Lockdown is a student-run Cybersecurity competition targeted for beginner Cybersecurity students. Students who attend Lockdown will leave after experiencing an active breach within a small corporate environment. They will also learn their strengths and weaknesses working with a team. Students should leave feeling accomplished but also with a drive to learn more!
Lockdown is similar to Regional CCDC, except shorter and should be looked at as a stepping stone to CCDC. We offer a 1-day 7 hour competition with a mock corporate network that contains user infrastructure, cloud machines and general services to operate a company. Your job is to run the network and company during an active intrusion.
This competition is completely ran and developed by students, usually compromising of 10-12 developers of the competition, usually putting in 30-40 hours each. Totaling roughly 400 hours of time.
This is closer to a “real world” project. Not a school project.
There will be times there are not enough students for each role. Students will need to wear multiple “hats” in order to do Lockdown. People with multiple roles will need to know the scope of each role. This is to help with biased decisions when there is a conflict in roles.
Project Manager of Lockdown. Do not put someone here who does not have a good work ethic. This person has a holistic view of the competition from start (e.g. planning, role assignments, etc.) to finish (e.g. competition debrief, clean up, etc.).
Gold Team Leader's team consists of Gold Team, Red Team Leader, White Team Leader, and Black Team Leader. This is Lockdown's Leadership team. Each Team's Leader has defined roles and responsibilities; Gold Team needs to know them and know how the teams interact with one another. Gold Team Leader has final decision power for students (e.g. if other team leaders cannot come to a decision, the gold team leader should make the decision).
Gold Team Leaders who do not fulfill their role's responsibilities are noticed and cause ripples to the rest of Lockdown.
Leading indicator: How much are things planned out for each event, each sponsor, each team?
Lagging indicator: How much were you running around during the competition?
Roles and Responsibilities (Not every single one of these tasks will always be applicable. But it is important to have a definition of all possible tasks to make sure you are oriented for success.)
Everyone is a member during design and development
Why?
Everyone needs to be familiar with the infrastructure of the competition, at the very least Blue Team infrastructures. Not knowing the infrastructure causes issues during the competition (e.g. White Team members now have to ask Black Team lead about how something works, Red Team doesn't know what to target and not to target, Black Team is bogged down with simple questions)
Everyone needs to know at a base level the machines and what services are on them and if they are cloud or not. No excuses.
Roles and Responsibilities (Not every single one of these tasks will always be applicable. But it is important to have a definition of all possible tasks to make sure you are oriented for success.)
Create what's in scope and not in scope document and share with white team. White team will have an easier time to know what red team will and will not be doing (e.g. Not changing passwords, not deleting user accounts, etc.)
Currently, we partner with RIT students to do Red Team. Red Team Leader needs to coordinate with RIT's point of contact to discuss strategy and timeline of the competition.
Roles and Responsibilities (Not every single one of these tasks will always be applicable. But it is important to have a definition of all possible tasks to make sure you are oriented for success.)
The “managers” of the Blue Team. White Team's main responsibility is to make sure that Blue Team participants are having a decent time (within reason), and learning. Indicators used during the past:
Education: The competition will be an educational tool to teach students about building systems and services, hardening, using tools, team dynamics, etc by the end of the competition.
Leading Indicators: Setting up a proper system for educational; Red Team’s attack plan; technical difficulties
Lagging indicators: Feedback given shows that one person did not learn anything
Competitive: No team or competitor has given up due to the lack of ability to continue caused by technical problems, Red Team, and/or lack of valiance for the duration of the competition.
Leading Indicators: Technical difficulties; Red Team’s attack plan; why winning is important
Lagging indicator: One competitor gave up
Fun: The majority of competitors are enjoying the competition even when things are getting stressful for the duration of the competition.
Leading indicators: Technical difficulties, red team’s attack plan, interesting injections, and solutions.
Lagging indicator: Feedback, Bored/angry competitor
Roles and Responsibilities (Not every single one of these tasks will always be applicable. But it is important to have a definition of all possible tasks to make sure you are oriented for success.)
The Blue Team are the competitors. They are responsible for having fun and following the rules.
Who owe's who what? Most of these tasks are within the relevant teams sections. However there is a concise running list below.
Red Team
Gold Team
White Team
Black Team
“Success doesn't just happen. It's planned for.”
“Proper planning and preparation prevents poor performance.”
“A goal without a plan is just a wish.”
This is the most important phase. Everything needs to be sorted out here.
The goal here is to decide all of this in a meeting with the leaders of Lockdown.
Due Dates
Design
Resource Allocation (Human and Technical)
Team Designations
Leader Designations
Participants to be Invited
Goals
Competition Agenda
Theme
Injects
Infrastructure of Teams
Infrastructure of Competition
Who owe's who what?
Setup
Registration
Clean Up
Debrief