juice-shop-ctf-cli
Advanced tools
Command line client to generate INSERT statements for CTFd with the OWASP Juice Shop challenges
OWASP Juice Shop CTF 
The NPM package juice-shop-ctf-cli published from this repository lets you create a list of INSERT statements for
the CTFd database that will populate the platform for a Capture the Flag event using
OWASP Juice Shop.
npm i -g juice-shop-ctf-cli
Open a command line and run:
juice-shop-ctf
Then simply follow the instructions of the command line tool. Finally, apply the generated insert-ctfd-challenges.sql following the steps described in the next section.
Follow steps 2-4 from the CTFd Docker setup to download the source code, create containers and start them.
After running docker-compose up from previous step, you should be able to browse to your CTFd instance UI (<<docker host IP>>:8000 by default) and create an admin user and CTF name.
Once you have done this, run docker-compose down or use Ctrl-C to shut down CTFd. Note: Unlike a usual Docker container, data will persist even afterwards.
Add the following section to the docker-compose.yml file and then run docker-compose up again:
ports:
- "3306:3306"
You can then use your favourite MySQL client to connect to the CTFd database (default credentials are root with no password) and run the INSERT statement you created.
When that is done, browse back to your CTFd instance UI and check everything has worked correctly.
If everything has worked, do another docker-compose down, remove the ports section you added to docker-compose.yml and then do docker-compose up again and you are ready to go!
If you need help with the application setup please check the Troubleshooting section below or post your specific problem or question in the official Gitter Chat.
127.0.0.1:XXXX to
0.0.0.0:XXXX for TCP in the default VM's network adapter in
VirtualBox. For CTFd you need ports 8000 permanantly and 3306
during setup.
Found a bug? Got an idea for enhancement? Improvement for cheating prevention?
Feel free to create an issue or post your ideas in the chat! Pull requests are also highly welcome - please refer to CONTRIBUTING.md for details.
PayPal donations via above button go to the OWASP Foundations and are earmarked for "Juice Shop". This is the preferred way to support the project.
Ordered by date of first contribution. Auto-generated on Wed, 01 Feb 2017 20:01:35 GMT.
bkimminichtghosth
This program is free software: you can redistribute it and/or modify it under the terms of the MIT license. OWASP Juice Shop and any contributions are Copyright © by Bjoern Kimminich 2016-2017.
FAQs
Capture-the-Flag (CTF) environment setup tools for OWASP Juice Shop
The npm package juice-shop-ctf-cli receives a total of 88 weekly downloads. As such, juice-shop-ctf-cli popularity was classified as not popular.
We found that juice-shop-ctf-cli demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Newly introduced telemetry in devenv 1.4 sparked a backlash over privacy concerns, leading to the removal of its AI-powered feature after strong community pushback.
Security News
TC39 met in Seattle and advanced 9 JavaScript proposals, including three to Stage 4, introducing new features and enhancements for a future ECMAScript release.
Security News
Deno 2.2 enhances Node.js compatibility, improves dependency management, adds OpenTelemetry support, and expands linting and task automation for developers.