WelcomeWelcome | FAQFAQ | DownloadsDownloads | WikiWiki

Author Topic: Hacking contest on a Live CD  (Read 4455 times)

Offline janos

  • Newbie
  • *
  • Posts: 6
Hacking contest on a Live CD
« on: April 10, 2013, 02:19:55 PM »
Howdy folks,

I created a Live CD with a built-in hacking contest, based on Tiny Core of course! There are 6 levels, based on an online contest created by Stripe in early 2012 (https://stripe.com/blog/capture-the-flag)

The ISO image is less than 30 megabytes. You can download it from here:
https://sourceforge.net/projects/ctfomatic/files/

When the system starts you are logged in as user level00. You will be presented with a hint that should help you gain access to the password of user level01. Your mission, should you choose to accept it, is to find and exploit the vulnerabilities presented at each increasingly difficult level, advancing forward until you reach level06 (and celebrate!)

By completing this challenge you will become a better programmer:

  • You will increase your awareness of the importance of security, and probably write more secure, more robust code in the future.
  • You will improve your skill of finding problems and weaknesses, which is the critical first step in optimization tasks.
  • You will have a wonderful time, and come out enlightened!

The source code of the scripts used to build this CD is available on GitHub:
https://github.com/janosgyerik/ctf-o-matic

Have fun!

Offline althalus

  • Sr. Member
  • ****
  • Posts: 351
Re: Hacking contest on a Live CD
« Reply #1 on: April 10, 2013, 11:42:36 PM »
Sounds interesting. Might forward this on to the programming club at my uni.



One thing to be aware of, is that this probably counts as a remix, which means when hosting the ISOs, you'll need to be abiding by Core's licence re: hosting source files and things.

Offline janos

  • Newbie
  • *
  • Posts: 6
Re: Hacking contest on a Live CD
« Reply #2 on: April 11, 2013, 01:28:12 PM »
The project with the remastering scripts is open-source, but I haven't added a LICENSE file yet.

Do you know what license it should be? Do you have link on this subject that I should read up?