There are a ton of useful resources out there on the interwebs. Here are links to some.
Meta
- CTFTime – CTF Time is the hub of CTF team rankings. If you want to know which teams are currently the best in the world, CTF time will tell you. They also have all of the events coming up, their point totals, and writeups for past events.
- WeChall – WeChall tracks your progress against numerous challenge sites.
General
- Network Forensics Puzzle Contest – Good list of puzzles by LMG, not necessarily relating just to networks.
- SANS’ Digital Forensics Challenges – You’ll find several challenges in blog postings on their site, and I think there may be some others scattered around apart from that. Check under the “Community” menu also.
- Honeynet Project Challenges – The Honeynet Project posted a number of good challenges a while ago. Worth looking at.
Reverse Engineering
- Lena151 tutorials – John suggests running these in a Windows VM through Vmware Player or VirtualBox. The binaries in here typically will trigger AV, because there are some key gens in there, and some people online are stupid. This will teach you a ton of useful RE tips related to OllyDbg and x86.
Exploits and Shellcode
- Smashing the Stack for Fun and Profit – Aleph One’s classic.
- Shell-Storm – Repository of shellcode examples for various systems/situations plus tons of other useful info in the surrounding site.
Forensics (Disk, Memory)
- Digital Forensics Research Workshop – Great workshop! Every year since around 2003 they’ve published a forensics challenge, which can be anything from “traditional” disk forensics, to file carving, to memory forensics and more. They don’t have these collected in one spot – to find them you’ll have to go to the archives for each year’s conference and look for “challenge”.
General
- Over the Wire – Great Linux based challenges. You’ll find challenges that require knowledge of Linux commands, Crypto, RE, forward engineering, exploitation, etc. You can also sync your progress to your wechall account.
- Smash the Stack – Smash the Stack is a lot like Over the Wire. the site isn’t currently integrated into WeChall’s scoring, but the challenges are exceptional.