In this workshop, the skills will be practices by playing capture-the-flag (CTF) challenges. It's essentially a set of challenges that test the challengers hacking skills. The goal is to find the vulnerability and obtain the "flag", which is a piece of text formatted as flag{...}.

CTFd : What is Capture The Flag?

NaumachiaCTF

In particular, we will be using Naumachia CTF, built by me @victor 👋

Naumachia CTF is a network hacking CTF hosted at naumachiactf.com. Each challenge involves connecting to a virtualized network, figuring out what is on the network, and attacking it in some way to get the flag.

NaumachiaCTF

Connecting to a challenge

• After creating and account or logging in, you should be taken to the "Challenges" page.

  

• Select a challenge to view its details and access the OpenVPN config for the challenge.

  

• Download the OpenVPN config for the challenge and use your OpenVPN client to connect.

  • Linux CLI: sudo openvpn --config <challenge>.ovpn
  • Windows GUI: Place the config file in %HOMEPATH%\\OpenVPN\\config and right-click the VPN icon on the status bar, then select the config for this challenge
  • MacOS Tunnelblick: Double-click on the downloaded OpenVPN config in Finder to install it, then select the Tunnelblick icon in the status bar and select the "Connect option".

• Once you've found the flag, enter it into the box on the page. 🎉

  <aside> 💡 Make sure to include the entire flag{...} , and not just the part in the brackets. The flags are also case sensitive.

  </aside>

  

<aside> ⚠️ When you switch from one challenge to the next, make sure to disconnect from the previous challenge before connecting to the next one.

</aside>