Challenges – Lost in Security (and mostly everything else)

SANS Holiday Hack Challenge – Part II

December 28, 2015 December 28, 2015Challenges

So continuing from my original post about the SANS 2015 Hack Challenge, here is my quick write up about exercise two. Exercise 2 ========== > What operating system and CPU type are used in the Gnome? What type of web framework is the Gnome web interface built in? – System – DISTRIB_ID=’OpenWrt’ – DISTRIB_RELEASE=’Bleeding Edge’ – DISTRIB_REVISION=’r47650′ – DISTRIB_CODENAME=’designated_driver’ – DISTRIB_TARGET=’realview/generic’ – DISTRIB_DESCRIPTION=’OpenWrt Designated Driver r47650′ – DISTRIB_TAINTS=” – CPU: ARM version 1 (SYSV) – Gnome web framework: Looks to be node.js > What kind of a database engine is used to support the Gnome web interface? What is the plaintext password…

SANS Holiday Hack Challenge – Part I

December 23, 2015 December 28, 2015Challenges, Packet Analysis

I figured that I would try and attempt to do the annual SANS Holiday Hack Challenge this year while things were slow at work (knock on wood). So after working on this for 2-3 days, I have managed to knock out the first of the questions: 1) Which commands are sent across the Gnome’s command-and-control channel? 2) What image appears in the photo the Gnome sent across the channel from the Dosis home? The way I got the answers for this first set of problems was not “creative” by any stretch of the imagination. If anything it was just manually…