<html><head><style> body {height: 100%; color:#000000; font-size:12pt; font-family:Times New Roman;}</style></head><body>I was on the Green Team with David for those CDCs, and we had one simple rule: "We don't do malicious hacker tricks, we do stupid user tricks".<br><br>The philosophy is that the Blue Teams provide us with the services we need to do our jobs, and they protect us from making stupid mistakes. They only let us see and do what we're supposed to see and do...i.e., if we're not supposed to see a file, they won't let us see it, and if we're not supposed to run a program, they won't let us run it. Consequently, if we can see it then the Blue Team must want us to see it, and we can do anything we want because the Blue Team won't let us do anything we're not supposed to do.<br><br>For example: it's a good thing to back up your hard drive (I read that on the internet somewhere, so it must be true). The Blue Team kindly provides us with a file server where we can store files. That is also a convenient place to back up my hard drive to. If the Blue Team didn't want me to do that, they wouldn't let me do it. Also, if it's a good thing to back up my hard drive, it's a better thing to back up my hard drive frequently...say, every 5 minutes or so. I don't have to worry about space...the file server is made to store files like this...right?<br><br>And if we see a hyperlink on the web server, we're free to use it, because the Blue Team wouldn't let us do anything that would harm the web server...<br><br>See how that works? If it sounds like fun, come be on the Green Team at the IT-Olympics competition April 30 in Hilton Coliseum, Ames.<br>http://www.it-adventures.org/itolympics.html<br><br><br><br>----- Original Message -----<br>From: David Runneals <david@runneals.com><br>To: cialug@cialug.org<br>Sent: Wed, 30 Mar 2011 23:27:39 -0500 (CDT)<br>Subject: Re: [Cialug] Cyber Defense Competiton - late April<br><br>Josh and others,<div>If your into IT Security, Network Security, Server Security, or just plain Linux, this event is for you! I have the luck (for 2 more years) to be on a blue team at this, which is fun & stressful... I just did the Community College CDC, the ISU CDC, and the National CDC (a mix of colleges and universities) as green team, and I learned alot from just doing that! I know Josh and a few of my friends were on the red team at those events.</div><br><div>I would like to add my comments about the green team. The people on green are basically "dumb users" - RDP: making lots of backups to fill the HDD, deleting important files, catching viruses, (red doesn't like fork/logic bombs).. Web: modifying the php pages, posting stuff to the apps.. (This is the stuff we started out with)... and if you are on green, don't forget that helpful security exploit book library you have! :)</div><br><div>Also, I would like to point out to those IT businesses out there looking for future interns, you can get a free corporate booth down on the floor and donate some of your SWAG - <a href="http://it-adventures.org/php/add_company.php" target="_blank">http://it-adventures.org/php/add_company.php</a> ... This is the place to connect with those future employees that will be taking your position some day in the future!!!<br></div><br><div>See ya'll April 30th 8am-6pm at Hilton!</div><div>(Also red team, please play nice! We are only high schoolers after all! :) - If ya see me, say 'Hi' <font class="Apple-style-span" size="1">and try to work on that social engineering</font>! :) :)</div><br><div><a href="http://www.4-h.org/about/revolution/" target="_blank"><img src="http://www.blog.david.runneals.com/wp-content/uploads/2011/01/RoR-Email-Sig.gif"></a><br><div>David Runneals<br>E: <a href="mailto:david@runneals.com" target="_blank">david@runneals.com</a></div><div><a href="mailto:david@runneals.com" target="_blank"></a><br><div>Please consider your environmental responsibility before printing this e-mail.</div></div><br><br><div class="gmail_quote"><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;"><br><br>Message: 2<br><br>Date: Wed, 30 Mar 2011 19:53:15 +0000<br><br>From: Josh More <<a href="mailto:MoreJ@alliancetechnologies.net" target="_blank">MoreJ@alliancetechnologies.net</a>><br><br><br>This event is similar to the competition that we went to in April, with two major exceptions. First, I got confirmation that we can run as a team this time, so there will be more learning opportunities. Second, it's against high schoolers and not the last round of the college level, so it'll be easier and hopefully a lot more fun.<br><br><br>For those that haven't played, it's a lot like a game of capture the flag that focuses on cyber security. The students build and secure environments the best that they can. Then folks from the community show up for one day and help identify flaws in their system. They have reached out to us for assistance on this, so if you are free on Saturday, April 29th from 8:00am-6:00pm please consider stopping by.<br><br><br>On the technical side, they need attackers for the "red" team.. Do not worry if you've not done hacking or penetration testing before. I'll be there and can help you out. There are lots of tools that we can use for free and, if you're interested, we could work out a way for you to try out the commercial tools that I use on engagements. If you ever wanted to get your hands dirty on the security side, this is the perfect opportunity to do so.<br><br><br>On the business side, they need people to serve on what they call "green" team. If you want to see what our customers see when they are attacked, you can join this team. You would basically hang around with other people, use the systems that the students build and complain when they don't work right. There is no technical skill required to do this, and it might give you a first-hand experience that you could leverage in future discussions with clients.<br><br><br>If you want to help kids learn and benefit the community, this is a great way to do it. There is free food and drink, so there is no cost to this event other than gas (and if there are enough folks, we could probably carpool). Please let me know if you are interested and I will build the volunteer list.<br><br><br>More information on the event is at <a href="http://www.it-adventures.org/itolympics.html" target="_blank">http://www.it-adventures.org/itolympics.html</a><br><br><br><br>Josh More | Senior Security Consultant - CISSP, GIAC-GSLC Gold, GIAC-GCIH<br><br>Alliance Technologies | <a href="http://www.AllianceTechnologies.net" target="_blank">www.AllianceTechnologies.net</a><<a href="http://www.AllianceTechnologies.net" target="_blank">http://www.AllianceTechnologies.net</a>><br><br><br><br>400 Locust St., Suite 840 | Des Moines, IA 50309<br><a href="tel:515.245.7701" target="_blank">515.245.7701</a> | <a href="tel:888.387.5670" target="_blank">888.387.5670</a> x7701<br><br><br>Blog: Don't just blame the bad guys, it's your fault too<br><a href="http://www.alliancetechnologies.net/blogs/morej" target="_blank">http://www.alliancetechnologies.net/blogs/morej</a><br></blockquote></div></div><br><br></david@runneals.com></body></html>