A truly euphoric competition scoring engine experience: the DWAYNE-INATOR-5000.
- Download this repository (
git clone https://github.com/jfisher009/DWAYNE-INATOR-5000). - Compile the code (
cd DWAYNE-INATOR-5000; go build).- Unfortunately, you need
gccforgo-sqlite3.
- Unfortunately, you need
- Save your configuration as
./dwayne.conf. - Run the engine (
./DWAYNE-INATOR-5000).
Minimal example:
event = "Rad Comp"
[[admin]]
name = "admin"
pw = "ohyeah"
[[team]]
ip = "1"
pw = "Team1Pw!"
[[team]]
ip = "2"
pw = "AppleSauce"
[[creds]]
name = "users"
usernames = ["john", "hiss", "richard", "sheriff", "captain", "guards", "otto", "rabbits", "skippy", "tagalong", "kluck", "toby"]
defaultpw = "Password1!"
[[box]]
name = "village"
ip = "10.20.x.1"
[[box.dns]]
[[box.dns.record]]
kind = "A"
domain = "townsquare.sherwood.lan"
answer = ["192.168.1.4",]
[[box.dns.record]]
kind = "MX"
domain = "sherwood.lan"
answer = ["192.168.1.5", "10.20.1.5"]
[[box.ftp]]
anonymous = true
[[box.ftp.file]]
name = "memo.txt"
hash = "9d8453505bdc6f269678e16b3e56c2a2948a41f2c792617cc9611ed363c95b63"
[[box.ssh]]
[[box.cmd]]
display="icmp"
command = "ping -c 4 BOXIP"
regex = "4 packets transmitted, 4 received, 0"
[[box]]
name="castle"
ip = "10.20.x.4"
[[box.ssh]]Maximal example, with comments:
event = "Awesome Comp" # event title
verbose = true # show more info to competitors
delay = 20 # delay (seconds) between checks (>0) (default 60)
# note: the "real" max delay will be timeout+delay+jitter
jitter = 3 # jitter (seconds) between rounds (0<jitter<delay)
timeout = 5 # check timeout (must be smaller than delay-jitter)
servicepoints = 10 # how many points each up check is worth
slathreshold = 6 # how many checks before incurring SLA violation
slapoints = 13 # how many points is an SLA penalty (default slathreshold * 2)
timezone = "America\Rainy_River" # timezone you want to use
nopasswords = false # disables password change requests. makes all services anonymous
easypcr = true # allow easy password changes
disableinfopage = false # disable the "info" page on the nav header
# Admins have access to all records and information
[[admin]]
name = "admin"
pw = "letsallhavefun"
# Red teams will be able to claim red team incidents
# If no red teams are specified, red reporting is disabled
[[red]]
name = "red"
pw = "HACKTHEPLANET"
# Each team added here will show up on the scoreboard
[[team]]
ip = "1"
pw = "Team1Pw!"
[[team]]
ip = "2"
pw = "AppleSauce"
# Credlists allow you to have different users for different services
# If none is specified, the first cred list in the config will be used as default
[[creds]]
name = "users"
usernames = ["john", "hiss", "richard", "sheriff", "captain", "guards", "otto", "rabbits", "skippy", "tagalong", "kluck", "toby"]
defaultpw = "Password1!"
# Users are permitted to change passwords for any user
# But they can not change usernames or add new ones
[[creds]]
name = "admins"
usernames = ["robin", "dale", "tuck"]
defaultpw = "Password1!"
[[creds]]
name = "database"
usernames = ["wordpress",]
defaultpw = "Password2@"
[[creds]]
name = "web"
usernames = ["admin",]
defaultpw = "Password3#"
# Box configurations
[[box]]
name = "village"
ip = "10.20.x.1"
# Run command with sh, compare output against regex.
# Command must return exit code 0 to pass.
[[box.cmd]]
command = "python3 ./test.py"
regex = "success"
# If you omit a value, it is set to the default
# For example, if I removed the line port = 4000,
# the check port would be 53
[[box.dns]]
port = 4000 # default 53
[[box.dns.record]]
kind = "A" # DNS record type
domain = "townsquare.sherwood.lan" # Domain query
answer = ["192.168.1.4",] # List of acceptable answers
[[box.dns.record]]
kind = "MX"
domain = "sherwood.lan"
answer = ["192.168.1.5", "10.20.1.5"]
[[box.ftp]]
port = 55 # default 21
anonymous = true # default false
[[box.ftp.file]]
name = "memo.txt" # file to retrieve
hash = "9d8453505bdc6f269678e16b3e56c2a2948a41f2c792617cc9611ed363c95b63" # sha256 sum to compare to
# When multiple files are passed, one is randomly chosen
# This pattern persists for any multi-item check
[[box.ftp.file]]
name = "workfiles.txt" # file to retrieve
regex = "work.*work" # regex to test against file
[[box.imap]]
port = 33 # default 143
encrypted = true # default false
[[box.ldap]]
port = 222 # default 636;
encrypted = true # default false
domain = "sherwood.lan"
[[box.ping]]
count = 3 # default 1
allowpacketloss = true # default false
percent = 50 # max percent packet loss
# Note: RDP is nonfunctional until a good go RDP library is written, or I write one
[[box.rdp]]
port = 3389
[[box.smb]]
credlists = ["admins",] # for any check using credentials, you can specify the list
port = 55 # default 21
anonymous = true # default false
[[box.smb.file]]
name = "memo.txt"
hash = "9d8453505bdc6f269678e16b3e56c2a2948a41f2c792617cc9611ed363c95b63"
[[box.smb.file]]
name = "workfiles.txt"
regex = "work.*work"
[[box.smtp]]
encrypted = false # default false
sender = "[email protected]"
receiver = "[email protected]"
body = "howdy, friar! he's about to have an outlaw for an inlaw!"
[[box.sql]]
kind = "mysql" # default mysql
[[box.sql.query]]
contains = true
database = "wordpress"
table = "users"
column = "username"
output = "Tuck"
[[box.sql.query]]
useregex = true
database = "magento"
table = "products"
column = "name"
output = "soup.*[1-9]"
[[box.sql.query]]
database = "squirrelmail"
table = "senders"
column = "name"
output = "Toby Turtle" # Must match exactly
[[box.ssh]]
display = "remote" # you can set the display name for any check
privkey = "village_sshkey" # name of private key in checkfiles/
[[box.ssh]]
badattempts = 2
port = 2222
[[box.ssh.command]]
command = "cat /etc/passwd"
contains = true
output = "robin:"
[[box.ssh.command]]
command = "echo -e '123\n456' | grep 4"
output = "456"
[[box.ssh.command]]
useregex = true
command = "getent `id`"
output = '\w.*:[1-9].*:.*'
[[box.tcp]] # the most simple check. check tcp connect
port = 4444
[[box.vnc]]
port = 5901
[[box.web]]
display = "ecom"
credlists = ["web",]
[[box.web.url]]
path = "/joomla"
regex = ".*easy to get started creating your website.*"
[[box.web.url]]
path="/wordpress"
comparefile = "village_wp.html"
diff = 50
[[box.web.url]]
path="/wp-admin.php"
usernameparam = "user"
passwordparam = "pw"
status = 302
[[box.web]]
port = 8006
scheme = "https"
[[box.web.url]]
# defaults to successful page retrieval
[[box.winrm]]
badattempts = 1
encrypted = true
[[box.winrm.command]]
command = "net user Administrator"
[[box.winrm.command]]
command = "Get-FileContent memo.txt"
contains = true
output = "business as usual in the kingdom!"
[[box]]
name="castle"
ip = "10.20.x.4"
# The above example includes all option, so it's very verbose
# If you want to keep something default, just don't specify it
[[box.smb]]
[[box.ssh]]You can put your stuff in injects.conf in toml format.
Check results are treated as a simple array. Because of this, you can add new checks mid-competition (for example, from an inject), but you need to make sure that it ends up at the end of the array to avoid being mixed with different checks. It's sorted by IP. Will probably change the way this works at some point in the future.
Thanks to the scorestack project for some check code.