网络攻防赛提升你的安全技术水平.pdf

tel +41 55 214 41 60 fax +41 55 214 41 61 teamcsnc.ch www.csnc.ch compass security ag werkstrasse 20 postfach 2038 ch-8645 jona ivan btler national cyber storm competition handshands- -on security challengeson security challenges owasp appsec beijing 2013 compass security ag slide 2 www.csnc.ch my name is ivan btler ceo compass security ag switzerland compass security ag slide 3 www.csnc.ch my home, switzerland compass security ag slide 4 www.csnc.ch compass security ag penetration testing forensic analysis compass security ag slide 5 www.csnc.ch why am i here? because we run a remote security lab in switzerland. it is called hackinghacking- -lablab security puzzles / challenges / handssecurity puzzles / challenges / hands- -onon because owasp is offering free hacking- lab owasp top 10owasp top 10 web security challenges because hacking-lab is being used for national cyber storm competitionsnational cyber storm competitions tel +41 55 214 41 60 fax +41 55 214 41 61 teamcsnc.ch www.csnc.ch compass security ag werkstrasse 20 postfach 2038 ch-8645 jona at the endat the end: you should understand how to setup your own security lab security lab and how to use the freefree owasp challenges compass security ag slide 7 www.csnc.ch a long time ago . i was looking for a young jedi knight 俗塵 - 絕地武士 ctf 2007 in switzerland compass security ag slide 8 www.csnc.ch 2009 swiss cyber storm 2 fist swiss cyber talent competition 瑞士的網絡天賦競爭 compass security ag slide 9 www.csnc.ch 2011 swiss cyber storm 3 international ctf scs3 in switzerland prize獎 = new carnew car新車 compass security ag slide 10 www.csnc.ch 2013 - swiss cyber storm 4 compass security ag slide 11 www.csnc.ch challenge categories web security malware / trojan / bugs windows security apple security penetration testing networking forensics reverse engineering voip / ss7 / gsm wireless security unix / linux security crypto challenges programming fun challenge iphone challenge android challenge tel +41 55 214 41 60 fax +41 55 214 41 61 teamcsnc.ch www.csnc.ch compass security ag werkstrasse 20 postfach 2038 ch-8645 jona what is hacking-lab? compass security ag slide 13 www.csnc.ch what is hacking-lab? compass security ag slide 14 www.csnc.ch understanding hacking-lab 1)registration 2)challenge details solving the challenges(vpn) send solution solution grading tel +41 55 214 41 60 fax +41 55 214 41 61 teamcsnc.ch www.csnc.ch compass security ag werkstrasse 20 postfach 2038 ch-8645 jona sql injection & xml external entity attack demonstrationdemonstration hacking-lab tel +41 55 214 41 60 fax +41 55 214 41 61 teamcsnc.ch www.csnc.ch compass security ag werkstrasse 20 postfach 2038 ch-8645 jona details about hacking-lab compass security ag slide 17 www.csnc.ch what is hacking-lab? (1) vulnerable servers and applications (web, windows, linux, ios, android) (2) description about the security challenges (3) tools required for solving the challenges (4) teacher functions (accept/reject solutions) solutions, solution movies compass security ag slide 18 www.csnc.ch details about hacking-lab (1/4) (1) vulnerable servers and applications (web, windows, linux, ios, android) (2) description about the security challenges (3) tools required for solving the challenges (4) teacher function (accept/reject solutions) compass security ag slide 19 www.csnc.ch details about hacking-lab vulnerable serversservers remote security lab vulnerable mobilemobile apps automatic revert to snapshot automatic revert to snapshot tel +41 55 214 41 60 fax +41 55 214 41 61 teamcsnc.ch www.csnc.ch compass security ag werkstrasse 20 postfach 2038 ch-8645 jona movie 1: vulnerable servers (esxi) compass security ag slide 21 www.csnc.ch vulnerable servers (esx virtualization) compass security ag slide 22 www.csnc.ch vulnerable servers (esx virtualization) vulnerable servers * sip gateway * iis * web security * fuzzing challenge * pyhton challenge * mimikatz * shell of the future * license challenge * nessus scanning compass security ag slide 23 www.csnc.ch vulnerable servers (esx virtualization) vulnerable servers * splung engine * java script arena * web goat * struts challenge * buffer overflow * html5 challenge * jsp challenge * oracle challenges * conficker * metasploit lab compass security ag slide 24 www.csnc.ch vulnerable servers (esx virtualization) vulnerable servers * server livecd * ssh challenge * backtrack * unix challenge * active directory * terminal server * chat the hacking-lab servers will revert to snapshot revert to snapshot ever 1, 2 or 4 hours compass security ag slide 25 www.csnc.ch details about hacking-lab (2/4) (1) vulnerable servers and applications (web, windows, linux, ios, android) (2) description about the security challenges (3) tools required for solving the challenges (4) teacher function (accept/reject solutions) compass security ag slide 26 www.csnc.ch compass security ag slide 27 www.csnc.ch compass security ag slide 28 www.csnc.ch compass security ag slide 29 www.csnc.ch compass security ag slide 30 www.csnc.ch compass security ag slide 31 www.csnc.ch compass security ag slide 32 www.csnc.ch details about hacking-lab (3/4) (1) vulnerable servers and applications (web, windows, linux, ios, android) (2) description about the security challenges (3) tools required for solving the challenges (4) teacher function (accept/reject solutions) compass security ag slide 33 www.csnc.ch tools required to solve the challenges vpn to lab openvpnopenvpn into esx server infrastructure livecdlivecd compass security ag slide 34 www.csnc.ch livecd freefree download http:/media.hackinghttp:/media.hacking- - livecd iso livecd virtualbox ova livecd vmware ova compass security ag slide 35 www.csnc.ch hacking-lab livecd project compass security ag slide 36 www.csnc.ch how to connect using vpn vpn compass security ag slide 37 www.csnc.ch how to use the browser browser 1) two profiles 2) attacker 3) victim 4) switchproxy 5) livehttpheader 6) . more compass security ag slide 38 www.csnc.ch how to use zap proxy zap inspection proxy 1) web analysis 2) man in the middle 3) open source 4) java based 5) loading = slow compass security ag slide 39 www.csnc.ch how to get a root shell root shell compass security ag slide 40 www.csnc.ch how to access microsoft xp (vdi) vmware view vdi compass security ag slide 41 www.csnc.ch details about hacking-lab (4/4) (1) vulnerable servers and applications (web, windows, linux, ios, android) (2) description about the security challenges (3) tools required for solving the challenges (4) teacher function (accept/reject solutions) compass security ag slide 42 www.csnc.ch solution grading as teacher compass security ag slide 43 www.csnc.ch solution grading as teacher tel +41 55 214 41 60 fax +41 55 214 41 61 teamcsnc.ch www.csnc.ch compass security ag werkstrasse 20 postfach 2038 ch-8645 jona hacking-lab for china compass security ag slide 45 www.csnc.ch problems for chinese users problems with https/ it is not working from everywhere in china problems with openvpnopenvpn it is not working from everywhere in china proposed solutionproposed solution translatingtranslating the owasp top 10 to the chinese language hosting a chinese server compass security ag slide 46 www.csnc.ch future plansplans for china china switzerland ps: must be checked with chinese law! tel +41 55 214 41 60 fax +41 55 214 41 61 teamcsnc.ch www.csnc.ch compass security ag werkstrasse 20 postfach 2038 ch-8645 jona this is a prototype not ready yet! movie: compass security ag slide 48 www.csnc.ch htt