EnD requires sinatra and ruby-zip to work. You can install those dependencies by either running
#on the root folder
bundle install or
gem install rubyzip sinatraTwo sample bosses (BlizardOne and Saruman) can be found on the Catalog. They are pretty easy to defeat and may be a good starting point for new players. Login into them as either player1 or player2 with password dc5411.
Before launching a Boss, you need to set your own Discord API Key / Webhook ID (other channels coming soon). Just visit https://support.discord.com/hc/es/articles/228383668-Introducci%C3%B3n-a-los-webhook to create a webhook and replace the $api_key value in the boss.rb file (line 7).
Feel free to ask for guidance if you are stuck!
- New ASCII art can be manually added to the
bossdata/asciifolder. - Want to share your awesome boss? It is stored as a zip file in the
bossdata/catalogfolder. - When adding "Interrupt a connection" as a damage condition, don't forget to add an entry for that connection on the
/etc/hostsfile. You can do so by issuingecho '127.0.0.1 myconnection' >> /etc/hostson the "Additional Commands" field. - When adding "Stop a service" as a damage condition, don't forget to allow users to interact with its
init.dscript. - When adding "Lock a user" as a damage condition, allow users to use
sudoagainst the/usr/bin/usermodbinary. - When adding "Delete a File" as a damage condition, the file will be created automatically, but you should set the permissions on the containing folder correctly on the "Additional Commands" field.
- Have fun, and share your new bosses with us (or invite us over)!
| # | Date | Conference | Link to Video | Link to Slides |
|---|---|---|---|---|
| 1 | AUG-2022 | DEF CON 30 VR | - | https://docs.google.com/presentation/d/1yxvkXteZYYxcUL-V_KHEonfcS74XGinC0tEFb55iDqQ/edit |
EnD was created by AdanZkx & MauroEldritch from DC 5411.