Difference between revisions of "CTF Resources"
Jump to navigation
Jump to search
m (→Exercises) |
m (→Misc) |
||
| (45 intermediate revisions by the same user not shown) | |||
| Line 1: | Line 1: | ||
==Links== |
==Links== |
||
| − | * https://ctftime.org |
+ | * [https://ctftime.org CTF TIME] |
| + | * [https://trailofbits.github.io/ctf/index.html CTF Field Guide] |
||
| + | * [http://captf.com/calendar/ CTF Calendar] |
||
| + | * [http://www.endgame.com/blog/how-to-get-started-in-ctf.html How to get started in CTF?] |
||
| + | |||
==Archives== |
==Archives== |
||
* http://shell-storm.org/repo/CTF/ |
* http://shell-storm.org/repo/CTF/ |
||
* https://ctf.fluxfingers.net/ |
* https://ctf.fluxfingers.net/ |
||
| + | * https://github.com/pwning/plaidctf2014 |
||
| + | * http://captf.com/ |
||
| + | |||
==Writeups== |
==Writeups== |
||
| + | * https://github.com/pwning/public-writeup |
||
* https://github.com/ctfs/write-ups/ |
* https://github.com/ctfs/write-ups/ |
||
* http://eindbazen.net/ |
* http://eindbazen.net/ |
||
| + | * http://blog.dragonsector.pl/ |
||
| + | * http://mslc.ctf.su/ |
||
| + | * http://koala.cs.pub.ro/hexcellents/wiki/ |
||
| + | * http://communaute.sstic.org/ Challenges SSTIC and writeups for the oldest ones |
||
| + | |||
==Exercises== |
==Exercises== |
||
* http://exploit-exercises.com/ |
* http://exploit-exercises.com/ |
||
| + | ** https://code.google.com/p/protostar-solutions/ |
||
* https://www.wechall.net/ |
* https://www.wechall.net/ |
||
* https://hack.me/ |
* https://hack.me/ |
||
| − | * http://ioarm.smashthestack.org/ ( |
+ | * http://ioarm.smashthestack.org/ (ARMv7) |
| + | * http://w3challs.com/ (fr/en) |
||
| + | * http://www.root-me.org/ (fr) |
||
| + | * http://overthewire.org/wargames/ |
||
| + | * http://ensiwiki.ensimag.fr/index.php/Portail:SecurIMAG_Ensimag_IT_security_club/Challenges |
||
| + | * http://treasure.pwnies.dk/ |
||
| + | * http://challenges.re/ |
||
| + | * http://cryptoctf.com/ |
||
More at https://www.wechall.net/active_sites |
More at https://www.wechall.net/active_sites |
||
| + | <br>More at http://captf.com/practice-ctf/ |
||
==Tutos== |
==Tutos== |
||
* http://www.wirelesspentest.com/ |
* http://www.wirelesspentest.com/ |
||
| + | * http://www.bases-hacking.org/ (fr) |
||
| + | * https://sploitfun.wordpress.com/2015/06/26/linux-x86-exploit-development-tutorial-series/ |
||
| + | * https://dhavalkapil.com/blogs/Shellcode-Injection/ |
||
| + | |||
==Misc== |
==Misc== |
||
* https://github.com/ctfs/resources/ |
* https://github.com/ctfs/resources/ |
||
| + | * http://koala.cs.pub.ro/hexcellents/wiki/ Hexcellents CTF Knowledge base |
||
| − | ==Here== |
||
| + | * http://alexnisnevich.github.io/untrusted/ nice online game to hack in JS on 21 levels |
||
| + | * http://www.blackhatlibrary.net/ |
||
| + | * http://polyhack.org/ (FR) |
||
| + | * http://pwntools.readthedocs.org/ |
||
| + | ** https://github.com/binjitsu/binjitsu |
||
| + | * http://hackertainment.net/ |
||
| + | * https://binjitsu.readthedocs.org/en/latest/ |
||
| + | * [https://github.com/mubix/post-exploitation/wiki/Linux-Post-Exploitation-Command-List Linux Post Exploitation Command List] |
||
| + | * http://j00ru.vexillium.org/blog/24_03_15/dragons_ctf.pdf |
||
| + | * http://libcdb.com/ |
||
| + | * https://github.com/SecurityInnovation/research/blob/master/presentations/2015-04-15%20The%20CTF%20Toolbox%20-%20Marcus%20Hodges%20-%20Tom%20Samstag.pdf |
||
| + | * https://github.com/orangetw/My-CTF-Web-Challenges Repo of CTF challenges made by Orange. It contains challs's source code, writeup and some idea explanation. |
||
| + | |||
| + | ==Organizing a CTF== |
||
| + | * https://ctftime.org/for-organizers/ |
||
| + | * https://github.com/pwning/docs/blob/master/suggestions-for-running-a-ctf.markdown |
||
| + | * http://ctf.hcesperer.org/orga.html |
||
| + | * http://events.ccc.de/congress/2005/fahrplan/events/428.en.html |
||
| + | ** http://events.ccc.de/congress/2005/fahrplan/attachments/682-Slides_HostingAHackingChalange.pdf |
||
| + | ** http://events.ccc.de/congress/2005/fahrplan/attachments/562-Paper_HostingAHackingChallenge.pdf |
||
| + | * https://stripe.com/blog/ctf3-architecture |
||
| + | * https://www.usenix.org/system/files/conference/3gse14/3gse14-chung.pdf |
||
| + | * [https://www.facebook.com/notes/facebook-ctf/facebook-ctf-is-now-open-source/525464774322241/ Facebook CTF is now Open Source], cf https://github.com/facebook/fbctf |
||
| + | |||
| + | ==On this wiki== |
||
* [[Reverse-Engineering]] |
* [[Reverse-Engineering]] |
||
| − | * [[ |
+ | ** [[IDA Pro]] |
| + | * [[Hack.lu Writeups]] |
||
| + | * [[NDH Writeups]] |
||
| + | * [[NSC Writeups]] |
||
* [[Security packages]] |
* [[Security packages]] |
||
| + | * [[Kali]] |
||
| + | * [[CTF]] |
||
Latest revision as of 10:17, 13 October 2016
Links
Archives
- http://shell-storm.org/repo/CTF/
- https://ctf.fluxfingers.net/
- https://github.com/pwning/plaidctf2014
- http://captf.com/
Writeups
- https://github.com/pwning/public-writeup
- https://github.com/ctfs/write-ups/
- http://eindbazen.net/
- http://blog.dragonsector.pl/
- http://mslc.ctf.su/
- http://koala.cs.pub.ro/hexcellents/wiki/
- http://communaute.sstic.org/ Challenges SSTIC and writeups for the oldest ones
Exercises
- http://exploit-exercises.com/
- https://www.wechall.net/
- https://hack.me/
- http://ioarm.smashthestack.org/ (ARMv7)
- http://w3challs.com/ (fr/en)
- http://www.root-me.org/ (fr)
- http://overthewire.org/wargames/
- http://ensiwiki.ensimag.fr/index.php/Portail:SecurIMAG_Ensimag_IT_security_club/Challenges
- http://treasure.pwnies.dk/
- http://challenges.re/
- http://cryptoctf.com/
More at https://www.wechall.net/active_sites
More at http://captf.com/practice-ctf/
Tutos
- http://www.wirelesspentest.com/
- http://www.bases-hacking.org/ (fr)
- https://sploitfun.wordpress.com/2015/06/26/linux-x86-exploit-development-tutorial-series/
- https://dhavalkapil.com/blogs/Shellcode-Injection/
Misc
- https://github.com/ctfs/resources/
- http://koala.cs.pub.ro/hexcellents/wiki/ Hexcellents CTF Knowledge base
- http://alexnisnevich.github.io/untrusted/ nice online game to hack in JS on 21 levels
- http://www.blackhatlibrary.net/
- http://polyhack.org/ (FR)
- http://pwntools.readthedocs.org/
- http://hackertainment.net/
- https://binjitsu.readthedocs.org/en/latest/
- Linux Post Exploitation Command List
- http://j00ru.vexillium.org/blog/24_03_15/dragons_ctf.pdf
- http://libcdb.com/
- https://github.com/SecurityInnovation/research/blob/master/presentations/2015-04-15%20The%20CTF%20Toolbox%20-%20Marcus%20Hodges%20-%20Tom%20Samstag.pdf
- https://github.com/orangetw/My-CTF-Web-Challenges Repo of CTF challenges made by Orange. It contains challs's source code, writeup and some idea explanation.
Organizing a CTF
- https://ctftime.org/for-organizers/
- https://github.com/pwning/docs/blob/master/suggestions-for-running-a-ctf.markdown
- http://ctf.hcesperer.org/orga.html
- http://events.ccc.de/congress/2005/fahrplan/events/428.en.html
- https://stripe.com/blog/ctf3-architecture
- https://www.usenix.org/system/files/conference/3gse14/3gse14-chung.pdf
- Facebook CTF is now Open Source, cf https://github.com/facebook/fbctf