dc2020f - rorschach
This was an attack/defense challenge, part of dc2020f.
Points: 1,000
PCAPs:
download
You may spawn the server:
On your laptop
This challenge may require more resources or special steps: This challenge needs extra CPU and memory, and we don't currently support hosting it on our cloud. Make sure to give it enough resources when running it locally.
- Install docker
docker pull archiveooo/pub:rorschach(docker-saved download)docker run -d --name rorschach archiveooo/pub:rorschach- Local IP:
docker inspect rorschach -f '{{ .NetworkSettings.Networks.bridge.IPAddress }}' - Connect to that IP:5000 —
Remember to
docker rm -fwhen done.
Description
|
This challenge was part of the finals During finals, scoring happens per-round based on attack (steal flags from others) and defense (patch the service to prevent others from pwning you) points. Patching is not currently simulated on the archive, but keep in mind that most services only allowed a limited amount of bytes to be changed from the original binary. Scoring rules for 2019 2020 2021. | |
|
King of the Hill points are also awarded per-round, with only the top-ranking teams getting points. Teams were informed of game events, with redacted info on the last day. In 2019 players could see traffic pcaps only after some time, in 2020 and 2021 they had the choice the stealth their traffic or not (for half the points). | |
My mind, like many minds, is a strange place to be. I have my obsessions. I have my fears. I have hoards of useless knowledge blocking up my otherwise-beautiful neurons. Sometimes, my convolution layers midfire. Sometimes, my activation layers are a bit too ... eager. And, unfortunately, I am easily fooled. Easily mislead with the thing I crave most: FLAGS.
rorschach.py Dockerfile fear fear-wrapper shuffler requirements.txt
Hints
Hint 1
A big inspiration for this challenge was the HopSkipJumpAttack: https://arxiv.org/abs/1904.02144Hint 2
You don't need 100% classification to be effectiveIf you wish, you can contribute more.