Summary - 2021 SANS Holiday Hack Challenge
This year I completed the SANS Holiday Hack Challenge. I’ll admit that it took a lot more time and looking through the Discord than it likely took for some o...
2021 SANS Holiday Hack Challenge Posts
Objective 13: FPGA Programming - 2021 SANS Holiday Hack Challenge
In this one we learn what the heck an FPGA is and how to program one.
Objective 12: Frost Tower Website Checkup - 2021 SANS Holiday Hack Challenge
In this one, we do some more web app pen testing, but this time we get the source code from the start!
Objective 11: Customer Complaint Analysis - 2021 SANS Holiday Hack Challenge
Objective A human has accessed the Jack Frost Tower network with a non-compliant host. Which three trolls complained about the human? Enter the troll name...
Objective 10: Now Hiring! - 2021 SANS Holiday Hack Challenge
This will be some more web app pen testing, this time on a job portal.
Objective 9: Splunk! - 2021 SANS Holiday Hack Challenge
In this challenge, we’re learning some threat hunting skills by trying to find security events in logs.
Objective 8: Kerberoasting on an Open Fire - 2021 SANS Holiday Hack Challenge
This time, we’re going to be attacking Active Directory.
Objective 7: Printer Exploitation - 2021 SANS Holiday Hack Challenge
We’re building some more penetration testing skills in this challenge.
Objective 6: Shellcode Primer - 2021 SANS Holiday Hack Challenge
In this challenge, we learn how to write shellcode, a very close-to-the-processor programming language.
Objective 5: Strange USB Device - 2021 SANS Holiday Hack Challenge
In this challenge, we do some light reverse-engineering on a USB Rubber Ducky.
Objective 4: Slot Machine Investigation - 2021 SANS Holiday Hack Challenge
In this challenge, we’re going to do a bit of web app pen testing on a virtual slot machine site.
Objective 3: Thaw Frost Tower’s Entrance - 2021 SANS Holiday Hack Challenge
In this task, we’re asked to help thaw the door to frost tower using the thermostat.
Objective 2: Where in the World is Caramel Santaigo? - 2021 SANS Holiday Hack Challenge
In this challenge we use some Open-Source Intelligence (OSINT) skills to follow the tracks of one of the elves around the world.
Objective 1: KringleCon Orientation - 2021 SANS Holiday Hack Challenge
This is the very start of the 2021 SANS Holiday Hack Challenge.
The Elf Code Challenge - 2021 SANS Holiday Hack Challenge
In this challenge we have to write some python code to get an elf to move past obstacles and to a gate.
Logic Chompers Challenge - 2021 SANS Holiday Hack Challenge
This one is more of a game than a challenge. You just have to complete one Intermediate stage on the “Potpourri” setting.
IPv6 Sandbox Challenge - 2021 SANS Holiday Hack Challenge
In this challenge, we’re asked to get the candy striper working, but we have to use IPv6 to do it.
IMDS Exploration Challenge - 2021 SANS Holiday Hack Challenge
In this challenge, we learn about the Instance Metadata Service (IMDS), which is used by many cloud providers. This challenge is mostly on-rails with you jus...
Holiday Hero Challenge - 2021 SANS Holiday Hack Challenge
This is a guitar hero-like minigame, but for holiday music. It’s supposed to be two-player, but there’s a way to enable single-player by messing with some cl...
HoHo … No Challenge - 2021 SANS Holiday Hack Challenge
In this challenge, we’re using fail2ban to automatically add bad actors to the ‘naughty list’
Grepping for Gold Challenge - 2021 SANS Holiday Hack Challenge
In this task, we have to search through a giant file that was created using nmap -oG.
Frostavator Challenge - 2021 SANS Holiday Hack Challenge
In this challenge, we’re asked to fix the logic of an elevator by moving around some logic gates.
Document Analysis Challenge - 2021 SANS Holiday Hack Challenge
In this challenge, we use exiftool to check to see who last modified a file.