Capture The Flag

The UCSB Capture The Flag is a distributed, wide-area security exercise, whose goal is to test the security skills of students from both the attack and defense viewpoints.

The CTF evolved from four previous security "live exercises" that were carried out locally at UCSB.

The next CTF will be held in December 2004 and will involve teams from Universities around the world. Stay tuned for the details.

Capture The Flag, December 5, 2003

On December 5th, 2003, fourteen teams from around the United States competed in a game in the UCSB Capture the Flag by attempting to compromise other teams' network services while trying to protect their own services from attacks. The contest included teams from the following schools:

UCSB
North Carolina State University
Naval Postgraduate School, Monterey
West Point
Georgia Tech
University of Texas at Austin
University of Illinois, Urbana-Champaign

Each team's goals were to:

Keep 6 network services alive and uncompromised by the other teams
Attack other teams' services and plant the flag of their own team into the opponents' services

The Capture The Flag exercise was a great success, thanks to students and faculty at each of the participating sites. The results can be found here.

The was some local press coverage too (actually the CTF got the first page).

A blurb describing the CTF in layman terms can be found here.

Downloads

The source code for the ScoreBot , the system responsible for querying each service on each team's site box during each scoring interval.
The configuration file used by the ScoreBot during the exercise.
The scripts used by the ScoreBot to set and check the flags of each network service.
A sample OS image (811M) distributed to each team on the morning of the competition.
The network packet dumps (tcpdump format) recorded during the competition.

Point of contact

The Capture The Flag (CTF) is organized by Giovanni Vigna, at UCSB.

This is the contact information:

Phone:+1 (805) 893-7565
Fax:+1 (805) 893-8553
E-Mail: vigna@cs.ucsb.edu
Web: http://www.cs.ucsb.edu/~vigna
Office: Engineering I, Room 2109
Address: University of California
Department of Computer Science CS-66
Santa Barbara, CA 93106-5110, USA

PGP key:

-----BEGIN PGP PUBLIC KEY BLOCK-----
Version: GnuPG v1.2.1 (GNU/Linux)
 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=/UFb
-----END PGP PUBLIC KEY BLOCK-----

Additional Contact Info

A number of students at UCSB are involved in helping setting up this exercise. You may want to contact them on particular issues or in case the main point of contact is not available.

Chris Kruegel, (General Setup) chris@cs.ucsb.edu
Darren Mutz, (Vulnerable Software) dhm@cs.ucsb.edu
Will Robertson, (Vulnerable Software) wkr@cs.ucsb.edu
Fredrik Valuer, (Routing and Scoring) fredrik@cs.ucsb.edu