Lab Scenarios and CyBOK

The Cyber Security Body of Knowledge (CyBOK) is a body of knowledge that aims to encapsulate the various knowledge areas present within cyber security. Scenarios within SecGen now contain XML elements linking them to CyBOK knowledge areas and specific topics within those knowledge areas. Additionally, video lectures for scenarios are tagged with CyBOK associations.

This file is an autogenerated index and cross referencing of the 118 SecGen practical lab scenarios that have CyBOK metadata.

You can browse the list below in terms of the CyBOK Knowledge Areas, and Topics. The list of scenarios in the second half of this document includes keywords (also known as "indicative topics" in CyBOK terminology).

The all lowercase topics and keywords are provided by NCSC for CyBOK mapping, while all caps indicates it is taken from the CyBOK mapping reference, mixed case keywords are ones that we have added.

Cyber Security Body of Knowledge (CyBOK) Issue 1.1 is Crown Copyright, The National Cyber Security Centre 2021, licensed under the Open Government Licence http://www.nationalarchives.gov.uk/doc/open-government-licence/.

Scenarios Indexed By CyBOK Knowledge Area (KA)

Human Factors (HF)
Adversarial Behaviours (AB)
Malware & Attack Technology (MAT)
Web & Mobile Security (WAM)
Applied Cryptography (AC)
Forensics (F)
Privacy & Online Rights (POR)
Network Security (NS)
Security Operations & Incident Management (SOIM)
Software Security (SS)
Authentication, Authorisation & Accountability (AAA)
Operating Systems & Virtualisation (OSV)
Cyber-Physical Systems Security (CPS)

Human Factors (HF)

HF Scenarios

cyber_security_landscape/3_phishing.xml

HF Scenarios by Topics

Topic	Scenario
Human Error	cyber_security_landscape/3_phishing.xml

Adversarial Behaviours (AB)

AB Scenarios

cyber_security_landscape/3_phishing.xml
introducing_attacks/4_dns_footprinting.xml
introducing_attacks/5_scanning.xml
introducing_attacks/6_exploitation.xml
introducing_attacks/7_post-exploitation.xml
labtainers/grfics.xml

AB Scenarios by Topics

Topic	Scenario
Attacks	cyber_security_landscape/3_phishing.xml
Models	introducing_attacks/4_dns_footprinting.xml introducing_attacks/5_scanning.xml introducing_attacks/6_exploitation.xml introducing_attacks/7_post-exploitation.xml labtainers/grfics.xml

Malware & Attack Technology (MAT)

MAT Scenarios

MAT Scenarios by Topics

Topic	Scenario
Attacks and exploitation	cyber_security_landscape/3_phishing.xml introducing_attacks/2_malware_msf_payloads.xml introducing_attacks/3_vulnerabilities.xml introducing_attacks/6_exploitation.xml introducing_attacks/7_post-exploitation.xml introducing_attacks/8_vulnerability_analysis.xml labtainers/bufoverflow.xml labtainers/formatstring.xml labtainers/metasploit.xml labtainers/retlibc.xml software_security_exploitation/4_exploit_development.xml software_security_exploitation/5_linux_stack_bof.xml software_security_exploitation/6_linux_nx_bypass.xml software_security_exploitation/7_linux_aslr_bypass.xml software_security_exploitation/8_linux_bof_format.xml
Malware Taxonomy	introducing_attacks/2_malware_msf_payloads.xml software_and_malware_analysis/11_coconut.xml software_and_malware_analysis/1_dynamic_and_static_analysis.xml software_and_malware_analysis/9_malware_behaviour.xml
Malware Analysis	introducing_attacks/2_malware_msf_payloads.xml labtainers/gdblesson.xml labtainers/ida.xml software_and_malware_analysis/10_anti_sre.xml software_and_malware_analysis/11_coconut.xml software_and_malware_analysis/1_dynamic_and_static_analysis.xml software_and_malware_analysis/3_c_and_asm.xml software_and_malware_analysis/4_asm.xml software_and_malware_analysis/5_ghidra.xml software_and_malware_analysis/6_ghidra_analysis.xml software_and_malware_analysis/6_ghidra_with_live_malware_samples.xml software_and_malware_analysis/7_dynamic.xml software_and_malware_analysis/8_dynamic_continued.xml software_and_malware_analysis/9_malware_behaviour.xml
Malicious Activities by Malware	introducing_attacks/4_dns_footprinting.xml introducing_attacks/5_scanning.xml introducing_attacks/6_exploitation.xml introducing_attacks/7_post-exploitation.xml labtainers/metasploit.xml
MALCODE/MALWARE	labtainers/acl-hackerbot-flags.xml labtainers/acl.xml
Malware Detection	labtainers/snort.xml response_and_investigation/4_ids.xml response_and_investigation/5_ids_rules.xml response_and_investigation/7_live_analysis.xml response_and_investigation/8_dead_analysis.xml
Technical Underpinning	software_and_malware_analysis/2_intro_to_c.xml software_and_malware_analysis/3_c_and_asm.xml

Web & Mobile Security (WAM)

WAM Scenarios

cyber_security_landscape/3_phishing.xml
cyber_security_landscape/4_encoding_encryption.xml
labtainers/iptables-ics.xml
labtainers/iptables.xml
labtainers/iptables2.xml
labtainers/sql-inject.xml
labtainers/webtrack.xml
labtainers/xforge.xml
labtainers/xsite.xml
systems_security/7_containers.xml
web_security/1_intro_web_security.xml
web_security/2_sessions_and_cookies.xml
web_security/3_xss.xml
web_security/4_sqli.xml
web_security/5_sqli_advanced.xml
web_security/6_csrf.xml
web_security/7_additional_web.xml
web_security/websec_lab.xml

WAM Scenarios by Topics

Topic	Scenario
Client-Side Vulnerabilities and Mitigations	cyber_security_landscape/3_phishing.xml web_security/2_sessions_and_cookies.xml web_security/3_xss.xml web_security/6_csrf.xml web_security/7_additional_web.xml web_security/websec_lab.xml
Fundamental Concepts and Approaches	cyber_security_landscape/4_encoding_encryption.xml labtainers/webtrack.xml systems_security/7_containers.xml web_security/1_intro_web_security.xml web_security/2_sessions_and_cookies.xml web_security/3_xss.xml web_security/4_sqli.xml web_security/5_sqli_advanced.xml web_security/6_csrf.xml web_security/7_additional_web.xml web_security/websec_lab.xml
FIREWALLS	labtainers/iptables-ics.xml labtainers/iptables.xml labtainers/iptables2.xml web_security/7_additional_web.xml web_security/websec_lab.xml
Server-Side Vulnerabilities and Mitigations	labtainers/sql-inject.xml labtainers/xforge.xml labtainers/xsite.xml web_security/1_intro_web_security.xml web_security/2_sessions_and_cookies.xml web_security/3_xss.xml web_security/4_sqli.xml web_security/5_sqli_advanced.xml web_security/6_csrf.xml web_security/7_additional_web.xml web_security/websec_lab.xml

Applied Cryptography (AC)

AC Scenarios

cyber_security_landscape/4_encoding_encryption.xml
cyber_security_landscape/6_symmetric_enc_aes.xml
cyber_security_landscape/7_asymmetric_enc_rsa.xml
labtainers/macs-hash.xml
labtainers/onewayhash.xml
labtainers/pubkey.xml
labtainers/ssh-agent.xml
labtainers/sshlab.xml
labtainers/ssl.xml
labtainers/symkeylab.xml

AC Scenarios by Topics

Topic	Scenario
Algorithms, Schemes and Protocols	cyber_security_landscape/4_encoding_encryption.xml cyber_security_landscape/6_symmetric_enc_aes.xml cyber_security_landscape/7_asymmetric_enc_rsa.xml labtainers/pubkey.xml labtainers/symkeylab.xml
Symmetric Cryptography	cyber_security_landscape/6_symmetric_enc_aes.xml labtainers/symkeylab.xml
Cryptographic Implementation	cyber_security_landscape/6_symmetric_enc_aes.xml cyber_security_landscape/7_asymmetric_enc_rsa.xml
Public-Key Cryptography	cyber_security_landscape/7_asymmetric_enc_rsa.xml labtainers/macs-hash.xml labtainers/onewayhash.xml labtainers/ssh-agent.xml labtainers/sshlab.xml labtainers/ssl.xml
Key Management	cyber_security_landscape/7_asymmetric_enc_rsa.xml

Forensics (F)

F Scenarios

cyber_security_landscape/4_encoding_encryption.xml
forensics/trashed_evidence.xml
labtainers/file-deletion.xml
labtainers/file-integrity.xml
labtainers/macs-hash.xml
labtainers/onewayhash.xml
labtainers/packet-introspection.xml
labtainers/pass-crack.xml
labtainers/pcapanalysis.xml
labtainers/webtrack.xml
response_and_investigation/2_integrity_detection.xml
response_and_investigation/6_exfiltration_detection.xml
response_and_investigation/7_live_analysis.xml
response_and_investigation/8_dead_analysis.xml
web_security/7_additional_web.xml
web_security/websec_lab.xml

F Scenarios by Topics

Topic	Scenario
Artifact Analysis	cyber_security_landscape/4_encoding_encryption.xml labtainers/macs-hash.xml labtainers/onewayhash.xml labtainers/pass-crack.xml response_and_investigation/2_integrity_detection.xml response_and_investigation/6_exfiltration_detection.xml
Operating System Analysis	forensics/trashed_evidence.xml labtainers/file-deletion.xml labtainers/file-integrity.xml response_and_investigation/8_dead_analysis.xml
Application Forensics	forensics/trashed_evidence.xml
Main Memory Forensics	labtainers/packet-introspection.xml labtainers/pcapanalysis.xml response_and_investigation/7_live_analysis.xml web_security/7_additional_web.xml web_security/websec_lab.xml
WEB	labtainers/webtrack.xml

Privacy & Online Rights (POR)

POR Scenarios

forensics/trashed_evidence.xml

POR Scenarios by Topics

Topic	Scenario
Privacy Technologies and Democratic Values	forensics/trashed_evidence.xml

Network Security (NS)

NS Scenarios

introducing_attacks/1_intro_linux.xml
introducing_attacks/4_dns_footprinting.xml
introducing_attacks/5_scanning.xml
labtainers/arp-spoof.xml
labtainers/denyhost.xml
labtainers/dmz-example.xml
labtainers/dmz-lab.xml
labtainers/grfics.xml
labtainers/iptables-ics.xml
labtainers/iptables.xml
labtainers/iptables2.xml
labtainers/local-dns.xml
labtainers/nix-commands.xml
labtainers/nmap-discovery.xml
labtainers/nmap-ssh.xml
labtainers/pcapanalysis.xml
labtainers/pubkey.xml
labtainers/radius.xml
labtainers/remote-dns.xml
labtainers/routing-basics.xml
labtainers/routing-basics2.xml
labtainers/snort.xml
labtainers/tcpip.xml
labtainers/telnetlab.xml
labtainers/vpnlab.xml
labtainers/vpnlab2.xml
response_and_investigation/4_ids.xml
response_and_investigation/5_ids_rules.xml
response_and_investigation/6_exfiltration_detection.xml
web_security/7_additional_web.xml
web_security/websec_lab.xml

NS Scenarios by Topics

Topic	Scenario
Network Protocols and Vulnerability	introducing_attacks/1_intro_linux.xml labtainers/arp-spoof.xml labtainers/local-dns.xml labtainers/remote-dns.xml labtainers/tcpip.xml
PENETRATION TESTING	introducing_attacks/4_dns_footprinting.xml introducing_attacks/5_scanning.xml labtainers/nix-commands.xml labtainers/nmap-discovery.xml labtainers/nmap-ssh.xml
Network Defence Tools	labtainers/denyhost.xml labtainers/dmz-example.xml labtainers/dmz-lab.xml labtainers/grfics.xml labtainers/iptables-ics.xml labtainers/iptables.xml labtainers/iptables2.xml labtainers/snort.xml labtainers/vpnlab.xml labtainers/vpnlab2.xml response_and_investigation/4_ids.xml response_and_investigation/5_ids_rules.xml response_and_investigation/6_exfiltration_detection.xml web_security/7_additional_web.xml web_security/websec_lab.xml
Internet Architecture	labtainers/iptables-ics.xml labtainers/iptables.xml labtainers/iptables2.xml labtainers/pubkey.xml labtainers/radius.xml labtainers/routing-basics.xml labtainers/routing-basics2.xml labtainers/tcpip.xml web_security/7_additional_web.xml web_security/websec_lab.xml
OSI (OPEN SYSTEM INTERCONNECT) MODEL	labtainers/pcapanalysis.xml
REMOTE ACCESS	labtainers/telnetlab.xml
TCP/IP	labtainers/telnetlab.xml

Security Operations & Incident Management (SOIM)

SOIM Scenarios

SOIM Scenarios by Topics

Topic	Scenario
PENETRATION TESTING	introducing_attacks/1_intro_linux.xml introducing_attacks/2_malware_msf_payloads.xml introducing_attacks/3_vulnerabilities.xml introducing_attacks/4_dns_footprinting.xml introducing_attacks/5_scanning.xml introducing_attacks/6_exploitation.xml introducing_attacks/7_post-exploitation.xml introducing_attacks/8_vulnerability_analysis.xml labtainers/metasploit.xml
Monitor: Data Sources	labtainers/arp-spoof.xml labtainers/capabilities.xml labtainers/centos-log.xml labtainers/centos-log2.xml labtainers/file-integrity.xml labtainers/grassmarlin.xml labtainers/ldap.xml labtainers/packet-introspection.xml labtainers/pcapanalysis.xml labtainers/snort.xml labtainers/sys-log.xml labtainers/wireshark-intro.xml response_and_investigation/2_integrity_detection.xml response_and_investigation/4_ids.xml response_and_investigation/5_ids_rules.xml response_and_investigation/6_exfiltration_detection.xml response_and_investigation/9_siem.xml web_security/7_additional_web.xml web_security/websec_lab.xml
Execute: Mitigation and Countermeasures	labtainers/backups.xml labtainers/backups2.xml labtainers/denyhost.xml labtainers/snort.xml response_and_investigation/3_backups_and_recovery.xml response_and_investigation/4_ids.xml response_and_investigation/9_siem.xml
INCIDENT RESPONSE	labtainers/backups.xml labtainers/backups2.xml
CM (CONFIGURATION MANAGEMENT)	labtainers/denyhost.xml labtainers/nmap-ssh.xml
Analyse: Analysis Methods	labtainers/snort.xml response_and_investigation/4_ids.xml response_and_investigation/5_ids_rules.xml response_and_investigation/6_exfiltration_detection.xml response_and_investigation/9_siem.xml
Fundamental Concepts	response_and_investigation/9_siem.xml
Plan: Security Information and Event Management	response_and_investigation/9_siem.xml

Software Security (SS)

SS Scenarios

SS Scenarios by Topics

Topic	Scenario
Categories of Vulnerabilities	introducing_attacks/6_exploitation.xml labtainers/bufoverflow.xml labtainers/formatstring.xml labtainers/retlibc.xml labtainers/sql-inject.xml software_security_exploitation/1_c_asm_iof.xml software_security_exploitation/2_race_conditions_format_str.xml software_security_exploitation/4_exploit_development.xml software_security_exploitation/5_linux_stack_bof.xml software_security_exploitation/6_linux_nx_bypass.xml software_security_exploitation/7_linux_aslr_bypass.xml software_security_exploitation/8_linux_bof_format.xml web_security/1_intro_web_security.xml web_security/2_sessions_and_cookies.xml web_security/3_xss.xml web_security/4_sqli.xml web_security/5_sqli_advanced.xml web_security/6_csrf.xml web_security/7_additional_web.xml web_security/websec_lab.xml
Mitigating Exploitation	labtainers/bufoverflow.xml labtainers/retlibc.xml software_security_exploitation/6_linux_nx_bypass.xml software_security_exploitation/7_linux_aslr_bypass.xml systems_security/8_apparmor.xml
Authentication	labtainers/pass-crack.xml
Prevention of Vulnerabilities	labtainers/sql-inject.xml labtainers/xforge.xml labtainers/xsite.xml software_security_exploitation/1_c_asm_iof.xml software_security_exploitation/2_race_conditions_format_str.xml web_security/3_xss.xml web_security/4_sqli.xml web_security/5_sqli_advanced.xml web_security/6_csrf.xml web_security/7_additional_web.xml web_security/websec_lab.xml
Detection of Vulnerabilities	software_security_exploitation/3_bug_hunting_and_fuzzing.xml web_security/1_intro_web_security.xml web_security/2_sessions_and_cookies.xml web_security/3_xss.xml web_security/4_sqli.xml web_security/5_sqli_advanced.xml web_security/6_csrf.xml web_security/7_additional_web.xml web_security/websec_lab.xml

Authentication, Authorisation & Accountability (AAA)

AAA Scenarios

labtainers/acl-hackerbot-flags.xml
labtainers/acl.xml
labtainers/file-integrity.xml
labtainers/ldap.xml
labtainers/macs-hash.xml
labtainers/nix-commands.xml
labtainers/onewayhash.xml
labtainers/radius.xml
labtainers/setuid-env.xml
response_and_investigation/1_integrity_protection.xml
response_and_investigation/7_live_analysis.xml
response_and_investigation/8_dead_analysis.xml
systems_security/1_authentication.xml
systems_security/2_pam.xml
systems_security/4_access_controls.xml
systems_security/5_suid.xml
systems_security/6_facls.xml
systems_security/7_containers.xml
systems_security/8_apparmor.xml

AAA Scenarios by Topics

Topic	Scenario
Authorisation	labtainers/acl-hackerbot-flags.xml labtainers/acl.xml labtainers/ldap.xml labtainers/nix-commands.xml labtainers/setuid-env.xml response_and_investigation/1_integrity_protection.xml systems_security/4_access_controls.xml systems_security/5_suid.xml systems_security/6_facls.xml systems_security/7_containers.xml systems_security/8_apparmor.xml
Authentication	labtainers/file-integrity.xml labtainers/ldap.xml labtainers/macs-hash.xml labtainers/onewayhash.xml labtainers/radius.xml systems_security/1_authentication.xml systems_security/2_pam.xml
Accountability	response_and_investigation/7_live_analysis.xml response_and_investigation/8_dead_analysis.xml

Operating Systems & Virtualisation (OSV)

OSV Scenarios

labtainers/acl-hackerbot-flags.xml
labtainers/acl.xml
labtainers/capabilities.xml
labtainers/setuid-env.xml
response_and_investigation/1_integrity_protection.xml
response_and_investigation/2_integrity_detection.xml
response_and_investigation/7_live_analysis.xml
systems_security/1_authentication.xml
systems_security/2_pam.xml
systems_security/4_access_controls.xml
systems_security/5_suid.xml
systems_security/6_facls.xml
systems_security/7_containers.xml
systems_security/8_apparmor.xml

OSV Scenarios by Topics

Topic	Scenario
Primitives for Isolation and Mediation	labtainers/acl-hackerbot-flags.xml labtainers/acl.xml labtainers/capabilities.xml labtainers/setuid-env.xml response_and_investigation/1_integrity_protection.xml systems_security/1_authentication.xml systems_security/2_pam.xml systems_security/4_access_controls.xml systems_security/5_suid.xml systems_security/6_facls.xml systems_security/7_containers.xml systems_security/8_apparmor.xml
Role of Operating Systems	labtainers/acl-hackerbot-flags.xml labtainers/acl.xml systems_security/4_access_controls.xml systems_security/7_containers.xml
OS Hardening	response_and_investigation/2_integrity_detection.xml response_and_investigation/7_live_analysis.xml

Cyber-Physical Systems Security (CPS)

CPS Scenarios

labtainers/grassmarlin.xml
labtainers/grfics.xml
labtainers/iptables-ics.xml
labtainers/plc-app.xml
labtainers/plc-forensics-adv.xml
labtainers/plc-forensics.xml
labtainers/plc.xml
labtainers/softplc.xml
labtainers/softplc2.xml
labtainers/ssl.xml

CPS Scenarios by Topics

Topic	Scenario
Cyber-Physical Systems	labtainers/grassmarlin.xml labtainers/grfics.xml labtainers/iptables-ics.xml labtainers/plc-app.xml labtainers/plc-forensics-adv.xml labtainers/plc-forensics.xml labtainers/plc.xml labtainers/softplc.xml labtainers/softplc2.xml labtainers/ssl.xml
Cyber-Physical Systems Domains	labtainers/grassmarlin.xml labtainers/grfics.xml labtainers/iptables-ics.xml labtainers/plc-app.xml labtainers/plc-forensics-adv.xml labtainers/plc-forensics.xml labtainers/plc.xml labtainers/softplc.xml labtainers/softplc2.xml labtainers/ssl.xml

Scenario CyBOK Keywords

cyber_security_landscape/3_phishing.xml

Details

Key	Data
Name	Let's Go Phishing
Description	Introduction Humans play a crucial role in the cyber security of systems and information. Many attacks target users and their mental models of cyber security systems and risk. For example, if an attacker can trick a user into performing tasks for them, the attacker can achieve their goals and gain access that they are not authorised to. Human behavior often serves as both the first line of defense and the weakest link. This lab delves into the critical role humans play in safeguarding systems and information. It highlights the fact that even the most robust technical defenses can be compromised due to human error and deception. This lab primarily focuses on a pervasive cyber threat - phishing attacks. Phishing, an artful manipulation of human psychology, lures individuals into compromising security by tricking them into revealing sensitive information, clicking malicious links, or installing malware. Through this hands-on exercise, you will gain insights into how attackers exploit human vulnerabilities, learn the tactics used to craft convincing phishing emails, and explore techniques to create malicious attachments that can compromise a user's system. In this lab, you will embark on a simulated cybersecurity mission within a fictitious organization. Your objective is to browse the organization's website to gather information on employees, email addresses, and their potential interests. You will then employ the tactics of engagement by sending targeted phishing emails to these individuals, using techniques such as spoofing emails, creating malicious attachments (executable programs, LibreOffice documents with macros), and more. As your victims respond to your emails, they will reveal why they trust or distrust your messages, providing invaluable feedback. The ultimate goal is to persuade these users to open the malicious attachments, granting you remote access to their systems. Your mission culminates in accessing the coveted "flag" files hidden in each victim's home directory, which you will submit as proof of your success. This lab offers a unique opportunity to understand how cybersecurity threats exploit human psychology, providing a practical foundation to enhance cyber awareness and strengthen defenses against these deceptive tactics.
Lab sheet	https://docs.google.com/document/d/1Yb28GYRLD0Ihnb5oeFp-TGurhb8BZfm_qFbSSrGEknI/edit?usp=sharing
Type	ctf-lab; lab-sheet
Author	Z. Cliffe Schreuders
VM names	victim_server; kali

CyBOK KAs, Topics, and Keywords

KA	Topic	Keywords
Human Factors (HF)	Human Error	latent usability failures in systems-of-systems
Adversarial Behaviours (AB)	Attacks	SOCIAL ENGINEERING; MALICIOUS ACTIVITIES BY MALICIOUS ATTACHMENTS
Malware & Attack Technology (MAT)	Attacks and exploitation	EXPLOITATION FRAMEWORKS; MALCODE/MALWARE - SOCIAL ENGINEERING - BAITING; MALCODE/MALWARE - SOCIAL ENGINEERING - PRETEXTING; MALCODE/MALWARE - VIRUSES - COUNTERMEASUMALCODE/MALWARE - VIRUSES - MACRO VIRUSES; MALCODE/MALWARE - SPAM; MALCODE/MALWARE - SPOOFING
Web & Mobile Security (WAM)	Client-Side Vulnerabilities and Mitigations	E-MAIL - PHISHING; E-MAIL - SPOOFING

Command to build VMs and start scenario:

ruby secgen.rb -s scenarios/labs/cyber_security_landscape/3_phishing.xml run

Key	Data
Name	Encoding and Encryption Lab
Description	Introduction Cryptography is a fundamental aspect of information security, enabling us to secure data from prying eyes and malicious actors. This hands-on lab will equip you with essential knowledge and skills related to encoding schemes, hash algorithms, and the use of tools like OpenSSL and Gnu Privacy Guard (GPG). You'll explore concepts like encoding data into different formats, encrypting and decrypting information, and managing keys. These skills are crucial for anyone interested in the field of cybersecurity, data protection, or simply understanding how secure communication works in the digital age. Throughout the lab, you'll learn to encode strings into various formats, including hexadecimal and Base64. You'll experiment with symmetric key encryption using the Data Encryption Standard (DES) and the Advanced Encryption Standard (AES). Additionally, you'll explore public-key cryptography with GPG, creating and managing keys, encrypting and decrypting data, and understanding the importance of key pairs. In the home directory of your VM there are a series of encoding and encryption CTF challenges for you to complete, to put your knowledge into practice.
Lab sheet	https://docs.google.com/document/d/1wKm2c7yxhM-9GnAiS_Mgvk_8-H7FKEBeGeMc6H0KlwA/edit?usp=sharing
Type	ctf-lab; hackerbot-lab; lab-sheet
Author	Z. Cliffe Schreuders
VM names	desktop

KA	Topic	Keywords
Applied Cryptography (AC)	Algorithms, Schemes and Protocols	Encoding vs Cryptography; Caesar cipher; Vigenere cipher; SYMMETRIC CRYPTOGRAPHY - AES (ADVANCED ENCRYPTION STANDARD)
Forensics (F)	Artifact Analysis	Encoding and alternative data formats
Web & Mobile Security (WAM)	Fundamental Concepts and Approaches	ENCODING; BASE64

Key	Data
Name	Symmetric Encryption with AES
Description	Symmetric encryption involves using the same key for both the encryption and decryption of data. In this lab, you will explore symmetric encryption with a focus on the Advanced Encryption Standard (AES). AES is a widely used block cipher that plays a crucial role in securing data in various applications, from secure communications to data protection. This lab aims to provide you with a high-level understanding of AES and its fundamental operations, such as Substitution (SubBytes), Permutation (ShiftRows and MixColumns), and Key Addition (Round Key). You will also explore how to work with AES encryption and decryption using both the GPG tool and Python3 with the Cryptodome module. This practical hands-on experience will equip you with the knowledge and skills necessary to apply AES encryption to secure your data. Throughout this lab, you will have the opportunity to complete a series of tasks and challenges. These practical exercises will not only help you understand the underlying principles of AES but also equip you with the skills to apply this encryption technique to real-world scenarios, ensuring the security and confidentiality of your data. This is a Hackerbot lab. The labsheet is available once you claim a set of VMs. Work through the labsheet, then when prompted interact with Hackerbot.
Type	ctf-lab; hackerbot-lab; lab-sheet
Author	Z. Cliffe Schreuders
VM names	desktop; hb_server

KA	Topic	Keywords
Applied Cryptography (AC)	Algorithms, Schemes and Protocols	ADVANCED ENCRYPTION STANDARD (AES); ECB (ELECTRONIC CODE BOOK) BLOCK CIPHER MODE
Applied Cryptography (AC)	Symmetric Cryptography	symmetric primitives; symmetric encryption and authentication
Applied Cryptography (AC)	Cryptographic Implementation	Cryptographic Libraries; ENCRYPTION - TOOLS

Key	Data
Name	Asymmetric Encryption with RSA
Description	Public key cryptography (also known as asymmetric encryption) enables secure communication, digital signatures, and data encryption without the need for a shared secret key. In this lab you will delve into the world of public key cryptography, specifically focusing on the RSA (Rivest-Shamir-Adleman) cipher, one of the most widely used asymmetric encryption methods. This lab will help you understand the fundamental principles of RSA encryption, key pair generation, and encryption/decryption processes. You will also interact with Hackerbot, a chatbot designed to challenge and test your knowledge as you progress through the exercises. Throughout this lab, you will learn the key concepts and procedures related to RSA encryption. You will start by generating RSA key pairs and performing encryption and decryption operations using both OpenSSL and Python. You will pick prime numbers, calculate modulus and phi(N), select encryption and decryption keys, and apply these concepts to encrypt and decrypt messages. The lab includes various Hackerbot challenges that you will complete, such as creating key pairs, encrypting and decrypting messages, and solving encryption-related quizzes. These practical exercises will deepen your understanding of RSA encryption and help you gain hands-on experience in using this cryptographic technique to secure information and communication. This is a Hackerbot lab. The labsheet is available once you claim a set of VMs. Work through the labsheet, then when prompted interact with Hackerbot.
Type	ctf-lab; hackerbot-lab; lab-sheet
Author	Z. Cliffe Schreuders
VM names	desktop; hb_server

KA	Topic	Keywords
Applied Cryptography (AC)	Algorithms, Schemes and Protocols	CRYPTOGRAPHY - ASYMMETRIC - RSA; DIFFIE-HELLMAN ALGORITHM
Applied Cryptography (AC)	Public-Key Cryptography	public-key encryption; public-key signatures; RSA MODULUS; RSA PROBLEM; RSA TRANSFORM
Applied Cryptography (AC)	Key Management	key generation
Applied Cryptography (AC)	Cryptographic Implementation	Cryptographic Libraries; ENCRYPTION - TOOLS

Key	Data
Name	Digital Forensics: Trashed Evidence
Description	Introduction Welcome to the world of digital forensics! In this CTF problem-based learning task, you will be given a virtual machine (VM) representing a seized PC from an operative who works for an evil organization bent on global domination. Your task is to analyze the contents of the VM to gather evidence and identify any evidence of malicious activities on the machine. In this task, you will be using digital forensics techniques to extract information from the VM, including files, and internet history, and and will involve retrieving deleted files and identifying and extracting data hidden using steganography. These tasks will require a combination of technical skills, creativity, and critical thinking. With your help we can discover more about their evil plans! The password to login is: tiaspbiqe2r
Type	ctf-lab
Author	Z. Cliffe Schreuders
VM names	seized_desktop

KA	Topic	Keywords
Forensics (F)	Operating System Analysis	artifact analysis; Steganography; Encoding and alternative data formats; Deleted files; SEARCH FOR EVIDENCE; METADATA; data recovery and file content carving; storage forensics; data abstraction layers; application artifacts; data acquisition; encryption concerns; Hidden files
Forensics (F)	Application Forensics	APPLICATION ARTIFACTS; web browsers; url history; SEARCH FOR EVIDENCE; URL HISTORY; Command history; Database analysis
Privacy & Online Rights (POR)	Privacy Technologies and Democratic Values	METADATA; STEGANOGRAPHY

Key	Data
Name	Introduction to Linux and Security lab
Description	Introduction In this lab, you will delve into the fascinating world of Linux and security tools, gaining practical knowledge and skills that are highly relevant in the field of cybersecurity. Linux is a powerful and versatile operating system widely used in the IT industry. Understanding Linux and its command-line interface is crucial for anyone interested in security testing and ethical hacking. You'll begin by familiarizing yourself with Linux basics, from fundamental command-line operations to concepts like piping between programs and file redirection. This lab will also introduce you to the Kali Linux distribution, a platform designed for penetration testing and ethical hacking. Throughout this lab, you will learn how to perform various tasks, such as creating and manipulating files, exploring the Linux file system, and conducting network-related activities. You will gain hands-on experience with SSH, a secure remote shell protocol used for administration, and even attempt online brute force attacks to understand the importance of security in the digital realm. By the end of this lab, you will have honed your Linux command-line skills, developed a basic understanding of networking, and practiced using essential security tools, preparing you for more advanced challenges in the field of cybersecurity. Get ready to embark on an engaging journey where you will explore the core elements of Linux and security. Lecture Slides here Reading Chapters 1 "Introduction" and 2 "Unix History and Lineage": Garfinkel, S. and Spafford, G. and Schwartz, A. (2003), Practical Unix and Internet Security, O'Reilly. (ISBN-10: 0596003234) Suggested: Chapter 1 "An Overview of Computer Security": Bishop, M. (2005), Introduction to Computer Security, Addison-Wesley. (ISBN-10: 0321247442)
Lab sheet	https://docs.google.com/document/d/1vA_Ev_GPqPg3cGZblgVclWmTU-sUEEBqwYpFH09mQjg/edit?usp=sharing
Type	ctf-lab; lab-sheet
Author	Z. Cliffe Schreuders
VM names	desktop; kali

KA	Topic	Keywords
Network Security (NS)	Network Protocols and Vulnerability	common network attacks
Security Operations & Incident Management (SOIM)	PENETRATION TESTING	PENETRATION TESTING - SOFTWARE TOOLS

Key	Data
Name	Malware and an Introduction to Metasploit and Payloads
Description	Introduction In this hands-on lab you will dive into the intriguing world of malware and ethical hacking, exploring how attackers create and deploy malicious software to compromise computer systems. The lab introduces you to various types of malware, such as Trojan horses, viruses, and worms, shedding light on their distinct characteristics and functionalities. You will also get acquainted with the powerful Metasploit framework, a widely-used tool in the realm of ethical hacking, and learn how to generate malicious payloads using it. Throughout this engaging learning experience, you will undertake practical tasks, such as creating a Trojan horse that adds a new user to a Windows system, evading anti-malware detection by encoding and utilizing executable templates, and experimenting with various payloads. These hands-on exercises will equip you with essential skills in understanding, generating, and testing malware, all within a controlled and ethical learning environment. Whether you're a budding ethical hacker or simply curious about the world of cybersecurity, this lab will provide valuable insights and practical knowledge in the field of malware and penetration testing. So, gear up to explore the darker side of computing and learn how to protect against it. You'll explore, experiment, and emerge with practical expertise in a controlled environment. Lecture Slides here Reading Chapter 23 "Protecting Against Programmed Threats": Garfinkel, S. and Spafford, G. and Schwartz, A. (2003), Practical Unix and Internet Security, O'Reilly. (ISBN-10: 0596003234) Available online via the library Suggested: Chapter 3 "Program Security": Pfleeger, C.P. and Pfleeger, S.L. (2007), Security in Computing, Prentice Hall. (ISBN-10: 0132390779) Chapter 19 "Malicious Logic": Bishop, M. (2005), Introduction to Computer Security, Addison-Wesley. (ISBN-10: 0321247442)
Lab sheet	https://docs.google.com/document/d/1QsOLdqwBP6njIoKbeQRdattbLBLPFCB-eKHW0OxdE8U/edit?usp=sharing
Type	lab-sheet
Author	Z. Cliffe Schreuders
VM names	windows_victim; kali

KA	Topic	Keywords
Malware & Attack Technology (MAT)	Malware Taxonomy	dimensions; kinds
Malware & Attack Technology (MAT)	Malware Analysis	anti-analysis and evasion techniques
Malware & Attack Technology (MAT)	Attacks and exploitation	EXPLOITATION FRAMEWORKS
Security Operations & Incident Management (SOIM)	PENETRATION TESTING	PENETRATION TESTING - SOFTWARE TOOLS; PENETRATION TESTING - ACTIVE PENETRATION

Key	Data
Name	Vulnerabilities, Exploits, and Remote Access Payloads
Description	Introduction In this lab you will explore one of the major threats in computer security: software vulnerabilities. It's a critical topic in the field of cybersecurity, as understanding how attackers exploit weaknesses in software systems is essential for both defensive and offensive security measures. The lab will cover various aspects, starting with an introduction to software vulnerabilities and the causes behind them, moving on to explore different types of payloads, such as bind shells and reverse shells. You will also get hands-on experience with the Metasploit framework, a powerful tool for conducting security assessments and penetration testing. Throughout this lab, you will gain a deeper understanding of software vulnerabilities, how exploits work, and the techniques attackers use to gain remote access to vulnerable systems. You will learn and apply both remote and local (client-side) exploits. You'll simulate creating and using a malicious PDF document to compromise a system, as well as remotely exploiting a system with known vulnerabilities. This hands-on experience will provide you with valuable insights into the world of cybersecurity and start to learn about the power of the Metasploit framework, a popular hacking and penetration testing tool. Lecture Slides here Reading Chapter 8: Using Metasploit. Harper, A. and Harris, S. and Ness, J. and Eagle, C. and Lenkey, G, and Williams, T. (2011), Gray hat hacking : the ethical hacker's handbook, McGraw-Hill. (ISBN: 978-0-07-174256-6) Available online via the library
Lab sheet	https://docs.google.com/document/d/11I8xMUXrT5ArJIsAhwGDtQ4RkH4l9CR4C2wh9_wz8xM/edit?usp=sharing
Type	ctf-lab; lab-sheet
Author	Z. Cliffe Schreuders
VM names	windows_victim; linux_victim_server; kali

KA	Topic	Keywords
Malware & Attack Technology (MAT)	Attacks and exploitation	EXPLOITATION; EXPLOITATION FRAMEWORKS
Security Operations & Incident Management (SOIM)	PENETRATION TESTING	PENETRATION TESTING - SOFTWARE TOOLS; PENETRATION TESTING - ACTIVE PENETRATION

Key	Data
Name	Information Gathering: Footprinting
Description	Introduction In this lab on information gathering, you will dive into the initial stage of preparing for various cybersecurity assessments and penetration tests. Information gathering involves understanding a target and its potential vulnerabilities by collecting data that can be used for social engineering attacks, identifying network ranges and exposed systems, and discovering various services that may be potential entry points for attackers. This lab focuses on identifying hosts using DNS (Domain Name System) and provides hands-on experience with tools and techniques that ethical hackers and security professionals use to gather valuable insights about their targets. Throughout this lab, you will learn how to use DNS-related commands and tools to determine IP addresses associated with domain names, perform reverse DNS lookups, explore DNS zone transfers to identify servers, and utilize Whois to extract domain ownership information. You will also work with automated DNS footprinting tools like dnstracer, dnsmap, dnsenum, and dnsrecon to efficiently collect valuable data. By the end of this lab, you will have a solid foundation in information gathering techniques that are essential for ethical hacking and security testing, allowing you to move on to the scanning phase of a target assessment. Lecture Slides here Reading Part I Casing the establishment. McClure, S. and Scambray, J. and Kurtz, G. (2009), Hacking exposed, McGraw-Hill. (ISBN: 978-0-07-161375-0) Available online via the library
Lab sheet	https://docs.google.com/document/d/1Whs4c_mN7fFjtrYgg_uzmCGBH_EYjr7fTAgoM-OZTqQ/edit?usp=sharing
Type	lab-sheet
Author	Z. Cliffe Schreuders
VM names	kali

KA	Topic	Keywords
Adversarial Behaviours (AB)	Models	kill chains
Malware & Attack Technology (MAT)	Malicious Activities by Malware	cyber kill chain
Network Security (NS)	PENETRATION TESTING	PENETRATION TESTING - DNS ZONE TRANSFER; EXPLOITATION FRAMEWORKS
Security Operations & Incident Management (SOIM)	PENETRATION TESTING	PENETRATION TESTING - NETWORK MAPPING - RECONNAISSANCE; PENETRATION TESTING - SOFTWARE TOOLS

Key	Data
Name	Information Gathering: Scanning
Description	Introduction Information gathering and network scanning are processes aimed at understanding the structure of a network and identifying potential vulnerabilities, and ensuring the overall security of the network. Scanning a critical stage for an attacker, since it can give them the information they need in order to launch an attack. By delving into this lab, you will acquire essential knowledge and practical skills necessary for both defensive and offensive security strategies This lab provides an in-depth exploration of scanning techniques. You will learn how to perform ping sweeps to identify live hosts on a network, create your own ping sweep bash script, and use Nmap (a popular and powerful open source tool) for host discovery. You will also explore the world of port scanning, creating your own port scanner using a bash script, and conducting SYN port scans. Additionally, you will gain insights into service identification through banner grabbing and protocol analysis, and discover methods to detect the operating system of a remote system. By the end of this lab, you will be equipped with a comprehensive understanding of network scanning techniques and will have hands-on experience in executing these scans to assess the security of target systems. Reading Chapter 2 Reconnaissance and Chapter 3 Scanning. Engebretson, P. (2011), The Basics of Hacking and Penetration Testing: Ethical Hacking and Penetration Testing Made Easy, Elsevier Inc. (ISBN: 978-1-59749-655-1) Available online via the library
Lab sheet	https://docs.google.com/document/d/1KScKw7M4Bt_FE5F_2tI6tnK1NrKNAJkyh5F2TpOh9hA/edit?usp=sharing
Type	ctf-lab; lab-sheet
Author	Z. Cliffe Schreuders
VM names	linux_victim_server; kali

Key	Data
Name	From Scanning to Exploitation
Description	Introduction This lab provides hands-on experience in scanning and exploitation, allowing you to delve into the mindset of an ethical hacker. You will explore the process of moving from initial network scanning to identifying vulnerabilities, searching for exploits, and ultimately gaining control of target systems. In this lab, you will learn how to scan a network for vulnerable servers, use Metasploit and Armitage for exploitation, and search for vulnerabilities in online databases. Specifically, you will perform tasks such as running network scans using Nmap, importing scan results into Metasploit, searching for Metasploit exploits for various platforms and services, launching exploits to gain access to target systems, and using Armitage to automate certain aspects of the hacking process. By the end of the lab, you will have gained valuable insights into the tactics and techniques used by both malicious actors and cybersecurity professionals. Reading Chapter 2 Reconnaissance and Chapter 3 Scanning. Engebretson, P. (2011), The Basics of Hacking and Penetration Testing: Ethical Hacking and Penetration Testing Made Easy, Elsevier Inc. (ISBN: 978-1-59749-655-1) Available online via the library
Lab sheet	https://docs.google.com/document/d/1puLuKwqiFMTAZhMKKLhS_aK7kKwWnKw1e3StJBiFmFA/edit?usp=sharing
Type	ctf-lab; lab-sheet
Author	Z. Cliffe Schreuders
VM names	windows_server; linux_server; kali

Key	Data
Name	Post-exploitation
Description	Introduction Post-exploitation is the phase where an attacker, having gained initial access to a target system, aims to further exploit the compromised system, gather information, escalate privileges, and maintain access. Once an attacker has a foothold in a system, they can misuse the privileges they have “appropriated” to take actions on the system, or go on to try to gain even more access on this or other connected systems. In this lab, you will delve into the intricacies of post-exploitation in a controlled environment, gaining hands-on experience in a range of activities that mirror real-world cyberattacks. You will learn the skills used by an attacker or security tester, to take action once an exploit has been successful. Throughout this lab, you will learn how to identify and exploit vulnerabilities in a target system, understand the extent of access you have gained, and execute privilege escalation to elevate your control on the compromised system. You will compile and transfer a local privilege escalation exploit, collect password hashes, and discover sensitive data. Additionally, you will explore advanced payloads, such as Meterpreter, and experiment with features like keylogging and screen capturing. You will also understand the concept of pivoting, where you attack one system through another, and cover your tracks to maintain stealth. By the end of this comprehensive lab, you will have completed the essential stages of a typical cyberattack, enhancing your skills and knowledge in the field of cybersecurity. Suggested reading An excellent resource is Metasploit Unleashed.
Lab sheet	https://docs.google.com/document/d/1bt0yKzKjExEih5cmXyl-D__loGwV0UJxQJEDIXxCGxw/edit?usp=sharing
Type	ctf-lab; lab-sheet
Author	Z. Cliffe Schreuders
VM names	windows_server; linux_server; kali

Key	Data
Name	Vulnerability Analysis
Description	Introduction It is important for organisations to manage the security of their systems and for security professionals to efficiently scan networks for vulnerabilities. Vulnerability assessment is a critical practice aimed at identifying and addressing weaknesses in computer systems. This process is instrumental in safeguarding networks and data from potential threats and attacks. In this lab, you will explore a range of industry-standard tools, such as Nmap, Nessus, and Nikto, to evaluate the security posture of vulnerable services. The lab provides a hands-on experience that will equip you with the skills and knowledge to detect vulnerabilities, assess their severity, and understand the importance of using different tools for comprehensive security assessments. Throughout this lab, you will learn how to use Nmap and its Nmap scripting engine (NSE) to perform vulnerability scanning, discover potential weaknesses in a target system, and gain insights into the ethical hacking and penetration testing process. You will also explore Nessus, a commercial vulnerability scanner, and understand how it operates, what vulnerabilities it can identify, and how to interpret the results. Additionally, you will utilize Nikto, a web vulnerability scanner, to assess the security of web servers, identifying critical vulnerabilities. By completing tasks like initiating scans, analyzing results, and considering the limitations of automated tools, you will gain a practical understanding of vulnerability assessment and the role it plays in strengthening cybersecurity.
Lab sheet	https://docs.google.com/document/d/1rdNcOmYOjsRu97Gh3ds8HbTpORGxbMcd2Q7U4TATIbw/edit?usp=sharing
Type	ctf-lab; lab-sheet
Author	Z. Cliffe Schreuders
VM names	linux_server; kali

Files

README-CyBOK-Scenarios-Indexed.md

Latest commit

History

README-CyBOK-Scenarios-Indexed.md

File metadata and controls

Lab Scenarios and CyBOK

Scenarios Indexed By CyBOK Knowledge Area (KA)

Human Factors (HF)

HF Scenarios

HF Scenarios by Topics

Adversarial Behaviours (AB)

AB Scenarios

AB Scenarios by Topics

Malware & Attack Technology (MAT)

MAT Scenarios

MAT Scenarios by Topics

Web & Mobile Security (WAM)

WAM Scenarios

WAM Scenarios by Topics

Applied Cryptography (AC)

AC Scenarios

AC Scenarios by Topics

Forensics (F)

F Scenarios

F Scenarios by Topics

Privacy & Online Rights (POR)

POR Scenarios

POR Scenarios by Topics

Network Security (NS)

NS Scenarios

NS Scenarios by Topics

Security Operations & Incident Management (SOIM)

SOIM Scenarios

SOIM Scenarios by Topics

Software Security (SS)

SS Scenarios

SS Scenarios by Topics

Authentication, Authorisation & Accountability (AAA)

AAA Scenarios

AAA Scenarios by Topics

Operating Systems & Virtualisation (OSV)

OSV Scenarios

OSV Scenarios by Topics

Cyber-Physical Systems Security (CPS)

CPS Scenarios

CPS Scenarios by Topics

Scenario CyBOK Keywords

cyber_security_landscape/3_phishing.xml

Details

CyBOK KAs, Topics, and Keywords

cyber_security_landscape/4_encoding_encryption.xml

Details

CyBOK KAs, Topics, and Keywords

cyber_security_landscape/6_symmetric_enc_aes.xml

Details

CyBOK KAs, Topics, and Keywords

cyber_security_landscape/7_asymmetric_enc_rsa.xml

Details

CyBOK KAs, Topics, and Keywords

forensics/trashed_evidence.xml

Details

CyBOK KAs, Topics, and Keywords

introducing_attacks/1_intro_linux.xml

Details

CyBOK KAs, Topics, and Keywords

introducing_attacks/2_malware_msf_payloads.xml

Details

CyBOK KAs, Topics, and Keywords

introducing_attacks/3_vulnerabilities.xml

Details

CyBOK KAs, Topics, and Keywords

introducing_attacks/4_dns_footprinting.xml

Details

CyBOK KAs, Topics, and Keywords

introducing_attacks/5_scanning.xml

Details

CyBOK KAs, Topics, and Keywords

introducing_attacks/6_exploitation.xml

Details

KA	Topic	Keywords
Security Operations & Incident Management (SOIM)	PENETRATION TESTING	VULNERABILITY ANALYSIS / VULNERABILITY SCANNING; AUDIT APPROACH; PENETRATION TESTING - SOFTWARE TOOLS; PENETRATION TESTING - ACTIVE PENETRATION
Malware & Attack Technology (MAT)	Attacks and exploitation	EXPLOITATION

Key	Data
Name	Labtainers lab: acl
Description	A Labtainers lab.
Type	ctf-lab; lab-sheet
Author	Z. Cliffe Schreuders
VM names	desktop; hackerbot_server

KA	Topic	Keywords
Authentication, Authorisation & Accountability (AAA)	Authorisation	access control; enforcing access control; ACCESS CONTROL - DAC (DISCRETIONARY ACCESS CONTROL); Vulnerabilities and attacks on access control misconfigurations
Malware & Attack Technology (MAT)	MALCODE/MALWARE	trojan; backdoor; TROJANS - BACKDOOR
Operating Systems & Virtualisation (OSV)	Primitives for Isolation and Mediation	Access controls and operating systems; Linux security model; Unix File Permissions; filesystems; inodes; and commands; umask
Operating Systems & Virtualisation (OSV)	Primitives for Isolation and Mediation	Access controls and operating systems; Linux security model; Linux Extended Access Control Lists (facl)
Operating Systems & Virtualisation (OSV)	Role of Operating Systems	mediation

Key	Data
Name	Labtainers lab: arp-spoof
Description	A Labtainers lab.
Type	ctf-lab; lab-sheet
Author	Z. Cliffe Schreuders
VM names	desktop

KA	Topic	Keywords
Network Security (NS)	Network Protocols and Vulnerability	ADDRESS RESOLUTION PROTOCOL(ARP); ARP (ADDRESS RESOLUTION PROTOCOL); ARP SPOOFING; MITM (MAN-IN-THE-MIDDLE ATTACK); MAN-IN-THE-MIDDLE ATTACK (MITM); ATTACK(S) - ARP
Security Operations & Incident Management (SOIM)	Monitor: Data Sources	network traffic

Key	Data
Name	Labtainers lab: backups
Description	A Labtainers lab.
Type	ctf-lab; lab-sheet
Author	Z. Cliffe Schreuders
VM names	desktop

KA	Topic	Keywords
Security Operations & Incident Management (SOIM)	Execute: Mitigation and Countermeasures	Recover data and services after an incident; BACKUP - DIFFERENTIAL; BACKUP - INFERENTIAL
Security Operations & Incident Management (SOIM)	INCIDENT RESPONSE	RECOVERY - BACKUPS; RECOVERY; BACKUPS

Key	Data
Name	Labtainers lab: backups2
Description	A Labtainers lab.
Type	ctf-lab; lab-sheet
Author	Z. Cliffe Schreuders
VM names	desktop

Key	Data
Name	Labtainers lab: bufoverflow
Description	A Labtainers lab.
Type	ctf-lab; lab-sheet
Author	Z. Cliffe Schreuders
VM names	desktop

KA	Topic	Keywords
Software Security (SS)	Categories of Vulnerabilities	memory management vulnerabilities; Stack smashing buffer overflows
Malware & Attack Technology (MAT)	Attacks and exploitation	EXPLOITATION; EXPLOITATION FRAMEWORKS; Exploit development; Metasploit Framework development
Software Security (SS)	Mitigating Exploitation	ASLR (ADDRESS SPACE LAYOUT RANDOMIZATION); NON-EXECUTABLE MEMORY