0x01CTF Profile
CTF (Capture The Flag) Chinese commonly translated as Capture the Flag game, in the middle of the field of network security is one kind of athletic competition in the form of technology between network security and technical personnel. CTF originated in 1996 DEFCON hacker conference worldwide, hackers technology competition by initiating another way instead of real attacks before. Today, network security has become a worldwide circle in the form of popular contest, in 2013 the world held more than 50 games CTF international competitions. The DEFCON CTF as the birthplace of the competition system, DEFCON CTF CTF competition has become the current highest level of technology and global influence, similar to the CTF arena in the "World Cup."
Note: Since it is a capture the flag, so do problems get in the flag must be submitted up to score
CTF game mode
1. problem-solving mode : problem-solving mode in CTF competition system, the teams can participate in via the Internet or on-site network, this model CTF contest with ACM Programming Contest, Informatics Olympiad compare like with like, in order to solve the technical challenges of network security division title value and time to rank, usually for online trials. The main topics include reverse, loophole mining and utilization, Web penetration, password, forensics, steganography, security, programming and other categories.
2. The offensive and defensive modes : offensive and defensive mode in CTF competition system, the teams with each other in cyberspace attack and defense, mining and network services vulnerability to attack opponents score service, repair service vulnerability defend themselves to avoid drop points. Offensive and defensive mode CTF competition system in real time by the score reflected the game situation, and ultimately a winner with a score of direct, intense kind of competition, the competition system with network security and highly ornamental highly transparency. In this game system, the team members than just intelligence and technology, than physical (usually because the game will continue for 48 hours or more), as well as the division of labor and cooperation between teams ratio.
3. Mixed mode : a combination of problem-solving mode with CTF competition system attack and defense modes, such teams can get some initial score by solving problems, and then increase or decrease the score of a zero-sum game by offensive and defensive combat, and ultimately to high and low scores winner . Typical hybrid model CTF competition system as iCTF CTF international competition.
CTF Questions
1:web
WEB more widely today, Capture the Flag CTF competition is the main kinds of questions, topics related to the common Web vulnerabilities, such as injection, XSS, file contains code audit, upload and other vulnerabilities. These topics are not simple injection, upload the title, will have at least one layer of security screening, the players need to find ways to bypass. web entry is simple, but really hard to improve, need players have some code audit capacity to understand something php and other computer language usage
2: Cryptography
Examine a variety of topics encryption technology, including classical cryptography, modern encryption technology . It examines some of the major players in cryptography-related knowledge. Cryptography is often included in various subjects inside , which means you get a flag, then we must consider that he is not some sort of password encryption
3: Steganography
Steganography is to give you a picture of various types of data, audio, video and other carriers. Through a number of tools available to analyze flag, but seemingly easy is actually very complicated.
4: Reverse (RE)
Topics related to software reverse, cracking technology, requires a strong disassemble, decompile solid foundation. It requires knowledge compilation, stack, registers area. There are good logical thinking ability . The main adverse analytical test contestants. Without a certain level you can not even think about
5: Overflow (PWN)
And in fact the reverse, as players need to have a certain ability to disassemble, subject type generally have a heap overflow, stack overflow, format string, etc. , players need to write a script so that it overflows to achieve the purpose of getshell
6: MISC (Miscellaneous)
Miscellaneous Miscellaneous kinds of questions is really very complex, involving topics traffic analysis, e-discovery, data analysis, statistics and so big, broad coverage. The main players of various basic general knowledge test, study a broader scope.
0x02 learning direction
CTF learning can be divided into two directions:
A: RE + PWN
B:WEB+MISC
A direction because the barriers to entry are too high, what basis do not recommend students to select the direction B
exam: bugku, offense and defense in the world of entry-related topics.
Recommended books:
the early learning process is a bitter hope you can stick to it.
0x03 Tools Required
VMware virtual machine with kali
kali installation: https://blog.csdn.net/YUK_103/article/details/101862422
python and java environment
The net Quguan you download and install on the line, python2 and the environment should be set up python3
Title used in a variety of tools
This encounter a go next, self-collection
There is a little better computer configuration
Do not entire small notebook to run when the script does not necessarily run up.
Use Firefox browser and Google
There are plug-in, easy to do title
0x04 summary
Everything is hard in the beginning, hope you farther and farther down the road of learning CTF
