Are you enrolled in a course that is using the Florida CyberHub CTF? If so, please see the directions below.
All of the exercises will be found on https://ctf.floridacyberhub.org/ You must create an account before viewing any exercises. Click on the “Register” button on the top right side of the screen to get started.
Once you successfully register and log in, you will see a list of challenges with varying difficulties and types.
There are three challenge types in this CTF. The offensive challenges will require you to go into your Virtual Machine to attack a web server and obtain the flag.
The problem-solving challenges will generally require you to analyze a file or an image. For these type of challenges you do not need to attack any machines, however, you might need to utilize certain tools.
The last type of challenge is Trivia. You will have 1 attempt to answer them, and they come in different categories. All of these questions are multiple choice.
If you need help accessing your Sandbox, please view the tutorials. Once you are ready to start the CTF, you will have to log in to the Kali VM within your Sandbox. Kali Linux will be the operating system used to stage all attacks against the Web Server, so it should be the only one that you will directly connect to.
Proving Grounds: Linux Tutorial
If you have been assigned to solve the Linux Tutorial part of the CTF, you will have to SSH into the Ubuntu Linux machine from your Kali Linux machine. The credentials for this machine are:
To begin, you will need to know the IP address of “LINUX01” as shown in the screenshot. You may find the machine’s IP using a scanning tool such as nmap, or you can simply click on the “Info” button from your Sandbox client.
Once you have located your specific IP address, open a terminal window and run the following command:
ssh cybercamp@[ip address]
Where [ip address] is the Ubuntu Linux IP.
CTF: Web Server
The majority of the CTF exercises are hosted within a web server. In order to find the right website to launch your attacks, you will need the WINWEB IP address, which you can find by clicking on the “info” button on your Sandbox client.
Once you have that IP address, you can navigate to the website hosted on the web server’s port 3000. For instance, if your WINWEB01’s IP address is 172.20.32.194, you would use a browser to navigate to it by typing “172.20.32.194:3000”
Pro Tip: Attached to this article is a downloadable PDF version of the information here.