Skip to content
/ ctfd-cli Public

A small tool for taking CTFd challenges from a folder and inserting into a CTFd instance

1 star 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

eskildsen/ctfd-cli

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

10 Commits
web/babys-first-web
web/babys-first-web
 
 
README.md
README.md
 
 
ctfd.py
ctfd.py
 
 

Repository files navigation

CTFd cli

A small tool for taking CTFd challenges from a folder and inserting into a CTFd instance.

Usage is as depicted:

usage: ctfd.py [-h] [--token TOKEN] [--url URL] path

positional arguments:
  path           directory to traverse for challenges

optional arguments:
  -h, --help     show this help message and exit
  --token TOKEN  the access token for the API access, e.g. d41d8cd98f00b204e9800998ecf8427e
  --url URL      url to the instance, e.g. https://demo.ctfd.io. Without trailing slash

Challenge structure

Challenges should be organized into directories resempling the categories. For example, if you have a challenge named some-cool-challenge in the web category, then put the challenge in the folder /web/some-cool-challenge.

Sample directories for two different challenges:

/web/some-cool-challenge/ctfd.json
/crypto/aes-for-beginners/ctfd.json

The ctfd.json file is a json-formattet file with meta-description for the challenge. The downloadable_files is optional and will take files from the folder and make them available for download. The unique_server_per_team is used to flag the challenge as needing special hosting. Thus, every team should have their own separatedly hosted instance of this challenge. It defaults to false.

{
  "flag": "CTF{the_actual_flag_here}",
  "title": "The Public Title Displayed in CTFd",
  "description": "The challenge description goes here.",
  "downloadable_files": [
     "source.zip"
  ],
  "points": 500,
  "unique_server_per_team": false,
  "tags": [
     "crypto",
     "hard",
     "virtualization"
  ]
}

If dynamic scoring is enabled, there is no reason to include the "points" attribute, otherwise for fixed scoring include the points property.

Minimal example:

{
  "flag": "CTF{the_actual_flag_here}",
  "title": "The Public Title Displayed in CTFd",
  "description": "The challenge description goes here."
}

Ideally the challenge also contains a solve.py or solve.sh or solve.txt which either automates extracting the flag, so challenge can be verified. Alternatively for a .txt version it just descripes the intended solution. You are more than welcome to have both a automated solver-script as well as a solve.txt.

If a challenge is using docker-files, it should contain a file in the root directory called docker-compose.yml and it should be compatible with running docker-compose up.

Sample Challenge

See the example challenge in this repository, which contains all the above mentioned things.

  • Uses docker-compose for setting up both a webserver and a database server
  • ctfd.json with meta-data
  • downloadable source-code (optional)
  • solve.py for automated verification (optional)

About

A small tool for taking CTFd challenges from a folder and inserting into a CTFd instance

Resources

Readme
Activity

Stars

1 star

Watchers

1 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages