Capture The Flag (CTF) Challenges.

-


Capture The Flag (CTF) Challenges.


CTF Challenge is a kind of hackthon that mainly assaying the practical and logical skills of Ethical Hacking. It consists of a series of challenges that vary in their degree of difficulty, and that require participants to exercise different skill sets to solve. Once an individual challenge is solved, a “flag” is given to the player to earn points. Players can be individuals who attempt the various challenges by themselves, or they can work with others to attempt to score the highest number of points as a team competitively.

There are two main types of CTF challenges.
  • Jeopardy-Style CTFs
  • Attack-Defence CTFs
Jeopardy-Style CTFs consist of completing different challenges from a board range of categories in order to earn points/flags in a limited time. They preserve a leader board usually to figure out the winner of the entire competition. Some of the challenges are based on a story line like a murder or a crime.

Attack-Defense CTFs consist of two teams, one team who defense a network or server, and another who attacks it. Most probably they this type CTFs are knock out because of the large number of competitors. Depending on the nature of the particular CTF game, teams may either be attempting to take an opponent’s flag from their machine or teams may be attempting to plant their own flag on their opponent’s machine.

Every challenge is a combination of multiple domains in information/cyber-security:
  • Penetration testing
  • Cryptography
  • Steganography
  • Computer Forensics
  • Wireless Penetration
  • Programming
  • Reverse engineering
  • Exploitation
  • Traditional attacks such as xSS, SQL Injections etc. & many more…


Sri Lanka has two popular annual CTF Challenges that organized by two cyber security degree holders for inter-university students. CyberFest is organized by the NationalInstitute of Business Management (NIBM). And the other one, CodeFest CTF Challenge is organized by the Sri Lanka Institute of InformationTechnology(SLIIT). Both of them are Jeopardy-Style CTF Challenges. Most of the university students of Sri Lanka those who reads Computer Science major, compete for those challenges as three or four people teams.

I have already participated for the CodeFest CTF challenge and Cyberfest last year(2018) with my team. Our team '7R4C3R' won merit certificate in the Codefest CTF challenge.

Cyberfest at NIBM -2018


Codefest CTF Challenge @SLIIT - 2018

CTF Challenges are organized to improve the practical knowledge of the Cyber-Security and Information Security and the skills of Ethical Hacking. You only have to know the technologies that linked up with them. Basic knowledge of networking and virtualization also needed for these competitions. If you are a beginner or an expert in information/cyber security competing for a CTF Challenge will be a very exiting and an enjoyable experience for your career.

References :-
-Asela Kotagama


Comments

  1. උන්ක්නව්October 3, 2019 at 12:06 AM

    We can now add the DSICTS CTF challenge https://dsicts.com/ctf-writeup?level=hard as Sri Lanka's first Capture the Flag hacking competition organized by a school and also Sri Lanaka's third CTF compeition.

    ReplyDelete

Post a Comment

Popular posts from this blog

Fictional Hackers who inspires you - (MARVEL Vs. DC)

-
Image
Fictional Hackers who inspires you - (MARVEL Vs. DC) The battle between  Marvel Vs. DC  will never end. It was started as a comic battle, but now it has become a cinematic battle between two entertainers.  In the both comic universes there are some fictional  tech-nerds  who can hack you in seconds; I mean not that the  people who use  technopathy  or  cyberpathy . They are not always the hero but  "The guy in the chair" is the one  who becomes hero. If you concern about information security or cybersecurity however they'll inspire you for sure. These are some of memorable hackers that are in the both comic universes. 1. Tony Stark and J.A.R.V.I.S Tony Stark, we all know him as Iron Man. He is the former CEO and a former weapons manufacturer and one of the best among Marvel's comic heroes that is affiliated with Iron man and Avengers comics. He is also an American tech nerd who can do anything in technology.  He has not only ha
Read more

An Overview of Sri Lanka's Multilingual Heritage

-
Image
Prof. Sandagomi Coperhewa This article is based on the speech about “ An Overview of Sri Lanka's Multilingual Heritage ” was delivered by Prof. Sandagomi Coperhewa who is a professor of University of Colombo in Modern Sinhala Usage and Grammar, Sociolinguistics, Language and Communication, at the UCSC auditorium under Enhancement program for the 1st year students of UCSC undergraduate program on 12th September 2018. As I understood, this lecture was mainly based on How Sri Lanka became multicultural & multilingual &, how to live with that. Let's talk about language of Sri Lanka first, Sinhala From the origins, Sinhala is an Indu-Arya language which came from India but geographically separated from other Indu-Aryan languages. Tamil  Tamil is a Dravidian language which uses mainly Tamil and Muslim population of Sri Lanka. Tamil enjoyed a 'prestige' status in Sri Lanka after 12th century. English   English was the official language of
Read more

MS SQL Server with AWS RDS - Connect your local Relational Database to Cloud

-
Image
This tutorial will guide you to connect your local SQL Server database to the AWS  Relational Database Service(RDS) . It will make it an easier dev environment for your project with the cloud Relational Database. Prerequisites AWS Account  - You can have 12 months free tier which gives you free access for specific services for 12 months. Visual Studio 2019 / Microsoft SQL Server Management Studio (v18.4) 1. Go to  RDS  in AWS Console. 2. Find & Click  Create database        We are going to create a database instance.   3. We create this using  Standard Create  Method 4. In  Create database  page, Choose  Microsoft SQL Server  and  SQL Server Express Edition. It is better to use the  Free tier  template  on the same page under the  Templates  section. (Choose according to your need) 5. Set up db instance settings giving  DB instance identifier ,  Master username , and  Master Password . Remember these credentials. 6. Choose
Read more