CINXE.COM
CERN Computer Security Information
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"> <html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en"> <head> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8" /> <link rel="stylesheet" href="/style.css" type="text/css" /> <script type="text/javascript" src="/jquery.min.js"></script> <title>CERN Computer Security Information</title> <script type="text/javascript"> $(document).ready(function(){ // Menu highlight var path = location.pathname.split("/"); if ( path ) { $('#main_menu a[href*="' + path[1] + '"][class!="noselect"]').addClass('selected'); // path[3] = /security/<xxxxx>/ $('#sidebar ul.sidemenu li[class!="noselect"]:has(a[href$="' + path.reverse()[0] + '"])').addClass('selected'); } // Add icon to external links $('a[id!=logo-img]').filter(function() { return this.hostname && this.hostname !== location.hostname; }).after(' <img src="/images/external_link.png" alt="external link" title="external link"/>'); }); </script> </head> <body> <div id="wrap"> <div id="top-bg"></div> <!--header --> <div id="header"> <div id="logo-text"> <a id="logo-img" href="https://home.cern/"><img src="/images/CERNLogo2.png" width="59" height="59" style="margin: 10px" alt="CERN Logo"/></a><div id="logo-text-big"><a href="/home/en/index.shtml" title="">CERN Computer Security</a></div> </div> <div id="header-logo"><a href="/services/en/emergency.shtml"><img width=335 src="/images/emergency.png" alt="Computer Emergencies"/></a></div> </div> <!--header ends--> <div id="header-photo"></div> <!-- navigation starts--> <div id="nav"> <ul id="main_menu"> <li><a class="noselect" href="/home/fr/index.shtml"><img src="/images/fr.png" alt="FR"/></a></li> <li><a href="/home/en/index.shtml">Home</a></li> <li><a href="/rules/en/index.shtml">Computing Rules</a></li> <li><a href="/recommendations/en/index.shtml">Recommendations</a></li> <li><a href="/training/en/index.shtml">Training</a></li> <li><a href="/services/en/index.shtml">Services</a></li> <li><a class="secured" href="/reports/en/index.shtml">Reports & Presentations</a></li> </ul> </div> <!-- navigation ends--> <!-- content-wrap starts --> <div id="content-wrap"> <div id="main"> <h2>The CERN WhiteHat Challenge</h2> <p> The CERN WhiteHat Challenge is a collaboration between different international universities and CERN. It is supposed to provide students of computer science, information security and alike with a realistic, live and operational environment open to be assessed on vulnerabilities and security weaknesses in order to train them as part of their cyber-security curriculum. </p> <p>However, The academic curiosity and the perseverance of a nerd shall be the CERN WhiteHats’s only motivation for this challenge. Any CERN WhiteHat is subject and must comply with CERN's <a href="https://cern.ch/security/rules/en/index.shtml">Computing Rules</a> and this <a href="/services/en/code_of_ethics.shtml">Code of Ethics</a>.</p> <p>The CERN WhiteHat Challenge is open for all <b>students enlisted with affiliated universities</b> who have signed this dedicated <a href="CERN WhiteHat Challenge MoU.pdf">Memorandum of Understanding</a>. Professors and teachers interested in joining the CERN WhiteHat Challenge can contact us at <a href="mailto:">Computer.Security@cern.ch</a>. We are proud being currently probed by students from these fine universities:</p> <p> <center> <!--a href="http://www.fhnw.ch/"><img border="0" src="/services/images/fhnw.jpg" width=100%></a--> <a href="https://www.th-deg.de/cy-b"><img border="0" src="/services/images/DIT.png" width=70%></a> <a href="http://english.fhstp.ac.at/research/institutes_areas/its/our-focus/industrial_security"><img border="0" src="/services/images/LogoFH.JPG" height="100"></a> <!--a href="http://www.heig-vd.ch/rad/iict"><img border="0" src="/services/images/HEIG-VD.png" height="100"></a--> <!--a href="http://nislab.no/"><img border="0" src="/services/images/NTNU.png" height="100"></a--> <!--a href="http://informatica.ucm.es/"><img border="0" src="/services/images/U_Madrid.png" height="100"></a--> <!--a href="http://roselabs.nl/about/"><img border="0" src="/services/images/U_Rotterdam.png" height="100"></a--> <!--a href="http://www.rose-hulman.edu"><img border="0" src="/services/images/Rose-Hulman.png" height="100"></a--> <!--a href="https://www.kent.ac.uk/courses/postgraduate/1225/cyber-security"><img border="0" src="/services/images/LogoUKent.jpg" height="100"></a--> </center> </p> <p> Similarly, the CERN WhiteHat Challenge is open to <b>CERN staff and users</b> who want to develop their penetration testing and vulnerability scanning skills. Apart from a good motivation, no in-depth technical expertise is needed. However, dedicated <a href="https://indico.cern.ch/category/6159/">training courses</a> covering ethics, web technologies, and an introduction to penetration testing and exploitation are mandatory. This initial training is complemented by in-depth courses of different subjects (e.g. cross-site scripting, command line injection) given at regular intervals. If you are CERN user or staff and interested in becoming an official CERN WhiteHat, please subscribe to this <a href="https://e-groups.cern.ch/e-groups/EgroupsSubscription.do?egroupName=White-Hats-Future-Candidates">e-group</a>.</p> </div> <!-- main ends --> <!-- SIDEBAR --> <!-- sidebar menu starts --> <div id="sidebar"> <ul class="sidemenu"> <li><a href="/home/en/privacy_statement.shtml">Privacy Statement</a></li> </ul> <h3>Computer Security Incident Response</h3> <ul class="sidemenu"> <li><a href="/services/en/emergency.shtml">Emergencies</a> <li><a href="/services/en/sems.shtml">Self-mitigation portal</a></li> </ul> <h3>Consulting, Pentesting & Reviews</h3> <ul class="sidemenu"> <li><a href="/services/en/reviews.shtml">...on request</a> <li><a href="/services/en/whitehats.shtml">CERN WhiteHat Challenge</a> </ul> <h3>Host-Based Intrusion Detection</h3> <ul class="sidemenu"> <li><a href="/services/en/csl.shtml">Central security logging</a></li> <li><a href="/services/en/password_dumps.shtml">Password Dump Notifications</a></li> <li><a href="/services/en/receipts.shtml">Remote Login Notifications</a></li> </ul> <h3>Traffic Control & Monitoring</h3> <ul class="sidemenu"> <li><a href="/services/en/dns.shtml">DNS analysis</a></li> <li><a href="/services/en/ids.shtml">Network-based intrusion detection</a></li> <li><a href="/services/en/firewall.shtml">The CERN outer perimeter firewall</a></li> <li><a href="/services/en/dnim.shtml">Statistical traffic analysis</a></li> <li><a href="/services/en/spam.shtml">SPAM filtering</a></li> </ul> <h3>Vulnerability Scans</h3> <ul class="sidemenu"> <li><a href="/services/en/device_scans.shtml">Device scans</a></li> <li><a href="/services/en/network_scans.shtml">Network scans</a></li> <li><a href="/services/en/passwords.shtml">Password cracking</a></li> <li><a href="/services/en/web_scans.shtml">Web application scans</a></li> </ul> </div> <!-- sidebar menu ends --> <!-- content-wrap ends--> </div> <!-- footer starts --> <div id="footer-wrap"> <div id="footer-bottom"> © Copyright 2024<strong> <a href="https://cern.ch/security">CERN Computer Security Office</a></strong> <table> <tr> <td id="footer-info-left"> e-mail: <a href="mailto:Computer.Security@cern.ch">Computer.Security@cern.ch</a><br/> Please use the following PGP key to encrypt your messages:<br/> ID: 0x954CE234B4C6ED84<br/> <a href="https://keys.openpgp.org/vks/v1/by-fingerprint/429D60460EBE8006B04CDF02954CE234B4C6ED84">429D 6046 0EBE 8006 B04C DF02 954C E234 B4C6 ED84</a> </td> <td id="footer-info-right"> Phone: +41 22 767 0500<br/> Please listen to the recorded instructions. </td> </tr> </table> </div> </div> <!-- footer ends--> </div> <!-- wrap ends here --> <!--img height=30px src="/home/en/CERNfooter_800.png"--> </body> </html>