Posts

ChatGPT On CTF Challenges

Image
We want to see whether ChatGPT or other AI (MS-New_Bing or Google Bard) are able to help the user to go to some test environment to run cmd to solve the CTF challenges (Understand the challenge question and capture the flag). In this test case we will create a test environment to test ChatGPT and other AI's performance on solving a web-exploitation CTF challenges. We will build a CTF challenge question and related test environment as an example, we will also show how to use the Jailbreak Prompt such as Always Intelligent and Machiavellian chatbot prompt (AIM) to simplify the process (such as bypass most of OpenAI’s policy guidelines). Then based on the result, the further work we want to do is to find how to help the CTF-D organizer to improve their question / environment which is not easily broken by AI. Capture The Flags, or CTFs, are a kind of computer security competition. Teams of competitors (or just individuals) are pitted against each other in a test of computer securi
Post a Comment
Read more

National Cybersecurity R&D Laboratory (NCL) at LockShield 2023

Image
National Cybersecurity R&D Laboratory (NCL) has sent a team to participate in LockShield 2023, held in Estonia from 17 to 21 April 2023. LockedShield is an annual exercise organised by CCDCOE (The NATO Cooperative Cyber Defence Centre of Excellence), enables cyber security experts to enhance their skills in defending national IT systems and critical infrastructure under real-time attacks. The focus is on realistic scenarios, cutting-edge technologies and simulating the entire complexity of a massive cyber incident, including strategic decision-making, legal and communication aspects. The team, consisting of Ivan, Felix, and Niklaus, is part of the Green Team DFIR (Digital Forensic and Incident Response). As part of their responsibilities, NCL is responsible for crafting an attack scenario on an enterprise network, building up the networks and servers, and generating the digital forensic evidence files to be used in the exercise. The NCL team is part of the Singapore contingent
Post a Comment
Read more

China Unicom (Singapore) Operations Pte Ltd. Explores Collaboration Opportunities with National Cybersecurity R&D Lab (NCL) at NUS

Image
On 24 March 2023, a delegation of visitors, Mr. Bai Jian (Deputy General Manager) and Mr. Adam Cheung (Senior Product Manager) from China Unicom (Singapore) Operations Pte. Ltd., visited the National Cybersecurity R&D Lab (NCL), NUS to explore the potential collaboration opportunities. The visitors were welcomed and hosted by our Principal Investigators Associate Professor Chang Ee-Chien and Associate Professor Liang Zhenkai, School of Computing, National University of Singapore. From Left to Right: Mr. Seah Choon Meng (Program Director, NCL); Mr. Liu Yuancheng (Head of Technology, NCL); Mr. Adam Cheung (Senior Product Manager, China Unicom); Associate Professor Chang Ee-Chien (Principal Investigator, NCL); Mr. Bai Jian (Deputy General Manager, China Unicom); Associate Professor Liang Zhenkai (Principal Investigator, NCL) The National Cybersecurity R&D Lab (NCL), NUS is a facility dedicated to cybersecurity research, development, and training. The lab is equipped with a
Post a Comment
Read more

Dr. Norrathep Rattanavipanon's Techincal Visit to National Cybersecurity R&D Lab (NCL)

Image
On 07th of March 2023, Assistant Professor Norrathep Rattanavipanon from Prince of Songkla Univeristy, Phuket Campus, Thailand visited National Cybersecurity R&D Laboratory (NCL). This was a technical visit organized by Associate Professor Liang Zhenkai, School of Computing, NUS. The purpose of the visit was to explore the cutting-edge technologies and projects being developed in the lab and to gain more knowledge about Cyber security services offered by NCL. From left to right: Associate Professor Liang Zhenkai, Mr Seah Choon Meng (Program Director, NCL), Assistant Professor Norrathep Rattanavipanon (Visitor) & Mr Liu Yuancheng (Head of Technology, NCL) Dr. Norrathep Rattanavipanon is currently an Assistant Professor in the College of Computing at Prince of Songkla University, Phuket Campus, Thailand. Though he is interested in various topics in security and privacy. Currently, his research focuses on embedded systems and IoT security, differential privacy, blockchain pri
Post a Comment
Read more

Mr. Sukwoo Lin, a Visiting Researcher to National Cybersecurity R&D Lab (NCL)

Image
National Cybersecurity R&D Lab (NCL) is very happy to host Mr. Sukwoo Lin as a Visiting Researcher, who have been selected for overseas training program sponsored by Korean Government. He is a Superintendent of the Korean National Police Agency (KNPA). From left to right: Mr Seah Choon Meng (Program Director, NCL); Mr Sukwoo Lim (Visitor); Associate Professor Chang Ee-Chien (Principal Investigator, NCL) Mr Sukwoo Lim has been working in Korean national police agency since 2016. Currently, he is working as a chief of criminal department at the Yeongdeungpo police station in Seoul, South Korea. Prior to joining the police, he worked as a lawyer for 3 years. He majored in Electrical Engineering. He has conducted investigations specializing in cyber terrorism and hacking investigations. His research topics focus on the cybersecurity law of Singapore, the role of the Cyber Security Agency as well as the cooperative relationship between the Cyber Security Agency and the Singapore
Post a Comment
Read more

Critical Infrastructure Defence Exercise (CIDeX) 2022

Image
Critical Infrastructure Defence Exercise (CIDeX) 2022: We were thankful and elevated for the opportunity to support and host the inaugural Critical Infrastructure Defence Exercise (CIDeX) from 15 to 16 November at the National University of Singapore (NUS) School of Computing. The cyber defence exercise involved over 100 participants from the Digital and Intelligence Service (DIS) and 16 other national agencies across the Critical Information Infrastructure (CII) sectors. CIDeX is the largest Operational Technology (OT) Critical Infrastructure defence exercise focused on training and strengthening Whole-Of-Government (WoG) cyber capabilities to detect and tackle cyber security threats to Information Technology (IT) and OT networks that control the operations of critical infrastructure. Read more at: https://www.mindef.gov.sg/web/portal/mindef/news-and-events/latest-releases/article-detail/2022/November/16nov22_nr
Post a Comment
Read more

GreyCTF 2022: Event Summary + Catching Up with the Student Leaders of Greyhats

Image
Early this year in June, NCL and NUS Greyhats had the pleasure of organizing GreyCTF 2022. The event was sponsored by CSA, Guardrails and Ensign Infosecurity. The online qualifiers ran from 6 June to 10 June, while the finals ran from 18 June to 19 June. Over 354 participants took part in the online qualifiers, while 10 local teams fought their way to the finals, held at NUS i4. <Finalists, organisers and sponsors> The event was kicked off with speeches by representatives from sponsors CSA, Guardrails.  Participants were then ushered to their respective allocated meeting rooms and the competition commenced. Following an intensive competition which ended the following day, the winning teams were finalized. All teams gathered for the prize ceremony, where representatives from Ensign Infosecurity closed the event with a motivational speech to all participants. The winners were presented prizes and all participants enjoyed a buffet spread prepared for them. <Ms. Christine W
Post a Comment
Read more