Boss Of The SOC v3 blue team ctf
Category : Threat Hunting
2521 Players
4.7
(58)
Difficult
-
Weight : 50 | Solved : 1491
-
Weight : 100 | Solved : 1049
-
Weight : 100 | Solved : 874
-
Weight : 500 | Solved : 796
-
Weight : 100 | Solved : 755
-
Weight : 100 | Solved : 777
-
Weight : 100 | Solved : 648
-
Weight : 500 | Solved : 588
-
Weight : 100 | Solved : 551
-
Weight : 100 | Solved : 530
-
Weight : 100 | Solved : 523
-
Weight : 100 | Solved : 522
-
Weight : 500 | Solved : 501
-
Weight : 1000 | Solved : 380
-
Weight : 1000 | Solved : 405
-
Weight : 500 | Solved : 398
-
Weight : 100 | Solved : 434
-
Weight : 100 | Solved : 402
-
Weight : 100 | Solved : 408
-
Weight : 100 | Solved : 402
-
Weight : 500 | Solved : 357
-
Weight : 500 | Solved : 279
-
Weight : 100 | Solved : 348
-
Weight : 100 | Solved : 345
-
Weight : 100 | Solved : 279
-
Weight : 100 | Solved : 326
-
Weight : 100 | Solved : 304
-
Weight : 100 | Solved : 323
-
Weight : 100 | Solved : 265
-
Weight : 100 | Solved : 287
-
Weight : 100 | Solved : 292
-
Weight : 500 | Solved : 281
-
Weight : 500 | Solved : 293
-
Weight : 500 | Solved : 273
-
Weight : 500 | Solved : 261
-
Weight : 500 | Solved : 235
-
Weight : 500 | Solved : 250
-
Weight : 500 | Solved : 257
-
Weight : 500 | Solved : 258
-
Weight : 500 | Solved : 270
-
Weight : 500 | Solved : 232
-
Weight : 500 | Solved : 233
-
Weight : 500 | Solved : 239
-
Weight : 500 | Solved : 216
-
Weight : 1000 | Solved : 214
-
Weight : 1000 | Solved : 213
-
Weight : 1000 | Solved : 226
-
Weight : 1000 | Solved : 203
-
Weight : 1000 | Solved : 222
Instructions:
- Virtualbox: unzip the VM (pass: cyberdefenders.org), start VM and access Splunk from host machine via http://127.0.0.1:8000
- VMware: login to the VM using vagrant/vagrant and grab the IP address of the VM using "ip address" command. Access Splunk from host machine using the IP address assigned to the VM via http://x.x.x.x:8000
- Challenge Files:
- bots3.ova (Memory: 4 GB, CPU: 2 Cores, Disk: 7.1 GB).
Note: All the information you need as a soc analyst to answer each question is present within the question itself. You just need to figure out how to create the proper splunk search query that will get you the information you want.
Here is a quick guide on how to get started with Splunk.
WriteUps
Submit Writeup-
SHA1SUM:4d66265985c14f6d566f3604a024a0fdea1ec300
-
Password:cyberdefenders.org
-
Size:3 GiB
-
Published:Aug. 5, 2020, midnight
Authors