Added static IPs, Challenge 2 and Challenge 4 (#10)

* testing branches

* added base challenge structure

* adding readme and gitignore

* delete .vs

* delete .vs and add .gitignore

* Challenge 2 ready for testing

* forgot to add the role.

* Adding sudo to installed packages.

* It's cat, not ls... also changed password.

* Added documentation and made it more thematic

* fixed sudoers

* Updated to static IPs

* Challenge 4 ready to test

* Trying to fix path issue

Author: brasky

.gitignore

@@ -0,0 +1 @@
+.vs

.vs/FITS-CTFs/v16/.suo

@@ -1,5 +1,5 @@
 [challengeservers]
-192.168.1.130
+192.168.10.11
 
 [devservers]
-192.168.1.30
+192.168.10.12

.vs/slnx.sqlite

@@ -6,4 +6,6 @@
   become: yes
   roles:
     - common
-    - challenge1
+    - challenge1
+    - challenge2
+    - challenge4

hosts

@@ -1 +1,58 @@
 # FITS CTF
+
+## Creating a new challenge
+
+- Create a branch called "challenge#" where # is one above the highest challenge number
+    - This number will determine the port number if dockerizing the challenge. 6000 + # = the exposed port
+
+- Switch to your branch in the editor and add the following:
+    - Add a directory called roles/challenge# - this is where all the challenge files go
+    - Inside of challenge# add:
+        - A folder called `docker` (if applicable)
+        - A folder called `tasks`
+        - A file called <span>`readme.md`</span> which will have the details of the challenge
+        - A file in `tasks` called `main.yml`
+        - A file in docker called `Dockerfile` (if applicable, case-sensitive)
+        - a folder called `resouces` if you need things like config files and webpages copied to the challenge vm/container
+
+### Dockerfiles
+
+If your challenge is using docker, you will need a Dockerfile. It should contain most of what you need in the container for the challenge. Use challenge1's dockerfile as an example. 
+
+The dockerfile will handle setup such as:
+
+- What operating system you want the container to run
+- What packages you need installed
+- Removing unncessary packages
+- Creating files, echoing into files (like flags), permissions of files
+- Copying files from the host machine to the container (config files, webpages, databases, etc) NOTE: Please see [Ansible Variables](#ansible-variables) for details on how to refer to these files.
+
+As things come up I will make this overview more thorough.
+
+### Creating tasks in tasks/main.yml
+
+The main ansible tasks.yml file has 2 roles:
+
+#### When used with docker:
+- Get the dockerfile and necessary resources from orchestrator to the CTF-Challenges VM
+- Kickoff docker build to build the image
+- Start the container
+
+#### When used with a standalone VM:
+TODO as this has not happened yet, but presumably ansible is now responsible for 100% of setup and you will not have a dockerfile at all.
+
+
+### Ansible Variables
+
+Because prod and dev are pulling from 2 different branches for deployment, variables are used when referring to a file location on orchestrator. For example, in challenge1's `tasks/main.yml` there's this command to copy a dockerfile:
+
+    - name: Copy dockerfile
+    copy:
+        src: "{{ repo_path }}/roles/challenge1/docker/Dockerfile"
+        dest: /tmp/docker-challenge1/Dockerfile
+        mode: '0744'
+        force: yes
+
+The `src` field has the variable `{{repo_path}}` because depending on the machine it's being deployed to (prod vs dev) the path might be `/home/rundeck/FITS-CTF/` (for prod) or it might be `/home/rundeck/FITS-CTF-DEV/` (for dev).
+
+These variables are defined in `group_vars` and `vars` folders in the root of the project.

main.yml

@@ -0,0 +1,21 @@
+FROM ubuntu:18.04
+
+RUN apt-get update && apt-get install -y openssh-server sudo
+RUN mkdir /var/run/sshd
+RUN useradd -m -d /home/giant giant
+RUN echo 'giant:b0nes2br3ad' | chpasswd
+RUN usermod -s /bin/bash giant
+
+# SSH login fix. Otherwise user is kicked off after login
+RUN sed 's@session\s*required\s*pam_loginuid.so@session optional pam_loginuid.so@g' -i /etc/pam.d/sshd
+ENV NOTVISIBLE "in users profile"
+RUN echo "export VISIBLE=now" >> /etc/profile
+
+EXPOSE 22
+CMD ["/usr/sbin/sshd", "-D"]
+
+RUN touch /home/giant/catme.txt
+RUN echo "flag{Gogmagog}" >> /home/giant/catme.txt
+RUN chown root:root /home/giant/catme.txt
+RUN chmod 400 /home/giant/catme.txt
+RUN echo 'giant ALL=NOPASSWD: /bin/cat, /usr/bin/whoami' >> /etc/sudoers

readme.md

@@ -0,0 +1,15 @@
+# Challenge 2 - Sudo (NO PASSWD)
+
+## Overview 
+
+Challenge is to ssh onto a box and grab the flag in `catme.txt` which is in the user's home directory, BUT the file is owned by root and permissions are 600, so sudo must be used. 
+
+SSH is running on port 6002 in an ubuntu 18.04 docker container
+
+## Creds
+
+giant:b0nes2br3ad
+
+## Flag
+
+flag{Gogmagog}

roles/challenge2/docker/Dockerfile

@@ -0,0 +1,33 @@
+- name: Create a directory if it does not exist
+  file:
+    path: /tmp/docker-challenge2
+    state: directory
+    mode: '0755'
+
+- name: Copy dockerfile
+  copy:
+      src: "{{ repo_path }}/roles/challenge2/docker/Dockerfile"
+      dest: /tmp/docker-challenge2/Dockerfile
+      mode: '0744'
+      force: yes
+
+- name: Build image
+  docker_image:
+    name: challenge2-image
+    build:
+      path: /tmp/docker-challenge2/
+    source: build
+    state: present
+    force_source: yes
+    repository: challenge2-image:latest
+    force_tag: yes
+
+- name: Run the container
+  docker_container:
+    name: challenge2-ssh
+    image: challenge2-image
+    state: started
+    restart: yes
+    expose: 22
+    detach: yes
+    published_ports: '6002:22'

roles/challenge2/readme.md

@@ -0,0 +1,18 @@
+FROM ubuntu:18.04
+
+RUN apt-get update && apt-get install -y openssh-server sudo
+RUN mkdir /var/run/sshd
+RUN useradd -m -d /home/sysadmin sysadmin
+RUN echo 'sysadmin:ikn0wwh4timd0ing' | chpasswd
+RUN usermod -s /bin/bash sysadmin
+
+# SSH login fix. Otherwise user is kicked off after login
+RUN sed 's@session\s*required\s*pam_loginuid.so@session optional pam_loginuid.so@g' -i /etc/pam.d/sshd
+ENV NOTVISIBLE "in users profile"
+RUN echo "export VISIBLE=now" >> /etc/profile
+
+EXPOSE 22
+CMD ["/usr/sbin/sshd", "-D"]
+
+COPY --chown=sysadmin:sysadmin super_secret_program /home/sysadmin/super_secret_program
+RUN chmod 644 /home/sysadmin/super_secret_program

roles/challenge2/tasks/main.yml

@@ -0,0 +1,15 @@
+# Challenge 4 - chmod
+
+## Overview 
+
+Challenge is to ssh onto a box and execute an obsfuscated program which has the flag in it. Permissions will be 644 owned by the user and they need to chmod +x or chmod 744 to run it.
+
+SSH is running on port 6004 in an ubuntu 18.04 docker container
+
+## Creds
+
+sysadmin:ikn0wwh4timd0ing
+
+## Flag
+
+flag{bad_permissions_are_a_bad_day}

roles/challenge4/docker/Dockerfile

@@ -0,0 +1,40 @@
+- name: Create a directory if it does not exist
+  file:
+    path: /tmp/docker-challenge4
+    state: directory
+    mode: '0755'
+
+- name: Copy dockerfile
+  copy:
+      src: "{{ repo_path }}/roles/challenge4/docker/Dockerfile"
+      dest: /tmp/docker-challenge4/Dockerfile
+      mode: '0744'
+      force: yes
+
+- name: Copy program with the flag
+  copy:
+      src: "{{ repo_path }}/roles/challenge4/resources/super_secret_program"
+      dest: /tmp/docker-challenge4/super_secret_program
+      mode: '0744'
+      force: yes
+
+- name: Build image
+  docker_image:
+    name: challenge4-image
+    build:
+      path: /tmp/docker-challenge4/
+    source: build
+    state: present
+    force_source: yes
+    repository: challenge4-image:latest
+    force_tag: yes
+
+- name: Run the container
+  docker_container:
+    name: challenge4-ssh
+    image: challenge4-image
+    state: started
+    restart: yes
+    expose: 22
+    detach: yes
+    published_ports: '6004:22'