- A CTF (Capture the Flag) is a cybersecurity competition where players must “hack” their way through different challenges in order to retrieve a flag, which is then submitted for points, allowing them to climb up the leader board. CTF Overview:
- A set of different tasks, usually providing players with the freedom of choosing which challenge to start off with. Jeopardy Main Categories:
- The player has to find and exploit vulnerabilities in a web application (XSS, SQLi, RCE, etc.)
- Forensics is a key area of blue teaming and CTFs which includes aspects such as packet analysis, image analysis or in some cases location recovery.
- RE mostly involves getting a compiled program and then deconstructing it into a far more readable format in order to get the flag.
- Binexp revolves around finding and exploiting vulnerabilities in programs, and get the flag. The best thing about binexp is that there are hundreds of possibilities and vulnerabilities to get the flag, be it through function modification, getting a shell or anything else.
- This category is in relation to finding some vulnerabilities within the overall cryptographic structure provided, be it RSA, AES, etc.
- Making use of given data or clues and then taking into use Open source data online to investigate through the web in order to find the intended target.
- This category usually contains revolves around finding hidden data within different forms of media, be it music, pictures, videos, etc.
Anything other than the mentioned categories, and the difficulty will always vary.
-
- ctf events calendar and team ratings
-
- beginner friendly ctf platform
Watch this Space for More XD