Forum Discussion
JRahm
Admin
AdminCapture the Flag!
Hey there community...are you ready to capture the flag?
We'll get the competition dates nailed down in the next week, but here are the details:
This CTF will be an individual exercise host...
JRahmAdmin
AdminCongrats AlexBCT on finishing first in our kickoff CTF! More details to come on Tuesday's Top5. Would love to hear from you (and the others who competed!) on what you thought of the challenge, the environment, the registration process, etc. We'll do more of these in the future and refine as we go.
nathe
Cirrocumulus
CirrocumulusHey Jason, I thought it was a great challenge so kudos for putting the CTF on.
From a registration point of view it was very straightforward and I got onto the environment pretty easily. The environment itself was pretty self-explanatory too, so I was able to get right on to the fun and games very quickly.
Juice Shop was a great choice too, as it's got plenty of challenges, of all levels, and there's enough documentation online to provide handy hints, and hold your hand through some of them. This means all types of people can try their hand, which is what you want really. It reminded me of my WAF building days (f5 ASM of course) when I would try and craft exploits to get round the defences. I was very rusty, but enjoyed the challenge and the chance to learn, or re-learn, hacking skills.
From a tools perspective, I used mainly Chrome Dev tools and OWASP Zap. With more time I would've probably made use of the Kali instance.
I did get an error when I loaded the site within Mozilla Firefox, wish I had taken a screenshot but it seemed to suggest it wasn't 100% compatible (may have been just for me).
Great work all. I just wish I had had more time, but that was mainly down to my own diary than the time allocated.
Nathe