<div dir="ltr"><div>For what it's worth, the CTF-as-esport dream takes more work than I have time these days unfortunately. I'm still convinced it will happen, just not sure who will do it. That said, visualizations like this are going to be key to pulling it off. </div><div><br></div><div>A really nice interface to the raw data is available from Lunge: <a href="http://www.lungetech.com/cgc-corpus/">http://www.lungetech.com/cgc-corpus/</a><br></div><div><br></div><div>The modified Qemu and API to produce execution traces for visualization (along with yet another web interface to pick through the raw data which is what we used during the live event to try to make sense of the chaos) from Rusty and I is online at: <a href="https://github.com/Vector35/trace-api">https://github.com/Vector35/trace-api</a></div><div><br></div><div>And most importantly, the software to visualize the traces is open sourced here: <a href="https://github.com/voidALPHA/cgc_viz">https://github.com/voidALPHA/cgc_viz</a></div><div><br></div><div>Generating trace-files that are capable of visualization isn't hard. At their simplest form you just need an instruction pointer trace over an execution. Adding on disassembly, register contents, data flow, and memory read/writes makes for a much more useful visualization, but there's a pretty surprising amount of value just in instruction pointer "shapes". </div><div><br></div><div>Bonus related links:</div><div>Raw data: <a href="https://github.com/lungetech/cgc-corpus">https://github.com/lungetech/cgc-corpus</a> </div><div><a href="https://github.com/lungetech/cgc-cfe-submission-corpus">https://github.com/lungetech/cgc-cfe-submission-corpus</a><br></div><div><a href="https://github.com/lungetech/cgc-cqe-submission-corpus">https://github.com/lungetech/cgc-cqe-submission-corpus</a><br></div><div>Trail of Bits is maintaining a patched version of the binaries and build configurations (<a href="https://github.com/trailofbits/cb-multios/">https://github.com/trailofbits/cb-multios/</a>) with the goal of being able to be built across lots of platforms. In many ways, one of the best legacies of CGC is the very convenient and large sample corpus with included exploits, patches, and functionality polls</div></div><div class="gmail_extra"><br><div class="gmail_quote">On Thu, Aug 17, 2017 at 11:51 AM, dave aitel <span dir="ltr"><<a href="mailto:dave@immunityinc.com" target="_blank">dave@immunityinc.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<div text="#000000" bgcolor="#FFFFFF">
<p>So I wanted to type up some notes on the <a href="https://www.youtube.com/watch?v=SYYZjTx92KU" target="_blank">CGC Wrapup</a>
video, which was excellent. I mean, a part of what you want to do,
while you watch it, is strip out all the parts of the thing that
are about "playing the game". I know Jordan loves CTFs as some
sort of e-sport and also there's a whole community who for
whatever reason plays CTFs instead of playing corewars on helpless
Chinese networks like of yore, but that stuff is 100% distraction
when it comes to the CGC. <br>
</p>
<p><img alt="" height="455" width="873"></p>
<p><br>
</p>
<p>As you can see, the tiny red lines on the right are supposed to
be some combination of "could hack and could secure a service". I
can't find anywhere something that has a simple spreadsheet of
which <a href="http://www.lungetech.com/cgc-corpus/challenges/NRFIN_00080/" target="_blank">samples</a>
(and even which vulns in which samples) were able to be attacked
by which teams. So much of the game was weighted towards
performance characteristics that it's hard to determine the
information you really need from the scores, although the video
goes over some anecdotal examples where RUBEUS and MECHAPHISH were
able to attack particular historically interesting programs. It's
telling that Mayhem won despite being basically off for half the
contest. ;)<br>
</p>
<p>Does anyone have better data on this?</p><span class="HOEnZb"><font color="#888888">
<p>-dave</p>
</font></span><p>P.S. Holy cow the visualizations on program execution are next
gen! Worth a close watch just to see them.<br>
</p>
</div>
<br>______________________________<wbr>_________________<br>
Dailydave mailing list<br>
<a href="mailto:Dailydave@lists.immunityinc.com">Dailydave@lists.immunityinc.<wbr>com</a><br>
<a href="https://lists.immunityinc.com/mailman/listinfo/dailydave" rel="noreferrer" target="_blank">https://lists.immunityinc.com/<wbr>mailman/listinfo/dailydave</a><br>
<br></blockquote></div><br></div>