Challenges progress
hfz1337 opened this issue · 4 comments
This issue serves to keep track of what's done and what needs to be done.
Number of challenges per category
| Category | Count | Easy | Medium | Hard |
|---|---|---|---|---|
| Web | 3 | |||
| Pwn | 4 | |||
| Reversing | 3 | |||
| Crypto | 3 | |||
| Misc | 6 | |||
| Forensics | 2 | |||
| Realist | 4 | |||
| Total | 26 |
TODO
- We need web challenges covering at least 60% of OWASP TOP 10, with a focus on A1 (Injection).
- ...
Great to keep track of challenges.
I think we should be adding simplier challenges, we have hard ones ready, which is great.
PS: for reversing, you can say there are 3 ready, as the keygen madness challenge has two parts, I'll be pushing the second part later today.
Nice, thanks Red!
Yes, we should start making Medium level challenges from now on.
What do you think about Forensics by the way? It would be interesting to have a memory analysis challenge, but we're running out of time. Are you planning to make some Forensics challenges?
The problem with a memory forensics challenge is that it would penalize people with a low internet connection, not sure if it's a good idea, I'm getting progress in the challenge with the rubber ducky payload and the powershell code.
Yes, that's a huge downside, let's just skip it.
Good luck with the challenge, I'm planning to do a packet analysis challenge, where data is exfiltrated through DNS (using iodine).