Topic: [HACKATHON] satoshihack.com - the first [opensource] BitcoinHackMe! - page 2. (Read 2947 times)

our FIRST HACKME started!!!! www.satoshihack.com/hackme1/
test your skills and win the 0.1 BTC AND 500.000 QORA!

you have only to pass the levels (5). in the last level you get the KEY!
hints and questions are in the Gamble-Board in "Games and Rounds".
when you have a question only post in the thread there.  https://bitcointalksearch.org/topic/solved-hackathon-01-btc-satoshihackcom-998907

when you have general question you can also ask here or send PM.

thank you!
ca333

Only 1 day is left before the HACKME start! I hope some people will participate. We will announce the first round of the HackMe in games-board in this forum.

thank you!
ca333

THANK you very much! i will make the first hackme start this weekend. I invite all user to come and hack it.
In first hackme the winner participant wins 0.1 BTC AND 0.5 Mio QORA in the last level!!

thank you!
ca333

Wow, very interesting ideas here for sure! I'll definitely be watching this

Mind blowing idea! Spreading the word.

In the first HackMe also additional 500k Qora wait for the Winner.

thank you!
ca333

Hello bitcoin-community,

i announce a new project under domains "satoshihack.com", "bitcoinhack.me" & "bitcoinhackme.com". I work on this to bring more security experts into the field of BTC and also bring old users of bitcoin into the thematic of it-security. So i thought why not make a bitcoinhackme? A bitcoinhackme is like a normal HackMe site with the only difference: you win reward when you solve it first. So it have many levels and every increment of the level is a little bit harder for solving than the level before. I will make all HackMes public [OpenSource] in my https://github.com/ca333/ after some time.

What is satoshihack.com?
Satoshihack is my opensource project for BitcoinHackmes. I will run two hackme per month and each of the hackme will contain a BTC-reward for the winnner (the first person to reach last level of the hackme).

What is a "hackme"?
A hackme is a website with built in vulnerabilities. Its like a puzzle to be solved with different levels. Many factors have to be kept in mind. A hackme covers many topics in IT-security. Such as database-injections, hardcoded pws and password-hashes, bad salts, cross-site scripting, cookie-manipulation, encryption and many others. The hackme motivates the participants to "hack" the site and succeed through the different levels to reach the last level and get a place in the Hall of Fame.

How does it work?
The BitcoinHackMe will start with level 1 and you must somehow reach the next level and so on and so on until you reach the last level. When you solve the last level you get a privatekey with BTCvalue on it.


So example:
Level 1 is normal HTML site with password formular. How you come to level 2?
option 1: you look in the source and you find the password unencrypted in a simple JS function.
option 2: it s only saved in a comment in the sources
option 3: the hyperlink for level 2 is in the formular but not added to the button, so PW-form is only to irritate.

so you see, it can bring lots of fun and also people often think(use brain) and work together.
And so when the best participant reach the last level he will find the privatekey for a little reward. And also we make a HallOfFame for the winner of all the hackme's.


When is the launch?
The first BitcoinHackMe is solved   : https://bitcointalksearch.org/topic/solved-hackathon-01-btc-satoshihackcom-998907 - congratulation for Injust
The second HackMe is solved : https://bitcointalksearch.org/topic/solved-satoshihackcom-hackathon-find-01-btc-and-150000-metal-1005740 - congratulation for ndnhc

We will make it not so hard first time. So only use php, html, js and basics of encryption and hashing-algorithms.
I will also be in the IRC #satoshihack and give hints when somebody have absolutely NO idea. But last 2 level user must find all out alone.

But next hackme then will also contain SQL db, so people learn how to make sql-i and also how to find vulns in database when not proper parameter (query)filtering. In future will also extend with XSS and cookie manipulation for going in the next levels.
And when we maybe find good sponsors and supporters for this project we can maybe one day make a big hackme, with real server to hack and so with teams work on it. But for now this is my vision.

What is my motivation for this?
I think many people in bitcoin-community only see wealth or money primary as motivation but do not think that the community is the important thing here. And the community is not soo large. So i think maybe 10% of it is skilled in IT, but other only have basic idea of it and only come for the dream "bitcoinmillionaire". I think we must help all each other to learn more and more. In the end many are skilled, or the ones who have had no interest in technologies, will start maybe reading more and learning more.

What is the goal of BitcoinHackMe??
I want people here to simply start learn IT-security and basic technologies behind it. SO i think this is the future for all of us. Soon the school must also teach children binary calculations and IT-knowledge in very young age because its soo important.
My goal for BitcoinHackMe.com is so people who have not much knowledge of IT and hacking make first step and start looking into this topic, so with fun and a motivation (last level BTC-reward and HallOfFame) i think its a good start.


Support me:
When you have idea from IT security or you think something funny/nice to add in the HackMe, please send me PM or post in this thread.
We will make 1 HackMe every 14 days. For now i am paying this all from my own saving. So i am happy when anybody can also donate a little bit only for the HackMe-reward  for the winners.

Thank you!
ca333