Solving Web CTF challenges null Bangalore Humla 15 April 2017 Solving Web CTF Challenges
Abstract
Solving Web CTF challenges
Introduction:
This will be a hands on session on the different approaches one can take when solving Web CTF challenges.
There will be active discussion on different approaches while trying our hands out on different Web CTF challenges of increasing difficulty.
Reading up/practicing before you come:
- SQL Injection
- Insecure Direct Object Reference
- File inclusion attacks
- SSRF/XSPA
- Base64 Encoding & Decoding
- Burp
- Register and solve at least 5 basic challenges at https://www.hackthissite.org/missions/basic/
Hardware Pre-requisites (Mandatory)
- A system capable of running Virtual Box. You can test this by installing Virtual Box and creating a test VM.
- Atleast 2 GB of RAM
- Atleast 2 GB of free space (to copy and import the VM that will be distributed)
Software Pre-requisites (Mandatory)
- VirtualBox (Any version higher than 5.1). Please install this and come before the session. VMWare will not be supported.
- Kali Linux
- PuTTY to SSH into the VM. This is for Windows hosts. https://the.earth.li/~sgtatham/putty/latest/w32/putty.exe
- BurpSuite free
- Firefox with FoxyProxy Addon
Speaker
I like photography, stargazing, collecting stamps and fishing.
Timing
Starts at Saturday April 15 2017, 10:00 AM. The sessions runs for about 8 hours.