Embed Size (px)
Citation preview
December 2012 - Hack & Learn - Train your Brain
Hacking-Lab MagazineIssue 04-2012
Hacking-Lab Remote Security LabHack & Learnwww.hacking-lab.com
1
EditorialFrom E1:
There is an arms race in cyber space. APT is no-longer yet another buzzword, it‘s real and powerful. We need trustworthy cyber ta-lents all over the globe! But tell me; what is trust? „The trait of be-lieving in the honesty and reliability of others and certainty based on past experience“. That‘s why we setup security challenges and research with Hacking-Lab. It should be both, fun and educational and hopefully building up our trust relationsship!
OWASP WebGoat ChallengesAfter HL is providing the free OWASP TOP 10 and Hackademic challenges, we are ready to add all official WebGoat challenges into the arsenal of puzz-les. We are seeking for more OWASP teachers helping with solution grading. If you feel like supporting this with your teacher activity: Please e-mail to the OWASP GEC (global education commit-tee) -> [email protected] or to me [email protected]
Cyber Security Austria Talent Quest
Cyber Security Austria was seeking for the best Austrian cyber talents in 2012. More than 400 young guys have sig-ned-up for the online qualifying where the ten bests were invited to the final in Pamhagen near Vienna. The finalists were between 17 and 22 years of age and I was really impressed! Read more below.
Swiss Cyber Storm 4 (SCS4)
Please flag Thurdsday June 13th, 2013 in your agenda. That‘s when MELANI, Swiss Police ICT and the newly formed Swiss Cyber Storm association is orga-nizing the fourth Swiss Cyber Security conference at the KKL in Lucerne. Read more below.
Hi all,
Hacking is becoming illegal in most parts of the world but on the other hand, there is an arms race in cyber space. How do we get ourself prepa-red for the future? How do we protect or detect APT (advanced persistent threats) while our inner secrets are ex-filtrated to the outside world? There is very little we can do as invidual to stop this. But we should add the attackers methodology, procedures into our own arsenal of tools and prepare ourself in the field of latest attack patterns, pre-vention, defense, forensics and incident response.
Governments are geering up and build up a Cyber Defense Strategy. There is a strong demand for trusted talented ethical security professionals with in-depth knowledge. We are proud to support this mission with OWASP and Hacking-Lab.
Hacking-Lab will run the local Cyber Security Challenges 2013 in Austria and Switzerland where both winning teams are then invited to the final battle in Linz (Austria). Germany (BSI) is informed, but we have not received their decision yet. If you think Spain, France, UK or other countries should participate, drop me a mail! More than welcomed to extend the cyber security challenges to more European coun-tries.
Ivan Bütler, E1, CTO Hacking-Lab
Volunteers Wanted
We are seeking for volunteers. We need more resources with solution grading, chal-lenge development, quality testing, LiveCD development, video tutorials and more. Are you interested to participate? Send an e-mail to [email protected]
Hacking-Lab - Vmware View VDI Solution Have you ever tried Hacking-Labs VDI solution? Using the Vmware View client from the Hacking-Lab LiveCD, you can access Windows XP machines over PCoIP from remote through OpenVPN. Give it a try!
2
Why Vmware View?
The Microsoft operating system plays a major role in todays IT infrastructure. Security challenges with Microsofts IE, Fiddler, ViewState, Office, Word, Excel, Virus and Trojan horses were not possible in Hacking-Lab before. Not to forget all the forensic challenges we have, that are mostly Windows related. That‘s why we have setup a Vmware View environment. Accessing the XP workstation is easy! Boot up the LiveCD, connect with OpenVPN and then connect with vmware view client.
How does it work?
Vmware View is a so-called VDI (Video Desktop Integration) solution. Using the low-bandwith protocol (PCoIP) of Vmware View, you are kind of remote logging into a the provisioned Windows XP machine from remote (through VPN). The VMwa-re connection manager is managing the free pool of worksta-tions, responsible for 10 provisioned workstations.
1) get and install the latest LiveCD (media.hacking-lab.com)2) boot the LiveCD; click on the vmware view icon (top toolbar)3) connect to the pre-configured view connection manager4) use hacker10, hacker11, hacker12, ... as username5) use „compass“ as password6) double-click on the HL client pool7) wait until the XP screen appears in your LiveCD8) start using the XP machine
If all 10 XP machines are taken, then you cannot login into a VDI host. Keep this in mind. You must wait until someone is leaving the XP host.
Tools on the XP machine
We are not packing and deploying all sorts of available security tools to the XP machine. But we will carefully install and deploy MS tools required for MS related challenges (e.g. CrypTool or Office tools). If you are missing a tool on the VDI machine, ple-ase don‘t hesitate and send us your request.
PCoIP versus RDP
The provisioned XP machines are *NOT* available through RDP on port 3389. The connection manager in Vmware View must somehow decide how many workstations are taken from the pool of machines. That‘s why you have to use the Vmware view PCoIP enabled client. Use the provided LiveCD and it will work!
Personalization of XP workstations
The provisioned XP workstation will be deleted after your lo-gout or disconnect. Vmware view is then setting up a new, fresh XP machine for you. In other words, don‘t store your re-search results on the Desktop of the XP machine, because it will be erase automatically. Make sure you are submitting HL solutions before you logout or disconnect.
VMWARE VIEW ICON on LiveCD taskbar
Swiss Cyber Storm - The Place to meet the Top Cyber Talents!
MELANI, the Swiss Reporting and Analysis Centre for Information Assurance is addressing the security of internet com-puter systems and protection of critical national infrastructures. Chair of MELANI, Pascal Lamia, confirmed the MELANI patronage with Swiss Cyber Storm, together with the patronage of the Swiss Police ICT association. Swiss Cyber Storm will host keynote speakers in the field of anticipation, prevention and mitigation for National Cyber Threats.
First; The lecturing part of the conference will give decision makers of critical infrastructures latest information about National Cyber Security. This information is not only essential for criticial infrastructures - because APT and cyber threats are not stopping from attacking other industry sectors. The conference is the place to meet for professional cyber security specialists and decision makers in general.
Second; between February and May 2013, SCS4 organizes an online qualifying cyber challenge competition. The best security researchers will then being invited to the final round at the SCS4 conference in Lucerne, where the finalists must proof their skills and social competence. The finalists will than have the option to team up the Swiss delegation for the first European Cyber Security Challenge 2013 in Linz, Austria. This is an awesome opportunity for all HL users!
Swiss Cyber Storm 4 Security Conference
Swiss Cyber Storm 2013 (SCS4)
DATE: June 13, 2013PLACE: KKL Lucerne, SwitzerlandPROGRAM: Lecturing Talks & Cyber Challenge
3
ABOUT E1
Venue: KKL Lucerne / 13. June 2013
LiveCD Creation ProcessBased on some free available LiveCD scripts and packages, we have setup a cool LiveCD development process. This makes it ease to deploy new livecd versions - a process that does not take more than 30 minutes. A new livecd is always based on a previous ISO image. Then it works like this
1) Start „create_livecd.sh“ shell script :: the script is unpacking the given ISO image :: the script is updating the content in a chroot environment :: fully automated kernel and Debian package updates :: then the script generates the resulting new release of the ISO image
2) We are then taking this new ISO file and .. :: deploy the naked ISO to the media server :: installation of the ISO into a new VirtualBox appliance -> installation of guest tools, installation of Eclipse workbench and other programs -> exporting resulting VirtualBox installation into a VirtualBox OVA file -> deploying the resulting VirtualBox OVA file to the media server :: installation of the ISO into a new VMware workstation appliance -> installation of guest tools, installation of Eclipse workbench and other programs -> converting the resulting VMware installation into a VMware OVA file -> deploying the resulting VMware OVA file to the media server
LiveCD Update Service
There is one major disadvantage of this updating concept. Every user must download the full file with every update. User changes are lost. That‘s why Pascal and Josh, two HL volunteers are working on an LiveCD update client-server application.
Update Concept
The new LiveCD is having a HL update icon in the top taskbar. Updates ware then received through:
1) Debian repo (svn update, upgrade)2) HL SVN repo (HL specific files and programs)3) OtherSVN repo (e.g. metasploit SVN)
We are working hard on this. Hopefully we will have it ready in Q1 2013. Thanks Josh and Pascal for your great work!!!!! E1
LiveCD Changes
4
ABOUT E1
Upcoming Exam & Certification in 2013Upcoming HL exams and certifications
With more than 250 online security challenges, HL is working hard on its own Security Competence exam and certification service. Hacking-Lab users should kind of proof their knowledge and expertise and get certified in their core security discipline. This added value shall help you boost your it security career.
The packages below are not ready yet (unfortunately). It is an outlook of what we are planning....
5
Penetration Testing Packages
Mobile Security Packages
Upcoming Exam & Certification in 2013
6
Forensics Package
OS X Security Packages Applied Crypto Package
Reverse Engineering
00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010
00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001
10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010
10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010
01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010
10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101
10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010
10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000
00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001
10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010
00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010
00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 101101010001 010100101010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 0000101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 100101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 10101001 001010010001010 10111010 01010001 01010010 00101110 1010100110001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001
00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010
00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001
10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010
10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010
01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010
10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101 00101010 10101001 00101000 10001010 10111010 01010001 01010010 00101110 10101001 11010101
fb.com/TheHackingLab twitter.com/TheHackingLab
BECOME a SECURITY
SPECIALISTWORLD WIDE INTERNET LAB
• 10‘000 members• 250+ online security challenges• Official OWASP TOP 10 Lab• Free wargames and puzzles
1. Sign Up Today 2. Hack the system & exploit 3. Describe vulnerability and mitigation! 4. Receive points! Increase your skill level TR
AIN
YOUR
BRA
IN
www.hacking-lab.com
Download Live
CD: h
ttp://
med
ia.h
acki
ng-la
b.co
m
Become a Security Specialist
7
ABOUT E1
Become a Hacking-Lab Partner
8
ABOUT E1
Merry Christmas 2012
M3rrY Xm@s
Thank you for your valuable support and feedback. We wish you and your familiy some quiet days and wish you a Happy New Year!
Have a safe day !
E1
9
ABOUT E1
M3errY Xm@s decrypt me
Compass Security AG, www.csnc.ch
L_1_xmaskarte_3.indd 1-2 27.09.12 16:02
