Assignments

Hands-on assignments follow the topics shown in the classes:

• Each student is assigned a docker container in the class infrastructure at the beginning of the class.
• Docker containers run Linux and contain all the tools needed during the semester to solve all assignments.
• All assignments are to be done in the containers unless stated otherwise.
• All assignments are in the form of Capture the flag: solving a problem yields a flag that can be submitted in the CTFd system for evaluation.

You can NOT

1. Attack others on the Internet from the docker we are giving you.
2. Attack the assignment servers or CTFd servers
3. Attack other servers and services in the university network (outside of the IP range given to you)
4. Share your code or solution with other students

You CAN

1. Attack the given docker from the Internet.
2. Attack from the local docker network the dockers for other students (inside the local network)

1. Log in CTFd with given credentials (Check your email).
2. Log in to the given docker with the given credentials.
3. Get the flag and submit it to the CTFd

• Log in to your docker
• Scan and find running devices in the network 172.16.1.100-200
• Find out which services are running on those devices
• Find the flag and submit it to the CTFd
• Answer related questions in the CTFd

• Log in to your docker
• Capture traffic for at least 1 hour
• Search the captured traffic for suspicious/anomalous traffic and potential attack
• Analyze the attacker's actions
• Find the flag
• Submit the flag in the CTFd

Part 1:

• Log in to your docker
• Find the library in <IP SHOWN IN CTFd> and explore it
• Find the flag and answer the question in CTFd

Useful tools: nmap, ls, ssh, cat

Part 2:

• Log in to your docker
• Server <IP SHOWN IN CTFd> has a vulnerability
• Find it and search for an exploit
• Exploit this vulnerability to read the flag file

Useful tools: nmap, python, cat

• The assignment has several parts. You will need to log in to your dockers, investigate potential breaches, and answer the questions in CTFd.

• Unordered List ItemYou have a Cowrie installation at your docker running SSH on port 2222
• Attackers will try to connect to this port and detect if it is a honeypot or a real service.
• You need to try and make the honeypot look more realistic.
• More details in CTFd

• Find a way to access the given server
• Make sure you can read all parts of the flag number 1
• Find a way to access flag number 2

• Log in to your dockers
• Analyze the traffic that comes to your container and try to make sense of it. (You can ignore traffic from past assignments)
• Find the flag and submit it to the CTFd
• More details in CTFd

There is a bot server specified in CTFd. Create a bot client that can interact with it, respond to the C&C server commands and obtain the flag. In order to register to the bot master you will need to provide proof of work. Check the attached `pow_solver.py` to see what is needed.

• Part 1: Download a PCAP from CTFd, analyze it and answer the questions
• Part 2: Modify the ML part in the class Colab according to the instructions in CTFd and solve the questions.

Bonus assignments will be announced before the winter break. Students who complete the bonus assignment can choose not to come to the final exam. More details and exact conditions for passing the bonus will be announced later in the semester.