Author Topic: Hacking competition?  (Read 14591 times)

0 Members and 1 Guest are viewing this topic.

Offline Sidoh

  • x86
  • Hero Member
  • *****
  • Posts: 17668
  • MHNATY ~~~~~
    • View Profile
    • sidoh
Re: Hacking competition?
« Reply #15 on: February 08, 2009, 12:21:55 AM »
I got openvpn working at some point (I think over last spring break or something?), but I wouldn't be helpful other than to tell you it's pretty well documented. :)

Offline iago

  • Leader
  • Administrator
  • Hero Member
  • *****
  • Posts: 17928
  • Fnord.
    • View Profile
    • SkullSecurity
Re: Hacking competition?
« Reply #16 on: February 08, 2009, 03:13:01 AM »
Heh, thanks. It looked pretty easy from a quick look at the manpage. I'll just have to send people .conf files that point to my private network.

Offline iago

  • Leader
  • Administrator
  • Hero Member
  • *****
  • Posts: 17928
  • Fnord.
    • View Profile
    • SkullSecurity
Re: Hacking competition?
« Reply #17 on: September 22, 2009, 02:19:02 PM »
For what it's worth, I haven't forgotten about this. I'm hopefully going to have the hardware I need in the next little while.

Offline Tuberload

  • Neophyte
  • x86
  • Hero Member
  • *****
  • Posts: 530
    • View Profile
Re: Hacking competition?
« Reply #18 on: September 23, 2009, 06:00:05 PM »
Incidentally, I'm well aware that nobody doing this will be experts (or even amateurs), so I'll post a list of tools and some basic theories at the outset.


Could you post the list of tools and basic theories now? That way I can begin allocating my free time for research purposes.
I am prepared to be ridiculed for what I believe, are you?

Offline iago

  • Leader
  • Administrator
  • Hero Member
  • *****
  • Posts: 17928
  • Fnord.
    • View Profile
    • SkullSecurity
Re: Hacking competition?
« Reply #19 on: September 23, 2009, 06:10:12 PM »
Incidentally, I'm well aware that nobody doing this will be experts (or even amateurs), so I'll post a list of tools and some basic theories at the outset.


Could you post the list of tools and basic theories now? That way I can begin allocating my free time for research purposes.

Hmm, I can't list too much without giving away a lot (I have a pdf I can send that is basically a guide, but it's also basically a walkthrough :) ). I'll list some stuff, though!

My favourite tools (and the ones you need for this) are:
* Nmap
* Metasploit
* sqlmap
* rainbowcrack (rcrack) -- you only need the 'alpha' tables, which are <1gb, not anything else. I think l0pht puts out a live cd for cracking passwords, too

The theories:
* Port scanning
* Network discovery
* Web vulnerabilities (sql injection, path traversal, cross-site scripting [not required, but good to know], local/remote file include)
* Exploits (metasploit -> how to use the exploits, different payloads [meterpreter])
* Password cracking (w/ rainbow tables)
* Pass-the-hash (w/ metasploit)

That should put you in a good position.

I'm thinking I should do a basic one first to get people going, give out a prize for that one, post the theories used, then do my full contest. Thoughts on that?

Offline Camel

  • Hero Member
  • *****
  • Posts: 1705
    • View Profile
    • BNU Bot
Re: Hacking competition?
« Reply #20 on: September 23, 2009, 07:36:51 PM »
I was talking with my boss about this thread today. He says you need to get laid, iago. :P

<Camel> i said what what
<Blaze> in the butt
<Camel> you want to do it in my butt?
<Blaze> in my butt
<Camel> let's do it in the butt
<Blaze> Okay!

Offline iago

  • Leader
  • Administrator
  • Hero Member
  • *****
  • Posts: 17928
  • Fnord.
    • View Profile
    • SkullSecurity
Re: Hacking competition?
« Reply #21 on: September 23, 2009, 10:28:34 PM »
I don't really understand what you mean.

Keep in mind that this is my job. I use this type of demo to teach people how to hack and to demonstrate to programmers/management what hackers do. That's my job, and I love doing it, people appreciate learning it, and I get paid decently for my skills.

The fact that I'm planning to share some of the work I've done with the community doesn't really change anything.

Offline Dale

  • Hero Member
  • *****
  • Posts: 660
  • LOL IM COOL
    • View Profile
Re: Hacking competition?
« Reply #22 on: September 24, 2009, 12:07:30 AM »
sounds fun to me!
Quote
[1:53:54 PM] Ersan: i could've written iago's code in 20 minutes
Quote
Joetheodd: I just gave myself the right arm workout of the century.
DMSyph: Uh ew?
Joetheodd: Oh my God.. I just realized what that probably could mean..
Quote
Kitty: Well honey, Canadians don't matter.
Dude, peanutbutter and jelly is like...1000000x more intense than a Volvo.

Offline Camel

  • Hero Member
  • *****
  • Posts: 1705
    • View Profile
    • BNU Bot
Re: Hacking competition?
« Reply #23 on: September 24, 2009, 03:34:53 AM »
I find it pretty interesting too. I think he doesn't approve of nerding during free time.

<Camel> i said what what
<Blaze> in the butt
<Camel> you want to do it in my butt?
<Blaze> in my butt
<Camel> let's do it in the butt
<Blaze> Okay!

Offline iago

  • Leader
  • Administrator
  • Hero Member
  • *****
  • Posts: 17928
  • Fnord.
    • View Profile
    • SkullSecurity
Re: Hacking competition?
« Reply #24 on: September 24, 2009, 08:40:04 AM »
I find it pretty interesting too. I think he doesn't approve of nerding during free time.
I do a lot (in fact, most) of it at work. I use it to train new students, and I use it in presentation to our departments. :)

I do a ton of work in my free time, though, too. Like, I'm one of the top Nmap contributors right now, and have been for awhile. Speaking of which...

Tuberload: When you look things up, make sure you learn how to use the Nmap Scripting Engine (NSE), especially the scripts written by the guy named "Ron". They're awesome. :)

Offline Tuberload

  • Neophyte
  • x86
  • Hero Member
  • *****
  • Posts: 530
    • View Profile
Re: Hacking competition?
« Reply #25 on: September 24, 2009, 08:32:03 PM »
Tuberload: When you look things up, make sure you learn how to use the Nmap Scripting Engine (NSE), especially the scripts written by the guy named "Ron". They're awesome. :)

I'm setting my printer up now so I can start printing educational material.
I am prepared to be ridiculed for what I believe, are you?

Offline Camel

  • Hero Member
  • *****
  • Posts: 1705
    • View Profile
    • BNU Bot
Re: Hacking competition?
« Reply #26 on: September 24, 2009, 09:47:19 PM »
Paper kills trees, you savage.

<Camel> i said what what
<Blaze> in the butt
<Camel> you want to do it in my butt?
<Blaze> in my butt
<Camel> let's do it in the butt
<Blaze> Okay!

Offline Tuberload

  • Neophyte
  • x86
  • Hero Member
  • *****
  • Posts: 530
    • View Profile
Re: Hacking competition?
« Reply #27 on: September 24, 2009, 10:33:30 PM »
I do what I can.
I am prepared to be ridiculed for what I believe, are you?

Offline AntiVirus

  • Legendary
  • x86
  • Hero Member
  • *****
  • Posts: 2527
  • Best
    • View Profile
Re: Hacking competition?
« Reply #28 on: September 24, 2009, 10:57:10 PM »
This does sound really interesting.  I would love to try and give it a shot, but I don't think I have time. : (
The once grove of splendor,
Aforetime crowned by lilac and lily,
Lay now forevermore slender;
And all winds that liven
Silhouette a lone existence;
A leafless oak grasping at eternity.


"They say that I must learn to kill before I can feel safe, but I rather kill myself then turn into their slave."
- The Rasmus

Offline Towelie

  • pwnstar
  • x86
  • Hero Member
  • *****
  • Posts: 4876
    • View Profile
Re: Hacking competition?
« Reply #29 on: September 25, 2009, 06:05:03 PM »
doing this on a DoD network... I might pass.