Palmetto Cyber Defense Competition 2016
Enterprise Meeting
25 February 2016
Jeff Sweeney PCDC Director
Space and Naval Warfare Systems Center Atlantic (SSC Atlantic)
58300 Information Assurance Policy & Risk Management
For PCDC Planning Purposes Only
1
PCDC 2016
877.492.7811 Conf Code: 8954016122
PCDC will be at
Trident Technical College
On 9/10/11 April 2016
Enterprise Meeting Schedule:
(every other Thursday at 10 AM at SRC)
• 10 March: Cooper I
• 24 March: Cooper I
• 7 April: Cooper I
2
2016 Participating Schools
High School – Saturday, 9 April
Palmetto Scholars Academy –
North Charleston - 1st place 2015
Ashley Ridge –
2nd
place 2015
Qualified through CyberPatriot:
Blythewood
Stratford – Goose Creek
Wando
South Aiken
Home School Network
Porter Gaud- Charleston
Collegiate – Sunday, 10 April
South Carolina –1st place 2015
Charleston Southern
University – 2nd place 2015
College of Charleston–3rd place
2015
South Carolina State
University
Trident Technical College
ECPI University
The Citadel
Clemson
3
2016 Pro Day Participants
Government- all confirmed
Corporate – new opening
Cyber National
Mission Force
NCDOC
33rd Network Warfare
Squadron-561st
Network Operations
Squadron: Yes
?
4
PCDC 2016 Updates
▼ Gold Team
 Continues to work on images and injects
 Moved to CSRA on Aviation 2 weeks ago.
 42 hard drives being ordered to increase capacity of Dell servers to handle
increased virtualization requirements
 Info on network and virtual firewall will be included in Preparation Guide that
will be released around mid-March
▼ All White Team judge positions have been filled. First White Team
meeting should be held next month.
▼ Red Team still has openings. Companies willing to fund travel for
Red Team members will get in-kind sponsorship.
▼ High School Blue Team Mentors
 All Schools have been engaged and are being mentored.
5
PCDC 2016 Updates
▼ Sunday VIP invite: Secretary of the Air Force Deborah Lee James has
a schedule conflict and has declined. Asking Governor?
▼ Monday VIP invite to General Brock has been delivered and tentatively
accepted. Working with his staff
▼ PCDC logo swag (POC: Paul Wilbur)
 Purple koozie – cost, quantity (250?), Dilks/Simone?
▼ T-shirt color: Purple (81C), should have order numbers/sizes by 26 Feb
▼ Red Team has requested: Antique Cherry Red (246C) will this be a
problem?
▼ Registration packets are due tomorrow and T-shirt and lunch orders should
go out shortly thereafter.
▼ 360 challenge coins ordered?
▼ Brochure status?
▼ MERCOM looking into purchasing Raspberry PIs and kits
6
▼ Need app to display pictures – saw at AFCEA luncheon
PCDC 2016 Status/Updates
▼ Still need one pagers from sponsors for scrolling display
▼ Additional collegiate Q&A sessions planned for 9 Mar and 6 April.
▼ Pro Day Q&A will also be scheduled
▼ Will get supplies list to CSRA next week – not done yet
▼ Facility meeting with Trident Tech scheduled for 29 Feb. Invites have gone
out
▼ National Anthem and Honor Guard updates – Linda/Ken: For action
▼ 1 imbed from each College for Pro Day and one from TTC for each Pro
Team. Alternates list from TTC
▼ National Guard classes update – Dave Coldren/Larry Fuller
▼ Finally talked to Ashley Caldwell at Pearson:
 Offering up to 20 test vouchers for Microsoft Tech Associate and/or MCSE
 Need to decide how to distribute: Set up raffle?
 Will send brochures.
▼ AFCEA Updates – Ken Dilks: sponsors, etc.
7
PCDC 2016 Updates
▼Hotel update? Asked colleges to let us know if they need help
▼Bags and bottles – from SPAWAR, looking for other logo swag items for
goody bags
▼Pro-2-Serve contacted to get updated plates on Challenge cup by Sunday
night. This will be there last year as sponsor. Status of 5 plaques and
lanyards?
▼Music and social media coordinator: Stephen Stills
▼Still need to set up meeting with HR
8
New This Year
▼ Cyber Forensics Challenge with tablet as first prize. Sentar has agreed to
provide Samsung Galaxy tablet as first prize.
▼ Cyber forensics will also be integrated into injects
▼ Medical Information network is new scenario
▼ Free Security+ test vouchers from COMPTIA
▼ We will allow collegiate teams the option of having their advisors
provide 15 minutes hands-off advice once during the morning of the
competition for X points
▼ Updated scoring engine, more points deducted as downtime increases
▼ Will provide network diagram
▼ No VOIPs
▼ Switches also virtualized
▼ No physical firewall (ASA). Firewall
will be virtualized this year
9
High School Blue Team Mentoring Curriculum
▼ Great site for Linux images: http://www.osboxes.org/
▼ NETLABs hosted at TTC. Sessions available 24x7
▼ Will meet for at least 1.5-2 hrs. per week
▼ A lot of material is posted on the pcdc-sc.com/mentor section (need PW)
▼ Will get details on remote mentoring to the schools
•
•
•
•
•
•
•
•
•
•
Intro to IT Security
Windows Security
How to Mitigate
Networking Fundamentals/Password Security
Linux/CentOS/Ubuntu
Forensics
Business practices/injects/scoring
Reviewing Blue Team and Preparation Packets with schools
Review of Critical areas (optional)
Virtual Firewalls
10
Saturday, April 9, 2016
High School Competition Schedule
 7:00 am – 7:30 am:
 7:15 am – 7:20 am:
 7:20 am – 7:30 am:
 7:30 am – 7:45 am:
 7:45 am – 9:15 am:
 9:15 am – 3:30 pm:
 10:00 am – 11:00 pm:
 12:00 pm – 1:00 pm :
 3:30 pm – 4:00 pm:
 4:00 pm – 4:30 pm:
 4:30 pm – 5:00 pm:
 5:00 pm – 5:15 pm:
 5:15 pm – 5:20 pm:
11
 5:20 pm – 5:55 pm:
Registration
Team location drawing
Blue Teams Briefing
Opening Ceremony
Initial Injects / Secure the Network
Operate Network Under Hacker Attacks
National Guard Presentation:
National Guard Presentation:
Red Team members visit Blue Teams
Break/View Sponsor Booths
Blue Team Presentations
Red/Gold Team Debrief: Common Mistakes
SPAWARSYSCEN Atlantic Executive Director and/or CO?
Awards / Closing Ceremony
Sunday, April 10, 2016
Collegiate Competition Schedule
 7:00 am – 7:30 am: Registration
 7:15 am – 7:20 am: Team location drawing
 7:20 am – 7:30 am: Blue Teams Briefing
 7:30 am – 7:45 am: Opening Ceremony
 7:45 am – 8:15 am: Initial Injects / Secure the Network
 8:15 am – 4:15 pm: Operate Network Under Hacker Attacks
 10:00 am – 11:00 pm: National Guard Presentation: (Rm507)
 12:00 pm – 1:00 pm: National Guard Presentation: (Rm 507)
 4:15 pm - 4:30 pm: Red Team members visit Blue Teams
 4:30 pm – 5:00 pm: Break/View Sponsor Booths
 5:00 pm – 5:30 pm: Blue Team Presentations
 5:30 pm – 5:45 pm: Red/Gold Team Debrief: Common Mistakes
 5:45 pm – 6:40 pm: Keynote Speaker / Awards / Closing Ceremony
12
Monday, April 11, 2016
Pro Day Competition Schedule (Tentative)
 7:00 am – 7:30 am:
Registration
 7:15 am – 7:20 am:
Team location drawing
 7:20 am – 7:30 am:
Blue Teams Briefing
 7:30 am – 7:50 am:
Opening Ceremony
 7:50 am – 4:30 pm:
Operate Network Under Hacker Attacks
 4:30 pm - 4:45 pm:
Red Team members visit Blue Teams
 4:45 pm – 5:00 pm:
Break/View Sponsor Booths/Networking
 5:00 pm – 5:15 pm:
Red/Gold Team Debrief: Common Mistakes
 5:15 pm – 5:35 pm:
VIP – General Brock?
 5:35 pm – 5:55 pm:
Awards / Closing Ceremony
13
Cyber Forensic Challenge
▼ Objective: Solve as many forensic scenarios as possible within the allotted
time and accumulate the most points possible – 1st place: Samsung Galaxy?

Participants will be provided access to a forensic scenario exercises ranging in difficulty. Each exercise will
require the participant to utilize different forensic techniques to uncover a designated “flag”. Flags will be
unique to each scenario which can range from date/time stamps, hashes, passwords, etc. Discovered flags will
be submitted for grading and will be rewarded with the appropriate point value if the correct flag was provided
▼ Challenge examples:








▼
▼
▼
▼
▼
Hidden data: Find a specific “Key” word
Hashing: Identify the correct hash of a file
Metadata: Identify a particular embedded metadata element
Data Recovery:Recover a specific filename
Password Cracking: Crack a password representation to discover the plaintext password
Malware Analysis
PCAP Analysis
Memory Analysis
Any attendee at the PCDC event may compete
Excludes SPAWAR Employees and High School PCDC team members
Must be completed within the day of the competition
Individual participation only: Cannot receive help from others
Disqualification: Hacking the competition equipment, attacking other competitors or
14
PCDC 2016 Team Leads
▼ Director – Jeff Sweeney
▼ Gold – Josh Lewis
▼ Red – Sam Cappella/Bryan Rhodes (843-218-5986)
▼ White – Andrew Osti (843-218-4815)
▼ Blue/High School Coordinator – Dennis Wilson
▼ Collegiate Coordinator – Vince Van Houten, (Deputy Director)
▼ Pro Day Coordinator – Bob Miller, (Deputy Director)
▼ AFCEA POC – Ken Dilks
▼ AFCEA President – Don Pearsall
15
Thanks to our 2016 Corporate Sponsors!
.
16
Thanks to our 2016 Corporate Sponsors
Dilks - Simone, Inc
.
17
Important Links
▼PCDC Website: pcdc-sc.com
▼PCDC Facebook:
https://www.facebook.com/PalmettoCyberDefenseCompetition
▼PCDC Twitter: https://twitter.com/PalmettoCyber
▼Cyber Patriot: http://www.uscyberpatriot.org
▼AFCEA: http://charleston.afceachapter.org/
▼#PCDC
18
PCDC Primary POCs
▼ Jeff Sweeney, SSC Atlantic, PCDC Director
▼
▼
▼
▼
▼
▼
▼
▼
843-218-4282, jeff.sweeney@navy.mil
Bob Miller, SSC Atlantic, PCDC Deputy Director
843-218-4898, robert.w.miller@navy.mil
Vince Van Houten, SSC Atlantic, PCDC Facilitator, Collegiate Coordinator
843-218-4282, vincent.vanhouten@navy.mil
Josh Lewis, SSC Atlantic, PCDC Gold Team Tech Lead
843-218-2157, joshua.c.lewis@navy.mil
Whitney Bridges, AFCEA Treasurer, Alutiiq
843-300-7223, wbridges@alutiiq.com
Ken Dilks, AFCEA PCDC Lead, Dilks-Simone, Inc
843-814-5600, kenneth.dilks@dilks-simone.com
Tonya Davis, Trident Technical College
843-574-6951, tonya.davis@tridenttech.edu
Don Pearsall, AFCEA President
703-980-4829, djp_01@yahoo.com
Dennis Wilson, SPAWAR, Blue Team Mentor Lead, High School Coordinator
843-218-6580, dennis.r.wilson@navy.mil
19
Wrap Up
▼Thoughts?
▼Big Ideas?
▼Innovations?
▼Questions?
20