About the challenges

Find the vulnerabilities – Exploit them – Score points – WIN

Most importantly learn and improve your skills every step of the way

About the challenges

Find the vulnerabilities – Exploit them – Score points – WIN

Most importantly learn and improve your skills every step of the way

Forescient

Beginner to Intermediate

Forescient reflects the complexity and risks of the modern cloud-dependent enterprise: misconfigurations, faulty controls and human fallibility.

Players assume the role of a recently hired IT Engineer about to turn hacker-for-hire. Guided by a chatbot, they need to find software, configuration and integration flaws across a full-featured AWS infrastructure.

Throughout the objective-based mission, a chatbot facilitates tasks, provides hints and gives rewards for completed challenges.

Skills your teams will gain:

  • Hands-on experience with AWS Management Console
  • Exposure to AWS services including EC2, RDS, S3 and VPC
  • Players of all skill levels remain engaged and primed to succeed
  • Perform reconnaissance, social engineering, and data exfiltration
  • integrated learning labs for enhanced training.

InfiniCrate

Intermediate to Advanced

This ultra-realistic cyber range is built as a real AWS cloud-native application and perfectly emulates a cloud-based file storage solution. InfiniCrate challenges Cloud Developers, Cloud Engineers, and DevOps Engineers to use, and share with their teammates, every shred of security knowing they have in order to find InfiniCrate’s vulnerabilities.

The InfiniCrate cyber range includes 25 security challenges covering 11 AWS services. Working alone or in teams, players will perform reconnaissance and abuse misconfigured services to gain unauthorized access. They can even steal and modify code in the system – and push it through InfiniCrate’s CI/CD pipeline.

Skills your teams will gain:

  • Defence in depth: How multiple coordinated defences stop multi-pronged attacks
  • Protecting sensitive data by using proper access controls
  • Managing access privileges for users with Identity Access Management (IAM)
  • How and where to store sensitive data
  • Working together as a team to protect your CI/CD pipeline and build security into your DevOps culture.

Note: This range is not for beginners. It is an advanced cyber range for DevOps teams who are actively developing and operating software directly on the AWS platform.

Register now for CyberCX Hackathon 2021