Skip to main content

CySCA 2017 In-a-box

Welcome to the CySCA2017 In a Box information page. With the information on this page you should be able to attempt most of the challenges from the 2017 Cyber Security Challenge Australia.

CAUTION: The VM contains software that is deliberately vulnerable. We advise that you do not attach it to a critical network. Consider using your virtualization software's host‐only network functionality.

FileType: 7z
CySCA 2017 In-a-Box
Download size is 2.0GB
SHA1: 9C7D8F8D81340DE6B34FA696884981B72C833D7E
Version: 1.2


About the Virtual Machine

how to start working with this The VM provided is a self-contained machine that can be used to do most of the challenges from CySCA2017. Inside the VM's docker containers you can find a copy of the source code for some of the challenges, but we recommend attempting the challenges before looking at the code.

The Virtual Machine root password is password. The VM download contains a VMware Workstation/Player and an Oracle VirtualBox config file. Make sure to adjust the network interface type to match your setup (bridged/nat).

This VM allows players to complete challenges in their own time, to learn and develop their cyber security skills. The VM includes a static version of the scoring panel with all challenges, required files and flags.

To use CySCA2017 in a box virtual machines, players will need to have either Oracle VirtualBox or VMWare Player installed on their machines.

Additionally we recommend players have at least 4GBM of RAM. If you have less RAM, you can reduce the amount of RAM available to the VM down to 2GB, however it may adversely affect the speed of some of the challenges.

Generic placeholder image

Getting Started

how to start working with this

  1. Extract files from CySCA2017InABox.7z
  2. Navigate to the folder containing the extracted files
  3. Confirm that the checksums for the files match those in checksums.txt
  4. If you are using VirtualBox double-click the CySCA2014InABox.vbox file. When you start the VM, you may be prompted that a "Centrino Advanced" adapter is not found. If this happens, click Change Network Settings and select the adapter that you would like the VM to bridge to.

    ‐‐ Or ‐‐

    If you are using VMWare Player double-click the CySCA2017InABox.vmx file. When you start the VM, you may be asked if the VM has been moved or copied. Select copied.
  5. If DHCP is available on the network adapter you have selected the VM will request an IP address and you will be prompted with the allocated IP. If no IP is specified you will need to set one before connecting. See instructions below.
  6. you will now need to add a couple settings to your host machine:
    1. set up your DNS to point to the {DHCP_IP} of the CySCA2017 In-a-Box
      • edit /etc/resolv.conf and add nameserver {DHCP_IP}
    2. add the following IP routes:
      • ip route add 172.16.5.0/24 via {DHCP_IP}
      • ip route add 10.10.5.0/24 via {DHCP_IP}
      • ip route add 10.13.37.0/24 via {DHCP_IP}
      • ip route add 192.168.5.0/24 via {DHCP_IP}

      ‐‐ Or ‐‐

      • change your gateway to {DHCP_IP}
  7. Now use your browser to connect to http://www.scoring.cysca/.
Generic placeholder image

Licensing

All code written for the challenges is covered under the Apache 2.0 licence unless specified otherwise.

Check for individual licence files in each of the docker containers for full text and details. Shared libraries and modules may be under different licences. See their corresponding licence files in each sub directory.

Generic placeholder image

Students Write-ups

A number of write-ups submitted by the students on the day, this is a document of their solutions for the challenge.

Student Writeups

Solutions & Write-ups

Challenge Control have put together a write-up document of their solutions for the challenge.


Issues

If you have any issues with the Virtual Machine or challenges not working, please contact the email address provided in the Virtual Machine MOTD.

Note: we are unable to provide support for completing the challenges.
Generic placeholder image