CTF Scoreboard

CTF Scoreboard

This is the scoreboard script used in the NCSC-FI #tietoturvahaaste-hackathon / CTF. It’s a very simple script that you can set up to show scores in a competition. It requires a web server running PHP. Copy the files and folders to the directory that serves your webpages. Open in browser and F11 for full screen.

The folder ”’teams/”’ holds the teams and scoring. Create a text file for each team. A sample syntax looks like this:

Example Blue Team
# First line is the team name, you can use HTML.
# Subsequent lines are findings - one line per finding. Syntax is:
# score; finding; non-visible comment
# Icons: 1000 - Diamond, 500 - Trophy, 200 - Star, 100 - Heart
#
# Example: 
# 1500;SQLi in Web shop!; This is a comment.

For live scoring edit the text files under ”’teams/”’, the scoreboard will automatically refresh and show the changes at set intervals.

The easiest way to do this is to set the scoreboard machine to show a browser with the page open and ssh into it to edit the team files. You can set the competition deadline from the source file.

You can download the script from GitHub.

You might be interested in …

Daily NCSC-FI news followup 2020-05-30

List of well-known web sites that port scan their visitors www.bleepingcomputer.com/news/security/list-of-well-known-web-sites-that-port-scan-their-visitors/ Last weekend, news heavily circulated that eBay.com was port scanning visitors’ computers when they browsed their site. To see what other sites may be using this script, BleepingComputer reached out to DomainTools, a cybersecurity company specializing in web domain and DNS threat intelligence. Of […]

Read More

Daily NCSC-FI news followup 2020-08-19

A New Fileless P2P Botnet Malware Targeting SSH Servers Worldwide thehackernews.com/2020/08/p2p-botnet-malware.html Cybersecurity researchers today took the wraps off a sophisticated, multi-functional peer-to-peer (P2P) botnet written in Golang that has been actively targeting SSH servers since January 2020.. Called “FritzFrog,” the modular, multi-threaded and file-less botnet has breached more than 500 servers to date, infecting well-known […]

Read More

Daily NCSC-FI news followup 2020-01-07

Potential for Iranian Cyber Response to U.S. Military Strike in Baghdad www.us-cert.gov/ncas/alerts/aa20-006a The Cybersecurity and Infrastructure Security Agency (CISA) is sharing the following information with the cybersecurity community as a primer for assisting in the protection of our Nations critical infrastructure in light of the current tensions between the Islamic Republic of Iran and the […]

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.