Fall 2023
NOTE: Any instance of <T>
represents your
team number. For example, if you're on Team 8,
172.18.13.<T>
translates to
172.18.13.8
Internal and External DNS server serving as the digital phonebook for your network. Some assembly required!
192.168.<T>.12
172.18.13.<T>
Required Domains:
DNS Address | IP | Description |
---|---|---|
ns1.team<T>.cnyhackathon.org |
172.18.13.<T> |
Public DNS Nameserver |
www.team<T>.cnyhackathon.org |
172.18.13.<T> |
Public Web Nameserver |
shell.team<T>.cnyhackathon.org |
172.18.14.<T> |
Public SSH server |
files.team<T>.cnyhackathon.org |
172.18.14.<T> |
Public File Share |
www.team<T>.net |
192.168.<T>.5 |
Internal Alias for Web server |
db.team<T>.net |
192.168.<T>.7 |
Internal Alias for MySQL server |
ns1.team<T>.net |
192.168.<T>.12 |
Internal Alias for DNS Server |
Note that <T>
represents the team's
number
The above addresses containing .cnyhackathon.org
should
be publicly available and will be scored through the router,
and checked for both forward and reverse lookups.
The above addresses containing .team<T>.net
will be scored from inside the participant's network, and
checked for both forward and reverse lookups.
A suspiciously sourced PHP Web Application with a MySQL backend
Database. The docs said the config file is found in
/var/www/html
and the MySQL database can be recovered using
the setup file betterblog.sql
, but not much else. It also
claimed to be “super secure” when configured correctly, whatever that
means.
Note that all Web checks are scored through the router
tester
testtesttest
The Root CA cert for the ca.cnyhackathon.org server has the hash
761e8fbafabceac17680a28c82a097d2
.
A valid certificate can be generated by using the following command:
certbot --server https://ca.cnyhackathon.org/acme/acme/directory
Warning: Certbot will add a random sleep delay when run
non-interactively. When automating certbot SSL renewal, use the flag
--no-random-sleep-on-renew
to ensure the check runs within
the allotted time, as our renewal window is shorter than a standard
certificate.
NOTE: The domain
www.team<T>.cnyhackathon.org
will be resolved using
the participants DNS server!
www.team<T>.cnyhackathon.org
.Data storage server used to power the web application. An initial
backup of the MySQL database was taken and stored at
/root/betterblog.sql
. The data is synced to the QA
department via an automated task that reads MySQL directly. The QA
Department occasionally writes data back to the database as well.
The MySQL services are scored from the internal team network,
using the internal IP address of
192.168.<T>.7
.
betterblog
betterblog!
betterblog
posts
MySQL Commands for restoring the database schema:
mysql betterblog -u betterblog -p < /root/betterblog.sql
Established Shell Server and File Share for staff and external associates, and must be kept online at all costs.
night_in_the_woods
starship_troopers_terran_command
angry_birds_2
planet_crafter
beat_saber
monument_valley
return_of_the_obra_dinn
hollow_knight
rimworld
subnautica
deaths_door
gunfire_reborn
pokemon_go
cities_skylines
ssh-rsa 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 SCORING KEY DO NOT REMOVE
$6$PljFlMmWUAI2AEV9$5DM0zDEIOCJHQ4ggafxpnkOIJmLklqMjqAuWza1NyI3hsPdhAjAT2jWr8eKPPTbdi51vZkAof6vDkGzyHP8bk1
night_in_the_woods
starship_troopers_terran_command
angry_birds_2
planet_crafter
beat_saber
monument_valley
return_of_the_obra_dinn
hollow_knight
rimworld
subnautica
deaths_door
gunfire_reborn
pokemon_go
cities_skylines
/mnt/files