Ruby570bocadito/Arena-CTF
GitHub: Ruby570bocadito/Arena-CTF
企业级CTF训练平台,提供实战化安全挑战。
Stars: 0 | Forks: 0
[](https://git.io/typing-svg)
10.10.10.5] K -->|eth0| CTF[🌐 CTF Network
10.10.10.0/24] CTF --> M1[ctf-01-scanning
10.10.10.11] CTF --> M2[ctf-02-web
10.10.10.12] CTF --> M3[ctf-03-samba
10.10.10.13] CTF --> M4[ctf-04-privesc
10.10.10.14] CTF --> M5[ctf-08-stego-crypto
10.10.10.17] CTF --> M9[ctf-09 through ctf-15
10.10.10.18-.24] CTF --> PE[ctf-06-pivoting-edge
10.10.10.16] PE --> INT[🔒 Internal Network
10.10.20.0/24] INT --> PI[ctf-07-pivoting-internal
10.10.20.11] style K fill:#0a0a0a,stroke:#FF0000,color:#fff style D fill:#0a0a0a,stroke:#00FF41,color:#fff style CTF fill:#0a0a0a,stroke:#00aaff,color:#fff style INT fill:#0a0a0a,stroke:#FFD700,color:#fff ``` --- ## 🚀 Quick Start ```bash # 1. Clone the repository git clone https://github.com/Ruby570bocadito/Arena-CTF.git cd Arena-CTF # 2. Start all machines docker compose up -d # 3. Access the dashboard open http://localhost:80 # 4. Start hacking from your Kali machine # All targets are on the 10.10.10.0/24 network ``` > **Note:** This lab is designed to be used from a **Kali Linux** machine or any pentesting distro on the same Docker network. --- ## 🎯 Challenge Machines | # | Machine | Difficulty | Category | IP | Skills | |:-:|---------|:----------:|:--------:|:--:|--------| | 01 | `ctf-01-scanning` | 🟢 Beginner | Recon | 10.10.10.11 | Nmap, FTP anonymous, SSH brute-force, Telnet | | 02 | `ctf-02-web` | 🟡 Medium | Web | 10.10.10.12 | LFI, RCE, Command Injection, Log Poisoning | | 03 | `ctf-03-samba` | 🟢 Beginner | Protocol Enum | 10.10.10.13 | SMB, enum4linux, smbclient, null shares | | 04 | `ctf-04-privesc` | 🔴 Advanced | PrivEsc | 10.10.10.14 | SUID, Cronjobs, PATH hijacking, LinPEAS | | 05 | `ctf-05-ad-sim` | 🔴 Advanced | Active Directory | 10.10.10.15 | AD enumeration, LDAP, Kerberos | | 06 | `ctf-06-pivoting-edge` | 🔴 Advanced | Pivoting | 10.10.10.16 | Port forwarding, Chisel, SSH tunneling | | 07 | `ctf-07-pivoting-internal` | 🔴 Advanced | Pivoting | 10.10.20.11 | Internal network, Proxychains | | 08 | `ctf-08-stego-crypto` | 🟡 Medium | Stego/Crypto | 10.10.10.17 | Steganography, Cryptography, Hash cracking | | 09 | `ctf-09-advanced-web` | 🔴 Advanced | Web | 10.10.10.18 | Advanced web exploitation | | 10 | `ctf-10-ai-injection` | ⚫ Expert | AI Security | 10.10.10.19 | Prompt injection, LLM jailbreak | | 11 | `ctf-11-blind-sqli` | 🔴 Advanced | SQLi | 10.10.10.20 | Blind SQL injection, Time-based | | 12 | `ctf-12-xss-csrf` | 🟡 Medium | XSS/CSRF | 10.10.10.21 | XSS, CSRF, Session hijacking | | 13 | `ctf-13-lfi-to-rce` | 🟡 Medium | Web | 10.10.10.22 | LFI → RCE chain | | 14 | `ctf-14-file-upload` | 🔴 Advanced | Web | 10.10.10.23 | File upload bypass, Webshell | | 15 | `ctf-15-api-jwt-idor` | ⚫ Expert | API | 10.10.10.24 | JWT cracking, IDOR, REST APIs | --- ## 📚 Learning Roadmap The lab follows a progressive learning path: | Phase | Focus | Machines | |:-----:|-------|:--------:| | **1** | Pre-Security & Information Gathering | ctf-01, ctf-03 | | **2** | Web Exploitation Foundations | ctf-02, ctf-12, ctf-13 | | **3** | Post-Exploitation & Lateral Movement | ctf-04, ctf-06, ctf-07 | | **4** | Modern Red Teaming | ctf-15, ctf-10 | Access the interactive roadmap at **http://localhost:80** after starting the lab. --- ## 🖥️ Dashboard The dashboard (port 80) includes: - **Machine Grid** — See all machines with status and IPs - **Interactive Roadmap** — Guided learning path with theory and tasks - **Progress Tracking** — Track your completion per machine - **Filter by Difficulty** — Beginner / Medium / Advanced / Expert --- ## 🏗️ Project Structure ``` Arena-CTF/ ├── dashboard/ # Web dashboard (HTML/JS/CSS) │ ├── Dockerfile │ ├── index.html # Main dashboard + roadmap │ ├── script.js # Interactive functionality │ └── style.css # Dark theme UI ├── machines/ # 15 challenge machines │ ├── ctf-01-scanning/ # Nmap, FTP, SSH, Telnet │ ├── ctf-02-web/ # LFI, RCE, Command Injection │ ├── ctf-03-samba/ # SMB enumeration │ ├── ctf-04-privesc/ # Privilege escalation │ ├── ctf-05-ad-sim/ # Active Directory simulation │ ├── ctf-06-pivoting-edge/ # Pivoting entry point │ ├── ctf-07-pivoting-internal/ # Internal network target │ ├── ctf-08-stego-crypto/ # Steganography & crypto │ ├── ctf-09-advanced-web/ # Advanced web challenges │ ├── ctf-10-ai-injection/ # AI/LLM security │ ├── ctf-11-blind-sqli/ # Blind SQL injection │ ├── ctf-12-xss-csrf/ # XSS & CSRF │ ├── ctf-13-lfi-to-rce/ # LFI to RCE chain │ ├── ctf-14-file-upload/ # File upload exploitation │ └── ctf-15-api-jwt-idor/ # API & JWT hacking └── docker-compose.yml # Multi-container orchestration ``` --- ## 🛠️ Useful Commands ```bash # Start all machines docker compose up -d # Stop all machines docker compose down # View running machines docker compose ps # Access a machine's shell (for debugging) docker exec -it ctf-01-scanning bash # View machine logs docker compose logs ctf-02-web # Rebuild a specific machine docker compose build ctf-04-privesc docker compose up -d ctf-04-privesc # Scan a machine from Kali nmap -sV 10.10.10.11 ``` --- ## 🎯 Flag Format Flags follow the format: `FLAG{description_here}` Example: `FLAG{ftp_an0nym0us_1s_b4d}`, `FLAG{ssh_brutef0rc3_w0rks}` Find all flags across the 15 machines to complete the training! --- ## 🛡️ Security & Ethics This environment is **exclusively** for authorized security training. Use only in isolated lab networks. > **Disclaimer:** The authors assume no liability for misuse. You are responsible for complying with all applicable laws. ---
10.10.10.5] K -->|eth0| CTF[🌐 CTF Network
10.10.10.0/24] CTF --> M1[ctf-01-scanning
10.10.10.11] CTF --> M2[ctf-02-web
10.10.10.12] CTF --> M3[ctf-03-samba
10.10.10.13] CTF --> M4[ctf-04-privesc
10.10.10.14] CTF --> M5[ctf-08-stego-crypto
10.10.10.17] CTF --> M9[ctf-09 through ctf-15
10.10.10.18-.24] CTF --> PE[ctf-06-pivoting-edge
10.10.10.16] PE --> INT[🔒 Internal Network
10.10.20.0/24] INT --> PI[ctf-07-pivoting-internal
10.10.20.11] style K fill:#0a0a0a,stroke:#FF0000,color:#fff style D fill:#0a0a0a,stroke:#00FF41,color:#fff style CTF fill:#0a0a0a,stroke:#00aaff,color:#fff style INT fill:#0a0a0a,stroke:#FFD700,color:#fff ``` --- ## 🚀 Quick Start ```bash # 1. Clone the repository git clone https://github.com/Ruby570bocadito/Arena-CTF.git cd Arena-CTF # 2. Start all machines docker compose up -d # 3. Access the dashboard open http://localhost:80 # 4. Start hacking from your Kali machine # All targets are on the 10.10.10.0/24 network ``` > **Note:** This lab is designed to be used from a **Kali Linux** machine or any pentesting distro on the same Docker network. --- ## 🎯 Challenge Machines | # | Machine | Difficulty | Category | IP | Skills | |:-:|---------|:----------:|:--------:|:--:|--------| | 01 | `ctf-01-scanning` | 🟢 Beginner | Recon | 10.10.10.11 | Nmap, FTP anonymous, SSH brute-force, Telnet | | 02 | `ctf-02-web` | 🟡 Medium | Web | 10.10.10.12 | LFI, RCE, Command Injection, Log Poisoning | | 03 | `ctf-03-samba` | 🟢 Beginner | Protocol Enum | 10.10.10.13 | SMB, enum4linux, smbclient, null shares | | 04 | `ctf-04-privesc` | 🔴 Advanced | PrivEsc | 10.10.10.14 | SUID, Cronjobs, PATH hijacking, LinPEAS | | 05 | `ctf-05-ad-sim` | 🔴 Advanced | Active Directory | 10.10.10.15 | AD enumeration, LDAP, Kerberos | | 06 | `ctf-06-pivoting-edge` | 🔴 Advanced | Pivoting | 10.10.10.16 | Port forwarding, Chisel, SSH tunneling | | 07 | `ctf-07-pivoting-internal` | 🔴 Advanced | Pivoting | 10.10.20.11 | Internal network, Proxychains | | 08 | `ctf-08-stego-crypto` | 🟡 Medium | Stego/Crypto | 10.10.10.17 | Steganography, Cryptography, Hash cracking | | 09 | `ctf-09-advanced-web` | 🔴 Advanced | Web | 10.10.10.18 | Advanced web exploitation | | 10 | `ctf-10-ai-injection` | ⚫ Expert | AI Security | 10.10.10.19 | Prompt injection, LLM jailbreak | | 11 | `ctf-11-blind-sqli` | 🔴 Advanced | SQLi | 10.10.10.20 | Blind SQL injection, Time-based | | 12 | `ctf-12-xss-csrf` | 🟡 Medium | XSS/CSRF | 10.10.10.21 | XSS, CSRF, Session hijacking | | 13 | `ctf-13-lfi-to-rce` | 🟡 Medium | Web | 10.10.10.22 | LFI → RCE chain | | 14 | `ctf-14-file-upload` | 🔴 Advanced | Web | 10.10.10.23 | File upload bypass, Webshell | | 15 | `ctf-15-api-jwt-idor` | ⚫ Expert | API | 10.10.10.24 | JWT cracking, IDOR, REST APIs | --- ## 📚 Learning Roadmap The lab follows a progressive learning path: | Phase | Focus | Machines | |:-----:|-------|:--------:| | **1** | Pre-Security & Information Gathering | ctf-01, ctf-03 | | **2** | Web Exploitation Foundations | ctf-02, ctf-12, ctf-13 | | **3** | Post-Exploitation & Lateral Movement | ctf-04, ctf-06, ctf-07 | | **4** | Modern Red Teaming | ctf-15, ctf-10 | Access the interactive roadmap at **http://localhost:80** after starting the lab. --- ## 🖥️ Dashboard The dashboard (port 80) includes: - **Machine Grid** — See all machines with status and IPs - **Interactive Roadmap** — Guided learning path with theory and tasks - **Progress Tracking** — Track your completion per machine - **Filter by Difficulty** — Beginner / Medium / Advanced / Expert --- ## 🏗️ Project Structure ``` Arena-CTF/ ├── dashboard/ # Web dashboard (HTML/JS/CSS) │ ├── Dockerfile │ ├── index.html # Main dashboard + roadmap │ ├── script.js # Interactive functionality │ └── style.css # Dark theme UI ├── machines/ # 15 challenge machines │ ├── ctf-01-scanning/ # Nmap, FTP, SSH, Telnet │ ├── ctf-02-web/ # LFI, RCE, Command Injection │ ├── ctf-03-samba/ # SMB enumeration │ ├── ctf-04-privesc/ # Privilege escalation │ ├── ctf-05-ad-sim/ # Active Directory simulation │ ├── ctf-06-pivoting-edge/ # Pivoting entry point │ ├── ctf-07-pivoting-internal/ # Internal network target │ ├── ctf-08-stego-crypto/ # Steganography & crypto │ ├── ctf-09-advanced-web/ # Advanced web challenges │ ├── ctf-10-ai-injection/ # AI/LLM security │ ├── ctf-11-blind-sqli/ # Blind SQL injection │ ├── ctf-12-xss-csrf/ # XSS & CSRF │ ├── ctf-13-lfi-to-rce/ # LFI to RCE chain │ ├── ctf-14-file-upload/ # File upload exploitation │ └── ctf-15-api-jwt-idor/ # API & JWT hacking └── docker-compose.yml # Multi-container orchestration ``` --- ## 🛠️ Useful Commands ```bash # Start all machines docker compose up -d # Stop all machines docker compose down # View running machines docker compose ps # Access a machine's shell (for debugging) docker exec -it ctf-01-scanning bash # View machine logs docker compose logs ctf-02-web # Rebuild a specific machine docker compose build ctf-04-privesc docker compose up -d ctf-04-privesc # Scan a machine from Kali nmap -sV 10.10.10.11 ``` --- ## 🎯 Flag Format Flags follow the format: `FLAG{description_here}` Example: `FLAG{ftp_an0nym0us_1s_b4d}`, `FLAG{ssh_brutef0rc3_w0rks}` Find all flags across the 15 machines to complete the training! --- ## 🛡️ Security & Ethics This environment is **exclusively** for authorized security training. Use only in isolated lab networks. > **Disclaimer:** The authors assume no liability for misuse. You are responsible for complying with all applicable laws. ---
Built with ❤️ by Ruby570bocadito
© 2025 — Arena-CTF. All rights reserved.
标签:日志审计, 自定义脚本, 请求拦截