mkCTF
mkCTF is a framework designed to help teams create jeopardy-style Capture The Flag (CTF) challenges using a configurable structure. The framework enables efficient integration and deployment of challenges on CTF infrastructure. Originally developed for managing challenges for INS'hAck 2017, the project has evolved to provide automation capabilities for deploying challenges on Rancher-based infrastructure. The framework stores flags in plaintext to allow CTF administrators to rebuild challenges from sources without generating new flags. The tool requires Python 3.9+ and has been designed and tested specifically on Linux systems, though it may work on Darwin and Windows Subsystem for Linux. Additional dependencies vary based on the specific challenges being created. Security considerations include keeping the mkCTF repository private until the CTF event concludes, enabling two-factor authentication, and carefully managing access tokens and repository permissions to prevent unauthorized access to challenge materials and flags.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
A hands-on cybersecurity laboratory environment for Gray Hat Hacking Chapter 29 that creates virtualized Docker and Kali Linux machines using Terraform for practical security training exercises.
A lightweight CTF platform with simple setup and difficulty-based scoring that removes timezone advantages from competitions.
Mellivora Mellivora is a PHP-based CTF engine that provides comprehensive competition hosting capabilities with challenge management, team scoring, and administrative tools for cybersecurity competitions.
NightShade is a Django-based capture the flag framework that enables organizations to create and manage cybersecurity competitions with support for multiple contest formats and multi-tenant architecture.
Docker file for building Androguard dependencies with an optional interactive shell environment.
Bane is an automated AppArmor profile generator for Docker containers that simplifies the creation of security policies with file globbing support and Docker integration.
SecGen is an open-source framework that automatically generates vulnerable virtual machines and hacking challenges for cybersecurity education and penetration testing training.
An unofficial Python API that enables programmatic searching, browsing, and downloading of Android apps from Google Play Store.
A Node.js Ebook by GENTILHOMME Thomas, covering Node.js development and resources
PINNED
A cybersecurity platform that offers vulnerability scanning, Windows Defender and 3rd party AV management, and MFA compliance reporting, among other features.
Proton Pass is a cross-platform password manager that provides encrypted storage, password generation, and security monitoring features with integrated 2FA and dark web monitoring capabilities.
NordVPN is a commercial VPN service that encrypts internet connections and hides IP addresses through a global network of servers, featuring integrated threat protection and multi-device support.
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.