ITX8063 2012 Labs
Allikas: Lambda
Sisukord
Access
- The environment (Lab) used for the practical tasks is not running in classroom but in another private network accessible over the VPN.
-
- Every student has a private BackTrack virtual machine which has to be used for accomplishing the tasks.
- The environment (Lab) used for the practical tasks is not running in TUT classroom but in another private network accessible over the VPN.
- There are 2 possible ways to access the BackTrack5 VM in Lab:
- Classrooms IT-213A, IT-213B will be connected with Lab over site-to-site VPN.
- Every student has to setup an OpenVPN connection to access the BackTrack VM running in Lab from his/her own computer.
Setup OpenVPN on your own machine to access the Lab
- Download:
- Unzip the configuration (lambda.ee limits filetypes that could be uploaded so we had to zip after encryption...)
- gunzip ITX8063_2012.tar.gz.bf.gz
- Decrypt the configuration:
- openssl enc -bf -d -in ITX8063_2012.tar.gz.bf -out ITX8063_2012.tar.gz
- The password for the key has been provided in classroom and in ivcm11 e-mail list.
- Install OpenVPN to your machine and run the configuration provided. E.g. when using ubuntu:
- apt-get install openvpn
- tar zxvf ITX8063_2012.tar.gz
- cd ITX8063_2012
- sudo openvpn itx8063.conf
- The password for the key has been provided in classroom and in ITX8063 e-mail list.
- In case openvpn is running correctly you should have received routes to networks 192.168.133.0/24 and 192.168.136.0/24
BackTrack5 VM in Lab
- Each student is provided a BackTrack machine in lab for accessing and attacking the target systems.
- Each student is allowed to access only the machine with the IP specified below.
- Default username is root and password is toor. You would probably like to change it after first login...
- This VM shall be used only for completing the course exercises. All student machines and targets are running on same server - therefore be sure that you do not leave unnecessary processes running.
- NB! The IP addresses of the BackTrack machines in the lab are from subnet 192.168.133.0/24. This subnet conflicts with existing network in TTU network. Therefore when accessing the VMs from the TUT computer the IPs will be translated to addresses from 192.168.146.0/24.
NAME ACCESSING FROM ACCESSING FROM TUT
OWN COMPUTER COMPUTER CLASS
OVER OpenVPN (IT-213A, IT-213B)
Agnes: 192.168.133.1 192.168.146.1
Aleksandr: 192.168.133.2 192.168.146.2
Alexander: 192.168.133.3 192.168.146.3
Andrejs: 192.168.133.4 192.168.146.4
Artjom: 192.168.133.5 192.168.146.5
Christopher:192.168.133.6 192.168.146.6
Davit Ag: 192.168.133.7 192.168.146.7
Davit Az: 192.168.133.8 192.168.146.8
Emre: 192.168.133.9 192.168.146.9
Erki: 192.168.133.10 192.168.146.10
Faris: 192.168.133.11 192.168.146.11
Fred: 192.168.133.12 192.168.146.12
Giorgi: 192.168.133.13 192.168.146.13
Giorgi: 192.168.133.14 192.168.146.14
Irakli: 192.168.133.15 192.168.146.15
Kristjan: 192.168.133.16 192.168.146.16
Levan: 192.168.133.17 192.168.146.17
Liivi: 192.168.133.18 192.168.146.18
Mai: 192.168.133.19 192.168.146.19
Manuel: 192.168.133.20 192.168.146.20
Marek: 192.168.133.21 192.168.146.21
Mina: 192.168.133.22 192.168.146.22
Märten: 192.168.133.23 192.168.146.23
Natalja: 192.168.133.24 192.168.146.24
Oleg: 192.168.133.25 192.168.146.25
Onur: 192.168.133.26 192.168.146.26
Pavel: 192.168.133.27 192.168.146.27
Ragnar: 192.168.133.28 192.168.146.28
Recai: 192.168.133.29 192.168.146.29
Rivo: 192.168.133.30 192.168.146.30
Sanjay: 192.168.133.31 192.168.146.31
Sarbar: 192.168.133.32 192.168.146.32
Sergei: 192.168.133.33 192.168.146.33
Sharath: 192.168.133.34 192.168.146.34
Sten: 192.168.133.35 192.168.146.35
Taavi: 192.168.133.36 192.168.146.36
Tanel: 192.168.133.37 192.168.146.37
Tiit: 192.168.133.38 192.168.146.38
Tiiu-Liisa: 192.168.133.39 192.168.146.39
Urmo: 192.168.133.40 192.168.146.40
Zhuoli: 192.168.133.41 192.168.146.41
Kuuno: 192.168.133.43 192.168.146.43
Dmitri: 192.168.133.44 192.168.146.44
Accessing BackTrack VM
- After the VPN has been correctly setup, the students can access BackTrack VMs over SSH or VNC
- Command line access: ssh root@192.168.133.X
- Obviously, X denotes the number that has been allocated for specific student.
- Default password is toor.
- X11 session redirected over SSH
- ssh -X -C root@192.168.133.X
- Now you can start programs with GUI e.g. firefox &. Note that it could be relatively slow.
- VNC for graphical user interface
- Log into BackTrack VM over SSH and start vncserver: vncserver -geometry 1280x800
- Obviously, the geometry specifies the screen size, adjust it according to your monitor
- When executing vncserver first time, you will be asked for a password. This password just protects access to the display of your machine. Choose password that you prefer. The password file is /root/.vnc/passwd. If you would like to change the password, just remove that file and start vncserver again.
- If you need to kill any vncserver instances: vncserver -kill :1. This kills X desktop number 1.
- To access the display use vncviewer on your machine (not on the BackTrack): vncviewer 192.168.133.X:1. Number 1 expresses the display number.
Course Management Application
- Presentation slides and other materials are available here (http!): http://cma.ex/files (http://192.168.136.5)
- Mission and task descriptions as well as scoreboard will be displayed over simple web application located here: https://cma.ex (https://192.168.136.5)
- Register a new user account. Username will be displayed on the scoreboard - this can be something anonymous
- First and Last Name will be used to track if you have participated in the lab - these have to be real.
- NB! Hacking the production version of scoreboard is prohibited.
- We will clone the VM for testing purposes to those who are interested in breaking the scoring system.
- If you find any vulnerabilities, report them to the instructor and you'll get bonus.
Solving the Tasks
Task Descriptions
- As described previously, the task descriptions will be provided using simple web application which is accessible from your BackTrack VM:
- There is no password recovery functionality. If you forgot your password you have to contact the instructor for a reset.
- Please read the description of the task carefully. When specifying targets (IP addresses, domain names) avoid making typos.
Hints
- When you do not have a good idea where to start or how to proceed, use the hints. There are specific buttons on the web application for that: Hints++ and Hints--
- Usually, the hints cost you points. The application will describe how many points the specific hint cost. After that you have to specifically confirm that you really want to use the hint.
- In terms of final grade for the course it is only important that you have accomplished the task. The amount of points you get for a task does not influence the grade. However, you should still firstly try to finish the task on your own and take the hints if you really do not know what to do...
- Sometimes the first hint does not cost anything. This will be said in task description. In this case you should always use the first hint to avoid wasting your time.
Lab Report
- For every Task under each Mission you have to provide a short description of how did you solve it. Basically, you have to take notes and provide it in the end of the course to the instructor.
- Which tools did you use to solve the task?
- Which commands with which options did you executed?
- If the target was a web application, what requests did you send to the target to accomplish the mission?
- Lab Report has to be provided in the end of the course by 14 Jan 2013 23:59.
- The following general principles will be used for evaluating the reports:
- If you have description for all the tasks, you'll get 100% of points.
- If you solve most of the tasks just by using all the hints you will not get 100% of the points. However, if you use hints only for some tasks you will be still assigned 100%.
- Plagiarism will be not accepted. Previous year, few students were stupid enough to copy very original solutions from other students. Please do not take that way.
