CSC-405 Introduction to Computer Security

Assignment 2 - Forensics

Assignment 2 is due 2/23/17 on or before 11:59:59pm EST.

Description

In this assignment you have to recover specific information from various captured and intercepted data. Your role as a forensics analyst is to understand the data that you were given and identify a flag for each level. The flag format is always going to be the following: flag{xxx}. To correctly solve each level you have to recover the flag and submit the encapsulated string.

There are two tools to use on the machine that you have access for this assignment. submit is the tool that you can use to submit your answer for every level. It will tell you if your answer was correct or not and keep a record of your submission. You can also use the score program to print the current version of the scoreboard. You can work on your own computer for this assignment and login to the server only to check the scoreboard and submit your answers.

Note that you can attempt any level in the order that you like, you do not have to folow a specific order this time or solve one level to get to the next one.

The files for each level and the server information will be announced on Piazza.

Tools

You will need to sharpen your Linux hacking toolbelt. You will probably need to become familiar with the following tools to understand the data that you want to analyze:

  • tcpdump/wireshark
  • hexdump
  • strings
  • mount

Evaluation

You will be awarded points based on how many levels you solved correctly. You need 5 levels to get 100% for this assignment, which means that there is one bonus level for extra points. However, who needs points when you see your hacker alias in all its glory on the scoreboard?

Submission Instructions

You will need to submit all source code written for this assignment, and a README file. Your README file must contain your name, Unity ID, and a description of how you solved each level. The description is important and will affect how we grade your assignment.

For this submission we are going to use GitHub Classroom. Your submission will be a git repository. If you are not familiar with git here is a quick guide.