diff --git a/doc/2011-03-TF3/survey-results.html b/doc/2011-03-TF3/survey-results.html new file mode 100644 index 0000000..b80a47d --- /dev/null +++ b/doc/2011-03-TF3/survey-results.html @@ -0,0 +1,328 @@ + +
Class | +instructor | +classroom | +class-content | +contest-setup | +contest-ambiance | +contest-network | +contest-lanl | +contest-sandia | +contest-vendors | +hotel | +Comments |
---|---|---|---|---|---|---|---|---|---|---|---|
net | +★★★ | +★★★ | +★★★ | +★★★ | +★★★ | +★★★ | +★★★ | +★★★ | +★★★ | +★★★ | +|
net | +★★★ | +★★ | +★★ Useful techniques, but no practical training on how to identify what data should be flagged for deeper analysis (e.g. how do you find the data that you will then try to crack) | +★★ | +★★ | +★★ | +★★ | +None | +★★★ Solera was actually practical as it walked you through part of an investigation | +★★ albuquerque would be more convenient | +It would be nice to take a more practical approach to the training and exercise. E.g. Here are some things you would do to identify areas of concern and then go into the investigation of the data. Exercises could be less "random" and tied together better. |
host | +★★★ Everyone was awesome. Great job guys! | +★★ If you were in the back of the room the board was little hard to see. | +★★★ | +★★★ | +★★★ | +★★ | +★★ The challenges were tough. However, the answer server could use some improvement in the way it accepts answers, or make it more clear what format it needs to be in. A lot of time was spent trying to enter the answer in the right syntax after we got it. | +★★★ | +★★★ | +★★ The food was good. The rooms were a tad small. | +Overall the conference was very good. |
net | +★ 1% instruction, more of a sink or swim- Here ya go. I thought this was a training course. | +★★ | +★ There wasn't much teaching. Seemed to be a exercise of what you already knew. Signed up to learn. Moved to Malware RE the second day were they were teaching. | +★★ Would be better with some elbow room. 7 laptops and a desktop on a small round table doesn't work so well. | +★★★ Just loud enough, Chairs were uncomfortable | +★★★ | +★★ Would have better to have a true capture the flag instead of puzzles. Maybe each team gets a server and must protect and attack others. | +★★ | +★★ | +★★★ | +|
+ | ★★ too many to give an accurate judgement. some good, some so-so | +★★ worked well. Noisy AC hurt hearing at time. | +★★ Slides were way to crowded and ahrd to read. If you were not familiar with the tools, the fast clicking through windows hurt. | +★★★ | +★★ understanding the voince from beyond over the music was difficult. Probably fine of you live in a leet underworld and are used to the accent. | +★★★ | +None forensics puzzles needed to be replaced. Answers needed verificaion and format specified.
|
+None Limiting it to 1 thing being worked on at a time for the group was a bad design. Loosing points as others attempt to work on other pieces. | +★★ Finding your way through solera would be easier if it was commonly used. Attempting to find what they anted through a gui is much more difficult that what I normally do vai dumping pcap. | +★★ A strange but interesting place. needed increaed water pressure if you want a hot shower. | +With the forensics puzzles, having the same for the classroom vs the contest helped those that took close notes. There is way too much use of Encase and limits on how far yoyu can get if you are unfamiliar with it. |
net | +★ 1% instruction, more of a sink or swim- Here ya go. I thought this was a training course. | +★★ | +★ There wasn't much teaching. Seemed to be a exercise of what you already knew. Signed up to learn. Moved to Malware RE the second day were they were teaching. | +★★ Would be better with some elbow room. 7 laptops and a desktop on a small round table doesn't work so well. | +★★★ Just loud enough, Chairs were uncomfortable | +★★★ | +★★ Would have better to have a true capture the flag instead of puzzles. Maybe each team gets a server and must protect and attack others. | +★★ | +★★ | +★★★ | +|
host | +★★★ | +★★ | +★★★ | +★★ | +★★★ | +★★ | +★★★ | +★★★ | +★★ | +★★ | +Please... somewhere with faster, more reliable internet next year. |
host | +★★★ | +★★ | +★★★ | +★★ | +★★★ | +★★ | +★★★ | +★★★ | +★★ | +★★ | +Please... somewhere with faster, more reliable internet next year. |
host | +★★★ | +★★ | +★★★ | +★★ | +★★★ | +★★ | +★★★ | +★★★ | +★★ | +★★ | +Please... somewhere with faster, more reliable internet next year. |
net | +★★ | +★★ | +★★★ If students should use python3, then all the examples should be in python3 | +★★★ | +★★ | +★★★ | +★★★ | +★★★ | +★★ | +★★★ | +|
none | +None Didn't attend | +None Didn't attend | +None Didn't attend | +★★★ | +★★★ | +★★★ | +★★★ | +None Didn't focus on it | +None Didn't focus on it | +★★★ | +More stuff like WOPR / octopus / pwnables / printf! |
host | +★★ The portions of the instruction that were lecture only could have been improved by having students follow along and actually participate. For example, instead of teaching Windows Registry purely by lecture, have students open Regex or examine the Registry using EnCase. | +★★★ Good facilities and connections. No complaints. | +★★★ Aside from the pure lecture portions, the content was good. Exactly what I expected when signing up for a forensics course. Good that not a lot of time was devoted to teaching the basics of the programs, like EnCase. | +★★★ Good facilities and connections. No complaints. | +★★ Would it kill you to play a little Smokey Robinson? ;) | +★★★ No complaints. | +★★★ Awesome puzzles and contests. So much to keep everyone busy. Maybe a little too much material for smaller teams to even make a dent in scoring points. My only complaint is the way in which answers are required to be formatted. See the General Comments section for more detail. | +★★ I didn't really participate much in the Sandia Jeopardy business. From what I saw, it looked good. | +★★★ Good way to show off their products without it being just a sales pitch. The puzzles they provided were great. | +★★★ Nice. No complaints. | +Participants should not have to decipher the format of the answer for the questions on their own. Dates/times entries either need to be in a precise, specified format or the system should be able to taken input and determine whether or not the correct answer is known. Whether or not an answer is correct should be determined by upper or lower case letters. The scoring systems should be able to compare the data submitted and normalize the input and compare it to the correct answer. |
net | +★★ | +★★★ | +★★★ | +★★★ | +★★ Not a fan of house music, other than that it was great | +★ serious issues, I do not know what to tell you about how to fix it but it was "spotty" at best | +★★ more HINTS for newbs | +★★ Good, but got complicated with the NAS and the storage and the file management and stuff, that could be implemented better | +★★★ The fireeye got hard fast, which means I did not finish, but it also means that their system didn't get totally utilized right? | +★★★ the laFonda was pretty awesome actually | +I hope eI get to keep coming to these, this has been a great culmination of the first few years of my experience as a cyber analyst and it was great to see that I am indeed actually learning something. |
+ | None | +None | +None | +None | +None | +None | +None | +None | +None | +None | +|
net | +★★★ | +★★ | +★★★ | +★★★ | +★★★ | +★★★ | +★★★ | +★★★ | +★★★ | +★★★ | +This is really great material and the puzzles are very well presented. The entire exercise is extremely well organized. + +This lacking was my background knowledge. + +Next time I am going to be a lot more prepared for the challenges. + +This was my first ever Capture the flag and participation in a exercise like this but you certainly have found a permanent participant. + +A+++++ will do it again. + +Tracerfire starts from where all the text books ends. + |
none | +None Did not attend the class | +None Did not attend the class | +None Did not attend the class | +★★★ | +★★ Music was a little loud and repetitive (it's techno!) | +★★★ | +★★★ Learned tons! | +None Did not play these ones | +★★★ Solera was interesting | +None Did not use the hotel | +First time at a capture the flag competition. Learned a lot! |
+ | ★★★ The Dr was good | +★★ seats sucked | +★★★ good stuff | +★★ tables, eh. room ok | +★★ purdy good | +★★ worky most of the time | +★★ | +★★ | +★ Solera example was weak | +★★ bar good. room ok. | +Thanks for the hard work! A little more intro to the contest and expectations for the n00bs would be good.... |
net | +★★ Not enough instructing. Mostly just "here's puzzles' solve them. | +★★ | +★★★ Good material to learn on; just need more teaching, and more response to questions. | +★★ | +★★ | +★ Terrible. I often had to reload a dozen times to submit a solution. Also, being unable to reach the internet made this very frustrating and much less fun. | +★★★ Great material. Wish we had been introduced better to actually doing things; most categories my team had no idea how to even begin on, and contest time was not an environment that allowed us to learn in. | +None | +None | +None | +The contest material was really good, but nobody on my team knew how to approach (or even find!) most of it. Maybe this would be fixed by better team distribution, but it would be likely that someone skilled would just take over, instead of teaching other people. Thus, I ended up feeling really frustrated that I wasn't actually learning anything, and just feeling punished for the things I didn't know or couldn't do (which was most of the contest). |
net | +★★ Paul clearly knows his stuff; however, his explanations weren't always clear. | +★★ difficult to see the few onscreen examples | +★★ it wasn't lame, but didn't find the info useful for the challenge days. :( | +★★ room was fine. tables were a bit small. Really like the provided forensic workstations with pre-loaded tools. | +★★ light was better than last year's event. Music wasn't great on day 1, "felt the rhythm" on day 2. | +★★★ awesome | +★★ overall good. some stuff was just unrealistic | +★★ overall good. some stuff was just unrealistic...and some was just funny! | +★★ really liked the idea of vendors offering their own challenges! I didn't get to work on them very much though (other team members) | +★★★ location was great! lots of choices for dinner and lunch downstairs was spot-on every day! the breakfast food was lame though | +I think Tracer should foster more "forced" interaction--the idea of information sharing is key...beyond the event, within our real jobs. I would like better or just more classroom hours. Maybe a full week of class room and a weekend of challenges would be cool. thanks for all the hard work! |
none | +★★ NA | +★★ NA | +★★ NA | +★★★ | +★★★ | +★★ | +★★★ | +★★★ | +★★ can't say | +★★ NA | +|
net | +★ Come on, we expected some one teach something otherwise all those questions can be found through Internet. | +★★ | +★★ | +★★ | +★★ | +★★★ | +★★★ | +★★★ | +★★★ | +★★ | +I dont think I learn alot |
host | +★★★ | +★★ | +★★ | +★★ Several inconvenient network outages. | +★★★ | +★ | +★★ | +★★ | +★★ | +★★★ | +Fun competition. Could have used more communication among the people who wrote the questions. |
host | +★★ Varied. Not having the slides the first day made following along very difficult. | +★★ Screens were sometimes hard to see and chairs weren't comfortable. | +★★ Too Windows and Encase centric to justify another trip. | +★★ No real issues except the chairs. | +★★★ No complains here. | +★★ Didn't have any major issues and Internet access table was very fast. | +★★ Wasn't really aware there was different content between the sites except for some of the instructors. | +★★ | +★★ Didn't attempt | +★★ All the shops close at 5pm so there's not much to do except eat and drink. Hotel WiFi was really slow. No vending machines?! | +Learned some interesting things, met some very interesting people, and got a different perspective on security, but can't justify another trip for myself or a fellow system administrator with the content and exercises used this year. |
net | +★★★ | +★★★ | +★★★ Problems were hard I learned a lot. | +★★★ | +★★★ | +★★★ | +★★★ | +★★★ | +★★★ | +None | +The network ran well. problems were hard. thanks for the effort. |
malware | +★★★ | +★★ | +★★★ | +★★ uncomfortable chairs | +★★ music was a bit too loud | +★★ better access to internet | +★★★ first time, so it must be great | +★★★ see above | +★★ didn't touch it, so i have no idea | +★★ did not stay in hotel | +
Team | ID |
---|---|
" - escape < $i - echo " | $i |
It looks like the server isn't set up for self-registrations." echo "Go talk to someone at the head table to register your team.
" else echo "Team name: $team
" echo -n "" - if /opt/mcp/bin/addteam "$team"; then + if $CTF_BASE/mcp/bin/addteam "$team"; then echo "
Write this hash down. You will use it to claim points.
" else echo "Oops, something broke. Better call Neale." diff --git a/packages/multicaster/service/multicaster/run b/packages/multicaster/service/multicaster/run index 9356c83..0ed554b 100755 --- a/packages/multicaster/service/multicaster/run +++ b/packages/multicaster/service/multicaster/run @@ -4,4 +4,4 @@ exec 2>&1 IP=$(dbip -a) -exec setuidgid ctf /opt/multicaster/bin/multicaster ff15::62c 1580 $CTF_BASE/state/news.html +fi +ln -sf $CTF_BASE/state/news.html $CTF_BASE/www + +cd $CTF_BASE/www +exec tcpsvd -u nobody ${IP%/*} 80 $CTF_BASE/packages/p2/bin/eris -c. diff --git a/packages/p2/www/credits.html b/packages/p2/www/credits.html deleted file mode 100644 index 280f2ff..0000000 --- a/packages/p2/www/credits.html +++ /dev/null @@ -1,51 +0,0 @@ - - - -Dirtbags Capture the Flag is brought to you by:
- -And by:
-Parts of this contest were inspired by:
-Lastly, this contest would not exist were it not for hundreds of - thousands of lines of code from free software authors around the - world, including:
-- This event would not be possible without the help of many people. - Thank you, people. -