StratoCyberLab

The goal of StratoCyberLab is to allow students to download and locally use realistic security environments to test their attacking & defending skills in the form of challenges.

Just single command and installed docker is all it takes! Happy hacking!

See a demo video on Youtube!

Challenges

Challenge name	Difficulty	IP address	Tags
Hello world	Easy	172.20.0.5
Famous Quotes LFI	Medium	172.20.0.10
What's the date?	Hard	172.20.0.30

Requirements

• Docker (v>20.10)
• Bash (just for testing)

How to play

• Start the playground using docker compose up command
• Access the dashboard to find challenges' descriptions by navigating to your browser to http://172.20.0.3/
• Use dashboard SSH terminal or connect directly to the hackerlab using SSH with ssh root@172.20.0.2 and password ByteThem123
• Search for flags in format bsy{...} if not specified otherwise in challenge description
• Have fun!

The BSY Playground Network is 172.20.0.0/24, and all the services and challenges are in the same network.

Troubleshooting

I get REMOTE HOST IDENTIFICATION warning when trying to SSH into the hackerlab container

• add -o UserKnownHostsFile=/dev/null flag to your SSH command

Development

Adding a challenge

Please refer to a How to add a challenge doc ./docs/adding_challenge.md

Testing

To test all challenges, use script run_tests.sh. The script fires up all challenges and runs all existing auto-solve.sh scripts.