Overview

DownTheWire is a collection of CTFs (Capture The Flag) that focus on network pivoting.  DownTheWire was developed to help red team and blue team professionals hone their skills in conducting or identifying network traversal techniques.  Each CTF focuses on specific pivoting concepts, while each level utilizes a different application or technique.  

Each level provides C2 (Command and Control)  access to the pivot box most often in the form of an SSH user.   SSH will provide the ability to identify and configure the pivot application. The page for each level provides connection details such as ports and IPs for the associated actions.   More details can be found on the given page for a CTF and level.  The goal of each level is to use the designated pivot application/technique to get the flag from the target device all the way back to your Kali machine.  Each flag is the SSH password for the next level.

All the pivoting applications are running in a Linux environment, but can be used in a Windows environment.

Each level is a shared environment, so if a port is already bound try the next port in the list. 

Below is a list of the current CTFs with more in development.

Disclaimer

  • Pivot boxes are highly restrictive.
  • Do not try to escape the restricted shells.
  • Don’t try to pivot anything other than the provided target.
  • Use the applications as they are intended.
  • Remove files and kill processes when complete with the level
  • Don’t post the password anywhere.
  • Don’t interfere with other players.
Arachne
Typhoeus
Kymopolea

Arachne consists of 7 level and is designed as an introductory CTF.

Typhoeus consists of 6 levels and builds on the techniques and application found in Arachne.

Coming Soon