into Web penetration, RE reverse, Misc miscellaneous, PWN binary vulnerability exploitation, and Crypto password deciphering. Students who are interested in penetration testing are suggested to start with the topic of Web penetration, supplemented by Misc miscellaneous and Crypto cryptography.
CTF is mainly divided into two modes, one is the problem-solving mode. For web security, you will be required to hack a website or target machine. After the attack is successful, the system will display the flag or search for the flag in a directory file database, and submit it to the answering system for scoring. The general forms of reverse engineering problems are cracking keygen , dynamic debugging, dump memory and so on. These topics can be understood by Baidu or Google other people's problem-solving reports (keyword: CTF writeup).
The disadvantage of this model is that it is similar to "examination-oriented education". The current trend is to focus on difficult and biased questions, without considering the reality, just like the Olympiad. Moreover, this mode only has attack, but no defense, and more work in the enterprise still considers how to defend. At this time, the AWD offensive and defensive game mode came into being.
The second is attack and defense , also known as AWD (Attack With Defense, both attack and defense) mode. You need to play the offensive side and the defensive side in a game, the attacker gets points, and the loser gets points deducted. That is to say, when you can get Flag points for attacking other people's drones, others will be deducted points. At the same time, you also need to protect your host from being scored by others to prevent points from being deducted.
This mode is very intense, so you need to be well prepared, and you must have sufficient defense plans and EXP attack scripts . When I participated in this kind of competition for the first time, I was beaten badly QWQ, but the more I participate in the competition, the more experience I will accumulate. So, there is no need to panic in this kind of game, just play more, learn more and accumulate more.
There is also a saying in CTF that whoever turns in the Flag first will get bonus points, so quick hands are also very important. But generally speaking, it is not as fast as other bosses.
As for the problems of each type, you can go to participate in a CTF event, and you will understand after playing once.
Comparison of CTF and Reality Penetration
A realistic penetration test will have a very complete process, starting from information collection, vulnerability detection, and then attacking one by one, and many times nothing will be found. In contrast, the goal of CTF will be clearer . Questions below medium difficulty will generally indicate where the vulnerability occurs in the question description. If there is no prompt, there will not be many detection points, and screening one by one is enough.
Secondly, there are many CTF topics that are a bit out of touch with reality. There are many routines and brain holes, and some knowledge points are not practical...how should I put it?
Sometimes, in order to come up with some new questions, the question maker will set the question so that the brain hole needs to be very big to make it. Misc security miscellaneous is the hardest hit area for this kind of question. Doing this kind of question is actually not helpful for reality penetration. For example, this password question was a big headache when I saw it for the first time. Please guess what it is:
ciphertext
Students who have done a lot of CTF should know that this is the password encryption of "On Zen with Buddha", and I don't know who came up with it...
Talking about Zen Encryption with Buddha
It is not uncommon to see questions like this kind of confusing, particularly strange postures or routines. In fact, this also deviates from the original intention of CTF to a certain extent. We want to improve our safety posture level , rather than open our minds.
Therefore, the CTF questions that are relatively simple and have a big brain hole are only used to expand the knowledge. Having said that, now the CTF competitions have moved towards actual combat . Many high-level CTF questions will simulate real websites, so that you have a more realistic sense of penetration, and the penetration methods are closer to actual combat. The more conscientious CTFs in China include DDCTF, Anheng Cup Monthly Competition CTF and so on.
For information about CTF events, you can follow the event links compiled by the XCTF community or CTFtime, please click to read the original text . Although it is very possible that you can't beat the big guys in the game, it is also very good to paddle and learn knowledge.
Summarize
I collected some CTF shooting ranges, e-books, and various materials that are relatively easy to get started. If you need it, you can pay attention to it. Private message "information" to get it for free
