From: julian.ho at sensecurity.org (Julian Ho)
Subject: BlackOPS(c): HackAttack Challenge 2004

A Sensecurity Announcement for Security Professionals in the AsiaPac
region:

--------------------------
BlackOps: (noun) covert military action involving, but not limited to,
assassination, counter-guerrilla warfare, psychological-operations,
insurgency, deep-raid reconnaissance and other politically-sensitive
forms of warfare; (verb) to conduct clandestine military activities *

BlackOPS: (security) The art and science of conducting covert network,
system and organizational penetration and establishing operational
countermeasures and defences against such penetration. *
--------------------------

The Sensecurity BlackOPSC: HackAttack Challenge 2004, held at the
Singapore International Convention and Exhibition Centre (SICEC) at
Suntec City on Friday, August 20th 2004, will pit teams of IT
Professionals and Grayhats against each other in a real-world scenario
where corporate systems and privileged information are constantly under
siege by attackers with the Means, Motive and Opportunity to compromise
an organization's security.  

Teams will be provided with a complete equipment setup designed to
simulate operations in a real-world environment where they must defend
their "organization's" equipment and resources against attempted
penetration and exploitation by other teams.   
 
Each team will be required to penetrate, exploit, secure access and
obtain privileged information from the other teams' servers, for the
purpose of corporate espionage.  
 
Unlike other "hacking" events, BlackOPSC: HackAttack allows more than
the traditional "internet" avenue of attack.  Teams will be given time
to establish their defences prior to "production" status, similar to
what we find in an organizational platform rollout timeframe.  

Teams will be judged on the basis of a successful exploit or defence.
Points will be deducted for each service that is "down" (i.e. no longer
publicly accessible or hacked) and points awarded for each service that
remains "up" per polling-instance or for successful exploitation and
theft of an opponent's equipment and information.

Participants will be required to think-outside-the-box in order to both
exploit and defend systems.  
Utilizing their utmost knowledge and skill in securing and exploiting
networks and systems, each team will compete for the bragging rights to
be called Singapore's Top BlackOPerativesC. 
 

How Much Does It Cost To Participate?
Team registration ( max of 2 per team - to simulate a typical
organization's headcount constraints ) is FREE!   
Register at http://blackops.sensecurity.org
Registration is open to all security professionals in the AsiaPac
region.  However, ground rules and gameplay will only be issued to the
shortlisted candidates.  
Successful candidates are advised to read the ground rules and gameplay
CAREFULLY as anything not forbidden by either of them will be allowed.  
The winning team will walk away with 2 Iomega QuikTouch (worth $599
each) and a $5000 Sensecurity Institute Training Voucher. 
 
BlackOPSC: HackAttack - "Where The Best Offence May Be Your Defence"
 

The name, terms and concept of BlackOPSCis C2004 Sensecurity Institute

* Definitions are C2004 Julian Ho ("HammerJammer")


--------------------------------
Sensecurity Institute - "Empowering People To Defend Themselves"
 
Sensecurity Institute Security Practitioner (SISP) - The leading IT
Security Certification, internationally accredited by the Association of
Internet Professionals (AIP), Certification Accreditation Council (ACAC)
and the National Infocomm Competency Centre (NICC), and endorsed under
the Critical Infocomm Technology Resource Programme (CITREP).
For more information, please refer to www.sensecurity.org.

Powered by blists - more mailing lists