On Saturday, July 15, 2017 at 10:48:15 AM UTC-5, Nathan Davis wrote: > Floyd - Plan is to refurbish them with some RAM and HDD's and donate to the group to have for the study group. I'm watching some lots of cheap RAM & HDD's on eBay.
I like that plan. Very generous, and thank you for thinking of us. I have an additional plan that might be of interest when the laptops aren't being used for group study. I think I've mentioned "Network King of the Hill" before; if not, here's a cut and paste from another email: I've got contacts in GA Tech's infosec department who maintain and continue to develop a free and open-source Capture the Flag system called "Network King of the Hill" (NetKotH). Earliest NetKotH videos and info I'm aware of: http://www.irongeek.com/i.php?page=videos/phreaknic16/08-network-king-of-the-hill-netkoth-a-hacker-wargame-for-organizers-who-are-lazy-bastards-adrian-crenshaw https://www.youtube.com/watch?v=d3BHmm7stt0 The first implementation I'm aware of was in 2014, at PhreakNIC 18: http://archive.phreaknic.info/pn18z/content/netkoth.html The PN18 implementation was assembled and run by GA Tech infosec researcher Keith Watson: http://www.cc.gatech.edu/~krwatson/ http://www.cc.gatech.edu/~krwatson/ctf.html The latter URL has links to Keith's GitHub repository and a lot of other CTFs. Current NetKotH development: https://netkoth.github.io/ https://github.com/NetKotH You might find Keith's NarkNet Passive Wi Fi Surveillance talk from PN18 interesting as well: https://www.youtube.com/watch?v=ScDTWvh0sGQ Info on assembling a NarkNet system is on his GA Tech page. Currently NetKotH is a regular feature at monthly DefCon-404 and 2600 meetings, both in Atlanta, as well as Nashville 2600 meetings (_NSAkey has apparently implemented full packet capture; if he has recording AND playback capabilities, that would be quite useful for tutorial/instructional purposes). I'll be assisting Keith with a NetKotH system at DragonCon in September (the 1st - 4th, see http://dragoncon.org/ for more info), so I'll have some experience and comments for the Sept 12th NLUG meeting. Keith's comments when I asked him what I need to do to prep: *You'll need to be familiar with VirtualBox on Linux. I use Debian Jessie for the challenge server/scoring engine.* *We will be using Cisco switches, which you already know about.* *Normally we run NetKotH on a wireless network but I'm considering only doing wired because the WiFi environment at the hotel is awful with so many people there and people can mess with the competition remotely which I've seen happen at other cons.* *I'll be providing all the hardware we need for NetKotH.* *We will need to setup and take down NetKotH and administer it while it is running.* *Depending on who shows up to play, we may have to do some mentoring of the competitors.* *I'm trying to decide if I need easy, hard, or a mix of challenges.* *I suppose if everyone focuses on the easy challenges I can always shut the challenges down.* *I think I'll go with a mix of beginner/intermediate/advanced.* *Ben said that he might have some laptops he could give me for NetKotH. So far we have not been able to arrange a handoff.* *If you could bring them with you that would be really helpful. I don't plan on using them at Dragon Con so we won't be in a panic getting them ready.* *I also have some ideas on how to reconfigure the NetKotH network to isolate the contestants and the scoring engine. With the planned changes to the scoring engine it would mean the contestants have to do discovery on their own rather than get the IP addresses of the challenges from the score board.* Comments? ~~Dru (NLUG President) -- -- You received this message because you are subscribed to the Google Groups "NLUG" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/nlug-talk?hl=en --- You received this message because you are subscribed to the Google Groups "NLUG" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. For more options, visit https://groups.google.com/d/optout.
