CourseWare Wiki
Switch Term
Winter 2024 / 2025
Winter 2023 / 2024
Winter 2022 / 2023
Search
Log In
b221
courses
bsy
assignments
Warning
This page is located in archive. Go to the latest version of this
course pages
. Go the latest version of
this page
.
Table of Contents
Assignments
General Rules
Assignment 1: Hello class infrastructure
Assignment 2: Network reconnaissance using Nmap ⚔️
Assignment 3: Network packet analysis with tcpdump and Wireshark 🛡️
Assignment 4: Scanning services and gaining access ⚔️
Assignment 5: Discovering Intruders in Your Server 🛡️
Assignment 6: Gaining and maintaining access ⚔️
Assignment 7: Fine-tuning honeypots to avoid detection 🛡️
Assignment 8: Secure coding and binary exploitation ⚔️🛡️
Assignment 9: Automated attacks with a malware client ⚔️
Assignment 10: Network analysis of a malware infection🛡️
Bonus Assignment
Assignments
Hands-on assignments follow the topics shown in the tutorials:
Students need to form teams of two to work on the assignments.
Each team is assigned a docker container in the class infrastructure at the beginning of the class.
Docker containers run Linux and contain all the tools needed during the semester to solve all assignments.
All assignments are to be done in the containers unless stated otherwise.
Points for successfully solving an assignment are given to both team members.
All assignments are in the form of Capture the flag: solving a problem yields a flag that can be submitted in the
CTFd
system for evaluation.
Use university email for registration in the CTFd
General Rules
You can NOT
Attack others on the Internet from the docker we are giving you.
Attack the assignment servers or CTFd servers
Attack other servers and service in the university network (outside of IP range given to you)
Share your code or solution with other teams
You CAN
Attack the given docker
from
the Internet.
Attack
from
the local docker network the dockers for other students (inside the local network)
Containers are to be used for the class only. Failing to comply with the rules will lead to a point deduction and failing the class!
Assignment List
Assignment
Starts
Due
Points
Assignmment 1
22.09.2022
31.10.2022
1
Assignmment 2
29.09.2022
31.10.2022
4
Assignmment 3
06.10.2022
31.10.2022
4
Assignmment 4
13.10.2022
31.10.2022
6
Assignmment 5
20.10.2022
13.01.2023
6
Assignmment 6
27.10.2022
13.01.2023
5
Assignmment 7
10.11.2022
13.01.2023
6
Assignmment 8
24.11.2022
13.01.2023
7
Assignmment 9
01.12.2022
13.01.2023
5
Assignmment 10
19.12.2022
13.01.2023
6
Bonus Assignment
TBA
TBA
50
Assignment 1: Hello class infrastructure
Form a team and register in
CTFd
. The team's name in CTFd should also be declared in the spreadsheet.
Log in to the given docker
Get the flag and submit it to the
CTFd
Assignment 2: Network reconnaissance using Nmap ⚔️
Use your docker (see Class 1 document if you don't have one yet)
Scan and find running devices in the network 172.16.1.100-200
Find out which services are running in those devices
One of the services will give you the flag. (2 points)
Answer the two questions in
CTFd
(2 points)
Assignment 3: Network packet analysis with tcpdump and Wireshark 🛡️
Log in your docker
Capture traffic for
at least 1 hour
Search the captured traffic for suspicious/anomalous traffic and potential attack
Analyze the attacker's actions
Find the flag
Submit the flag in
CTFd
(2 points)
Answer questions in
CTFd
(1+1 points)
Assignment 4: Scanning services and gaining access ⚔️
Part 1: Hogwarts Library
Log to your docker
Find the library in <TBA> and explore it
Find the flag and put it in the
CTFd
(1 point)
Answer the question
CTFd
(1 point)
Part 3: Mrs Norris
Log in to your docker
Find a vulnerable service in <TBA>
Find an exploit for the vulnerability
Use the exploit and find the flag
Submit the flag in the
CTFd
(2 points)
Assignment 5: Discovering Intruders in Your Server 🛡️
Assignment 6: Gaining and maintaining access ⚔️
Assignment 7: Fine-tuning honeypots to avoid detection 🛡️
Assignment 8: Secure coding and binary exploitation ⚔️🛡️
Assignment 9: Automated attacks with a malware client ⚔️
Assignment 10: Network analysis of a malware infection🛡️
Bonus Assignment
courses/bsy/assignments.txt
· Last modified: 2022/12/19 19:16 by
rigakmar