Yeah the Hakme project isn’t dead, good things take time folks. The garage is finally networked, and i’ll be getting stuff online this week. Main priority is figuring out what to use for a firewall box. I’m going to give a bunch of stuff a try, from pfSense to m0n0wall, and others. Once I am confident that I can expose a server to be attacked without too much fear of someone breaking into my personal computers, things will start rolling a bit smoother. Obviously I am not going to be able to protect against the most elite hackers out there, but hopefully they’ll have better fish to fry.
We did some filming last night and today for the next episode of Hak.5, my segment went off fairly well although I think I should’ve touched more on IDA Pro since it’s the most mainstream of the decompiling programs out there as far as I hear. I covered a Crackme posted at http://www.learnsecurityonline.com using .NET Reflector to break it open and find the password. It’s pretty fun. Learning more of the hands on stuff always helps my big picture view of network security.
In regards to the Hakme project, I acquired the CTF server from Will and will be getting that thing loaded up, and the appropriate people access to it tomorrow. It’s a pretty decent right to launch the project with, and hopefully we outgrow it while being able to afford a replacement.
That’s all for now.
I think I was using Hackme just as a placeholder. The project will be officially called hakme. We’re looking to get everyone on the same page, so I am going to get a subforum setup on the hak5 forums. Anyone who wants to be a part of this, email me at cgerlingjr at gmail and let me know. We have a very good idea of what we want to do, it’s going to stay simple till things are up and running.
Primarily, we need to figure out hosting, soon.
-Chris
I’ve setup a page on the site located here and am actively looking for volunteers. I think we’re going to setup a separate IRC room and create a mailing list, and figure out what other ways we’ll all need to communicate.
Right now I am in need of the following:
- Trustworthy people to volunteer admin time on the project once it’s up and running.
- Volunteers to provide input and configuration work to get the servers how we want them to be. We have to figure out the most secure way to allow people to hack them, and also how to restore them back to a baseline within a reasonable amount of time.
- Legal advice concerning our intention to log some of the activity via a snort sensor.
- Hosting ideas, (CHEAP is good unless we magically stumble into some donations)
- Any other thoughts, input, etc. I’m open to anything.
Thanks!
I spent most of the weekend at the Hak5 house playing rock band, and devising up new stuff to work on.
The current project is going to be a “hackme” network of sorts, where we’ll invite people from the community to participate in various penetration testing type events. We will most likely start off with a Capture the Flag scenario and work from there. This designed to test penetration skills for good, not evil.
If you can offer any help feel free to let me know on the IRC (I’m Hak5Chris there) or just email/comment.
