Intro to CTFs Akash Trehan @cod3maxx | codemaxx.github.io CSE Cybersecurity Club

CTF - What? ➢ Capture the Flag ➢ Set of challenges to hone and show off your problem solving and hacking skills. ➢ Learn to think like a hacker!

Flags ➢ Primary aim of the game ➢ Hack stuff to get flags ➢ Flags = Points = Bragging rights ➢ Typical looking flags ○ CTF{4r3_y0u_w4ch1ng_cl0s3ly?} ○ Flag{cafebabedeadbeef1234567890123489}

Types of CTFs

Jeopardy

Attack-Defense

1. Vulnerability discovery 2. Exploit them

Preparation ➢ Wargames ○ http://overthewire.org/ ○ http://www.hackthissite.org/ ○ http://smashthestack.org/ ○ etc... ➢ Dead CTFs ○ http://picoctf.com/ ○ https://backdoor.sdslabs.co/ ➢ Reading security blogs and books ➢ Read writeups from previous ctfs and wargames

More resources... ➢ https://ctftime.org/ ○ List of upcoming CTFs ○ Results of previous ones ○ Links to writeups ➢ http://captf.com/practice-ctf/

Questions?

Demos