Machine vs. Machine: Inside DARPA's Fully Automated CTF

Presented at DEF CON 23 (2015), Aug. 8, 2015, 11 a.m. (60 minutes)

For 22 years, the best binary ninjas in the world have gathered at DEF CON to play the world's most competitive Capture-the-Flag. At DEF CON 24, DARPA will challenge machines to play this game for the first time, with the winner taking home a $2 million prize. This talk will include a first public look at the machines, teams, technology, and visualization behind Cyber Grand Challenge. The technology: machines that discover bugs and build patches? We're bringing our qualifier results to show just how real this is. The teams: we'll talk about the finalists who prevailed to make it to the CGC final round. Visualization: the product of CTF players working with game designers, this talk will include a live interactive demo of a graphical debugger for everyone that will let an audience follow along in real time. The machines: we're bringing high performance computing to the DEF CON stage. The event: In 2016, machines will Capture the Flag! Follow DARPA Cyber Grand Challenge on Twitter: #DARPACGC

Presenters:

• Jordan Wiens - CTF A(p|nthro)pologist @vector35.com
  Jordan started his professional career at the University of Florida where he got to do a little bit of everything security related. His love of CTFs, however, drove him to a job at a government contractor where he honed his reverse engineering and vulnerability research skills. Now, his goal in life is to become a professional CTF e-sports caster so he founded a startup Vector 35 to try to get paid to do stuff with CTFs and gaming.
• Michael Walker - Program Manager, DARPA/I2O
  Mike Walker joined DARPA as a program manager in January 2013. His research interests include machine reasoning about software in situ and the automation of application security lifecycles. Prior to joining DARPA, Mr. Walker worked in industry as a security software developer, Red Team analyst, enterprise security architect and research lab leader. As part of the Computer Science Corporation "Strikeforce" Red Team, Mr. Walker helped develop the HEAT Vulnerability Scanner and performed Red Team engagements. Serving as a principal at the Intrepidus Group, Mr. Walker worked on Red Teams that tested America's financial and energy infrastructure for security weaknesses. Also, on the DARPA SAFER Red Team, Mr. Walker discovered flaws in prototype communications technologies. Mr. Walker has participated in various roles in numerous applied computer security competitions. He contributed challenges to DEF CON Capture the Flag (CTF) and competed on and led CTF teams at the highest levels of international competition. Mr. Walker was formerly a mentor of the Computer Security Competition Club at Thomas Jefferson High School for Science and Technology (TJHSST).

Links:

• https://defcon.org/html/defcon-23/dc-23-speakers.html#Walker
• https://infocon.org/cons/DEF CON/DEF CON 23/DEF CON 23 video and slides/DEF CON 23 - Michael Walker and Jordan Wiens - Machine vs Machine - DARPAs Fully Automated CTF - Video and Slides.srt (subtitles)
• https://infocon.org/cons/DEF CON/DEF CON 23/DEF CON 23 video and slides/DEF CON 23 - Michael Walker and Jordan Wiens - Machine vs Machine - DARPAs Fully Automated CTF - Video and Slides.mp4 (Video and Slides)
• https://www.youtube.com/watch?v=ejPghbtAG58
• https://www.youtube.com/watch?v=gnyCbU7jGYA

Tags:

• CTF

Similar Presentations:

• DeepSec 2018 „I like to mov &6974,%bx“ / Keynote: Automatic Exploitation - The DARPA Cyber Grand Challenge, what came after, and what is next
• ShmooCon X (2014) / Introducing DARPA's Cyber Grand Challenge
• DEF CON 24 (2016) / DARPA Cyber Grand Challenge Award Ceremony