Calling all Cybersecurity Experts, we need your help to train WorldSkills Team Ireland Cybersecurity!

WorldSkills Team Ireland will be competing in Skill 54 – Cybersecurity at the International WorldSkills Competition in Lyon in September this year.

The Irish team this year consists of two working individuals, one with a blue team focused skillset and the other with a red team focused skillset. The aim is to improve their knowledge and skills so that they can have the best possible chance of succeeding in France on the international stage representing Ireland. 

So, I am looking for support to train the Team on specific cybersecurity aspects (see example list below based on previous competitions). 

 

The Ask: Provide a 2-hour or longer online training/mentoring session on a cybersecurity topic of your choice (see list below). This can be supported by the Cyber Skills cyber range infrastructure if needed. Also, if you have other training resources which you think would help the team, and you are willing to supply same, that would be great. 

For more information on the event, please visit: https://worldskills2024.com/ 

For more information on the skill: https://worldskills.org/skills/id/546/ 

For detailed information on the Cybersecurity Skill: https://worldskills.org/what/projects/wsos/2024/events/579/skills/1678/ 

To sign up, please contact Dr George O’Mahony (WorldSkills Ireland Expert Cybersecurity) at: georged.omahony@mtu.ie

Or fill in the form at: https://forms.office.com/e/QxvEQNcZAK  

 

Once you sign up, I will look after the logistics.

Example list of topics: 

The team will require training across a large range of areas, including but not limited to what was covered in the previous two competitions.  

• Active Directory secure setup and operations.
  
• Firewalls and VPNs (last time this was Palo Alto).
  
• SIEM and connection to AD (last time this was Splunk).
  
• Secure HTTPS setup of Apache. 
  
• IDS Setup – Snort. Etc.  
• FTP Setup – vsFTPD, etc.  
• Cisco, Microsoft and Red Hat certification tracks.
• Incident Response.
  
• Digital Forensic Investigation.
  
• Application security.
  
• 2019 Challenge – “Analyse the attack methods of hackers, find vulnerabilities in the system, submit an incident response report for cyber security incidents (report template available in the end of this Test Project); Repair the vulnerabilities in the system, delete the backdoor dropped by the hacker in the system, and restore the system to its normal operation.” 
• Digital Forensics – 2019 File Types - “LinuxM_Svr, Win.img, mem.dum, Network.pcap , Test.pdf, system.img”.
  
• Code Review and Sample Code Analysis. 
  
• Python, etc.  
• Cryptography and PKI.
  
• Vulnerability Detection and Repair.
  
• IAM.

 

Capture the Flag Attack

• Windows and Linux.
• Enumeration.
  
• Web Server Attacks.
  
• Database Attacks.
  
• Windows Attacks.
  
• Root Access. 
• Cryptography.
• Steganography. 
• Traditional CTF – Vuln Hub or HackTheBox & OSCP Style VMs.

 

Capture the Flag Defense 

• Previous Comp (2019) - Fortinet NGFW with Threat Detection, Intrusion Prevention System (IPS) & Data Loss Prevention (DLP) and Splunk Enterprise 7 with Fortinet app. 
• Tasks associated with security monitoring, for example: 
• Reconnaissance and Application Detection.
  
• Malware/Exploits.
  
• Phishing.
  
• Lateral Propagation/Botnet.
  
• Data Leakage.
  
• Reverse Engineering.
• Digital Forensics.
  

 

• Previous Comp (2022) 
• Breaking Point Traffic Generator sending out packets.  
• Network Packet analysis and using the determined information to pentest discovered endpoints. 
  
• Flare VM, Palo Alto (capture the packets) and Splunk.
  
• Packet analysis - Dealing with fragmented packets and capturing packets from F/W.
  
• Web Exploitation. 
  
• Binary Exploitation. 
  
• Reverse Engineering. 
  
• OSINT.