Extra Reading
https://ctfs.github.io/resources/topics/steganography/invisible-text/README.html
1 Like
are you planning to use this to for the monthly ctfs? could we do this in a way that leaves consistent inward network only facing ctf challenges that people can pop in and out and sandbox them?
We already are in a way.
There’s an air gap pi cluster we bring in that runs as a simulated environment. Under the hood it’s running the same communitygrid stack we have in github but goes one further by building the challenge containers at the event and uses a customized honey pot image for the CTF that we developed.
All we need to do the day before the event is reflash the sd card with the latest hypriot then drop the user-data for cloud init on the sd card. Hookup an temporary uplink with internet access and let the cluster provision itself. We’ll get a notice from the TICK stack that things are good and pull the internet then the event is ready.
Everything else just runs from ctf.dallasmakerspace.org.
BTW that reminds me we are looking for a few good devs to jump on https://github.com/Dallas-Makerspace/docker-fbctf and help fix up a few things. Particularly the db_archive service and the upstream https://github.com/facebook/fbctf to make it more standalone and easier than wordpress to setup.
1 Like