armctf is a project that provides downloadable vulnerable virtual machines, rebuilt from amd64 to arm64. it's for users to practice ctf challenges on arm-based systems.
vulnerable machines are sourced from vulnhub, hackmyvm and vulnyx. that's why full credit goes to the original creators.
a week ago, a friend asked me if he can find vulnhub-like machines to import and solve on his macbook with m series chip. a few days later i thought about:
1- not everyone wants to/should pay paid services to solve ctfs. vulnhub, hackmyvm and vulnyx are great resources.
2- not everyone uses windows systems.
3- utm'ing is much hassle.
4- there is no good solution for this. (afaik)
5- i already have macbook with m series chip.
so i decided to do it as a side project.
don't expect ctfs to be 1:1 in arm64 rebuild. expect some changes, especially suid binaries. some struggles and why they're not included:
1- buffer overflows
differ from x86.
2- binary exploits
need source code, which is not possible.
3- kernel exploits
vmware fusion is not supporting linux kernels below 4.idontremember.0. best i can offer is dirtypipe, which is on kernel version 5.10.0-8.
4- most of cves
no arm version, no party.
5- windows machines
didn't even tried windows arm, but will do a research about it.
all vms has 2 cpu and 2 ram configuration. you can lower these if you are out of resources.
downloads handled by nextcloud, server located in germany. every download is public so there should be no problem. if you can't reach nextcloud, you're either banned by nextcloud or i'm doing some maintenance. mail me if problem persists.
ctfs are prepared on vmware fusion, so sticking with it is a good idea.
let's say, you downloaded driftingblues3.7z to emre folder.
double click it to extract. (or 7z x driftingblues3.7z)
there is now armctf.vmwarevm machine folder. its name is armctf.vmwarevm because it's a template, which i build machines on original snapshot.
open vmware fusion. follow file > open or command + o. browse your freshly extracted armctf.vmwarevm and open it. after importing, library entry is added.
before starting the vm, don't forget to configure network. nat, cable bridge or wifi bridge.. your choice.
let's roll!
since rebuilding ctfs are taking a lot of time, i'm actively seeking your help to expand this project.
if you decided to help, you can find base images below. root password is asd.
debian 12 (kernel version 6.1.0-37)
url: https://nc.zurrak.com/s/Gg8PH2Jxqny34jk
sha256 checksum: 3dbe736ad4d68fe4b2753fd2e036405b3ffe9c651a849e58693ebe4e54e56da2
debian 11 (kernel version 5.10.0-8) >>> it's for ctfs that has kernel exploiting step
url: https://nc.zurrak.com/s/93FSjaHJK7ZzFBN
sha256 checksum: 8897c6516fbd4dd89b301ae5df61e7f8f619ba4564dfb5d609ddf2a17b79e202
you can always contact me from here.