CTF in Russia
If you thought that I would tell you about the great moss in some cool 3D shooter, or a yard game with sticks and rags - you were mistaken. It will be about computer security competitions. In Russia.
Some background information:
CTF is a team competition, the purpose of which is to assess the ability of participants to attack and defend computer systems.
Each team is given a server (image for a virtual), on which there are a number of services (all of them are the same). Services, as you probably already guessed, have a number of vulnerabilities, intentionally introduced by their developers. Usually services are written in 5-9 programming languages.
The goal of the game is to ensure the efficiency of its services, protect the flags (some information on the server), capture the flags of the enemy. Ie, in essence, the task comes down to:
OS on the server, the languages in which the services will be written, etc. unknown in advance.
The competition usually lasts 7-8 hours.
The game is made both locally and remotely via the Internet.
')
Actually CTF in Russia:
What is worse than a Russian drunken hacker? :)
The following competitions are held in Russia:
UralCTF - since 2006, the severe Ural students and postgraduates of the Ural State University and the national team of Chelyabinsk have been holding regional competitions.
Official site UralCTF.
In 2008, with the support of the Ural State University and a number of sponsors, the HackerDom team held the first open inter-university information protection competition RuCTF 2008. Then, 9 teams took part in the competition.
In 2009, 31 teams submitted an application for participation in RuCTF 2009! The competition was held in two stages. First, there was a remote qualifying round of RuCTF Quals, based on which 16 teams were selected. They passed to the main stage of the competition, which took place in person at Ural State University. The SiBears team won.
Official site RuCTF.
On June 27, 2009, the first such competitions took place in TIT SFU - UfoCTF 2009. 4 teams took part. In one of them was me. :)
UfoCTF official site.
CTF abroad:
They play in CTF for a long time. At Defcon, the world's largest hacker convention in Las Vegas each year, CTF is one of the most favorite parts.
For example, Defcon 2009 Quals is a remote game that lasts two days. In fact, it is a qualifying round, the result of which is selected by 9 teams from around the world who go to Las Vegas for an on-site tour. The lucky ones will visit Defcon'e!
Official site of Defcon CTF.
CIPHER and UCSB iCTF are also very popular. Only students and graduate students can take part in them :) Competitions take place remotely via the Internet.
CIPHER official website
UCSB iCTF official website
Now, how do we participate in international online competitions using the example of two teams - HackerDom and SiBears:
Both teams participate in UCSB iCTF, CIPHER and DEFCON.
Results:
2007, CIPHER (3) - HackerDom 12/26 place.
2008, CIPHER (4) - HackerDom 1/31 place. SiBears - 21/31.
2009, CIPHER (5) - HackerDom 2/34 place. SiBears - 5/34 place.
2006 UCSB iCTF - HackerDom 19/25
2007 UCSB iCTF - HackerDom 3/36, SiBears - 10/36.
2008 UCSB iCTF - Sibears 2/39, HackerDom - 4/39.
2008 DEFCON - HackerDom 24/372
2009 DEFCON - 50/224 HackerDom, SiBears 55/224
In addition to these two teams, many more teams from Russia participate in the competition. For example, on CIPHER (5) from 33 teams - 12 Russians. Soon it will become a Russian competition! :)
Summing up , I can only say that it is damn nice that there is a CTF in Russia and that it is developing! And damn nice to participate in all this!
At my university, the CTF culture is just emerging ... But we will make every effort to develop this not only at the level of our team, but also at the level of the entire university.
PS: This is my first post here, besides, I have never been engaged in blogging, so I would like to hear objective comments so as not to drag errors from post to post in the future. Additional questions on the topic are welcome. :)
Some background information:
CTF is a team competition, the purpose of which is to assess the ability of participants to attack and defend computer systems.
Each team is given a server (image for a virtual), on which there are a number of services (all of them are the same). Services, as you probably already guessed, have a number of vulnerabilities, intentionally introduced by their developers. Usually services are written in 5-9 programming languages.
The goal of the game is to ensure the efficiency of its services, protect the flags (some information on the server), capture the flags of the enemy. Ie, in essence, the task comes down to:
- maintenance of service performance, which is periodically checked by the jury
- patch development for vulnerability services
- writing exploits to exploit vulnerabilities, pulling flags from enemy servers.
OS on the server, the languages in which the services will be written, etc. unknown in advance.
The competition usually lasts 7-8 hours.
The game is made both locally and remotely via the Internet.
')
Actually CTF in Russia:
What is worse than a Russian drunken hacker? :)
The following competitions are held in Russia:
UralCTF - since 2006, the severe Ural students and postgraduates of the Ural State University and the national team of Chelyabinsk have been holding regional competitions.
Official site UralCTF.
In 2008, with the support of the Ural State University and a number of sponsors, the HackerDom team held the first open inter-university information protection competition RuCTF 2008. Then, 9 teams took part in the competition.
In 2009, 31 teams submitted an application for participation in RuCTF 2009! The competition was held in two stages. First, there was a remote qualifying round of RuCTF Quals, based on which 16 teams were selected. They passed to the main stage of the competition, which took place in person at Ural State University. The SiBears team won.
Official site RuCTF.
On June 27, 2009, the first such competitions took place in TIT SFU - UfoCTF 2009. 4 teams took part. In one of them was me. :)
UfoCTF official site.
CTF abroad:
They play in CTF for a long time. At Defcon, the world's largest hacker convention in Las Vegas each year, CTF is one of the most favorite parts.
For example, Defcon 2009 Quals is a remote game that lasts two days. In fact, it is a qualifying round, the result of which is selected by 9 teams from around the world who go to Las Vegas for an on-site tour. The lucky ones will visit Defcon'e!
Official site of Defcon CTF.
CIPHER and UCSB iCTF are also very popular. Only students and graduate students can take part in them :) Competitions take place remotely via the Internet.
CIPHER official website
UCSB iCTF official website
Now, how do we participate in international online competitions using the example of two teams - HackerDom and SiBears:
Both teams participate in UCSB iCTF, CIPHER and DEFCON.
Results:
2007, CIPHER (3) - HackerDom 12/26 place.
2008, CIPHER (4) - HackerDom 1/31 place. SiBears - 21/31.
2009, CIPHER (5) - HackerDom 2/34 place. SiBears - 5/34 place.
2006 UCSB iCTF - HackerDom 19/25
2007 UCSB iCTF - HackerDom 3/36, SiBears - 10/36.
2008 UCSB iCTF - Sibears 2/39, HackerDom - 4/39.
2008 DEFCON - HackerDom 24/372
2009 DEFCON - 50/224 HackerDom, SiBears 55/224
In addition to these two teams, many more teams from Russia participate in the competition. For example, on CIPHER (5) from 33 teams - 12 Russians. Soon it will become a Russian competition! :)
Summing up , I can only say that it is damn nice that there is a CTF in Russia and that it is developing! And damn nice to participate in all this!
At my university, the CTF culture is just emerging ... But we will make every effort to develop this not only at the level of our team, but also at the level of the entire university.
PS: This is my first post here, besides, I have never been engaged in blogging, so I would like to hear objective comments so as not to drag errors from post to post in the future. Additional questions on the topic are welcome. :)
Source: https://habr.com/ru/post/64216/
All Articles