CTF Scoreboard

CTF Scoreboard

This is the scoreboard script used in the NCSC-FI #tietoturvahaaste-hackathon / CTF. It’s a very simple script that you can set up to show scores in a competition. It requires a web server running PHP. Copy the files and folders to the directory that serves your webpages. Open in browser and F11 for full screen.

The folder ”’teams/”’ holds the teams and scoring. Create a text file for each team. A sample syntax looks like this:

Example Blue Team
# First line is the team name, you can use HTML.
# Subsequent lines are findings - one line per finding. Syntax is:
# score; finding; non-visible comment
# Icons: 1000 - Diamond, 500 - Trophy, 200 - Star, 100 - Heart
#
# Example: 
# 1500;SQLi in Web shop!; This is a comment.

For live scoring edit the text files under ”’teams/”’, the scoreboard will automatically refresh and show the changes at set intervals.

The easiest way to do this is to set the scoreboard machine to show a browser with the page open and ssh into it to edit the team files. You can set the competition deadline from the source file.

You can download the script from GitHub.

You might be interested in …

Daily NCSC-FI news followup 2021-07-25

Shortcomings With Financial Market Infrastructure Companies Business Continuity And Cybersecurity Plans Need To Be Resolved www.forbes.com/sites/mayrarodriguezvalladares/2021/07/25/shortcomings-with-financial-market-infrastructure-companies-business-continuity-and-cybersecurity-plans-need-to-be-resolved/ [A report released this week] shows that it is doubtful that [financial markets infrastructure companies] business continuity plans (BCPs) are designed to ensure that critical information technology (IT) systems can resume operations within two hours following disruptive events and […]

Read More

[ZDNet] Have we reached peak ransomware? How the internet’s biggest security problem has grown and what happens next

All posts, ZDNet

A string of high-profile cyberattacks has made ransomware an impossible issue to ignore – in fact, even world leaders are talking about it. Will this be enough to make cyber criminals think twice? Source: Read More (Latest topics for ZDNet in Security)

Read More

[ThreatPost] Lazarus Targets Job-Seeking Engineers with Malicious Documents

All posts, ThreatPost

Notorious North Korean APT impersonates Airbus, General Motors and Rheinmetall to lure potential victims into downloading malware. Source: Read More (Threatpost)

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.