Wargame (hacking)
{{Short description|Cyber-security challenge and mind sport in hacking}}
{{About|the cyber-security contest|the 1983 film|WarGames|military training exercises|Military exercise|other, similar terms|War Game (disambiguation){{!}}War Game}}
File:DEF_CON_17_CTF_competition.jpg
In hacking, a wargame (or war game) is a cyber-security challenge and mind sport in which the competitors must exploit or defend a vulnerability in a system or application, and/or gain or prevent access to a computer system.{{cite web|url=https://www.forbes.com/sites/andygreenberg/2012/10/29/hurricane-bound-hacker-heres-a-rainy-day-web-hacking-war-game/#2715e4857a0b73cac38e121f|title=Hurricane-Bound Hacker? Here's A Rainy Day Web-Hacking War Game|date=29 October 2012|work=Forbes}}{{cite web|url=https://www.rit.edu/news/story.php?id=53649|title=First Collegiate Pentesting Competition tackles cybersecurity problem differently|publisher=}}{{cite web|url=https://eforensicsmag.com/cyber-war-games-top-3-lessons-learned-about-incident-response/|title=Cyber War Games: Top 3 Lessons Learned About Incident Response|author=Hiep Nguyen Duc|work=eForensics|date=8 April 2015}}
A wargame usually involves a capture the flag logic, based on pentesting, semantic URL attacks, knowledge-based authentication, password cracking, reverse engineering of software (often JavaScript, C and assembly language), code injection, SQL injections, cross-site scripting, exploits, IP address spoofing, forensics, and other hacking techniques.{{cite web|url=https://www.forbes.com/sites/andygreenberg/2012/02/28/google-will-offer-1-million-in-rewards-for-hacking-chrome-in-contest/|title=Google Will Offer $1 Million In Rewards For Hacking Chrome In Contest|date=28 February 2012|work=Forbes}}
Wargames for preparedness
Wargames are also used as a method of cyberwarfare preparedness.{{Cite web|last=Ranger|first=Steve|title=Cybersecurity: This giant wargame is preparing for the next big election hack|url=https://www.zdnet.com/article/cybersecurity-this-giant-wargame-is-preparing-for-the-next-big-election-hack/|access-date=2020-09-25|website=ZDNet|language=en}} The NATO Cooperative Cyber Defence Centre of Excellence (CCDCOE) organizes an annual event, Locked Shields, which is an international live-fire cyber exercise.{{Cite web|last=|first=|date=2019-09-04|title=NATO team tackles cyber-crisis exercise in Eston|url=https://www.aa.com.tr/en/science-technology/nato-team-tackles-cyber-crisis-exercise-in-estonia/1446723|archive-url=|archive-date=|access-date=2020-09-24|website=Anadolu Agency}} The exercise challenges cyber security experts through real-time attacks in fictional scenarios and is used to develop skills in national IT defense strategies.
Additional applications
Wargames can be used to teach the basics of web attacks and web security, giving participants a better understanding of how attackers exploit security vulnerabilities. Wargames are also used as a way to "stress test" an organization's response plan and serve as a drill to identify gaps in cyber disaster preparedness.
See also
- Hackathon - computer programming marathon
- DEF CON - largest hacker convention
- Software Freedom Day - Linux and Open Source event
- Campus Party - massive LAN Party
- Cyberwarfare preparedness
- CTF
References
{{Reflist}}
External links
- [http://www.wechall.net WeChall] – list of wargame websites
- [http://security.stackexchange.com/questions/3592/what-hacking-competitions-challenges-exist security.stackexchange.com] - hacking competitions
- [http://ctftime.org CTFtime] - worldwide CTF tracking site