armctf is a project that provides downloadable vulnerable virtual machines, rebuilt from amd64 to arm64. it's for users to practice ctf challenges on arm-based systems.
vulnerable machines are sourced from vulnhub, hackmyvm and vulnyx. that's why full credit goes to the original creators.
a week ago, a friend asked me if he can find vulnhub-like machines to import and solve on his macbook with m series chip. a few days later i thought about:
1- not everyone wants to/should pay paid services to solve ctfs. vulnhub, hackmyvm and vulnyx are great resources.
2- not everyone uses windows systems.
3- utm'ing is much hassle.
4- there is no good solution for this. (afaik)
5- i already have macbook with m series chip.
so i decided to do it as a side project.
don't expect ctfs to be 1:1 in arm64 rebuild. expect some changes, especially suid binaries. some struggles and why they're not included:
1- buffer overflows
differ from x86.
2- binary exploits
need source code, which is not possible.
3- kernel exploits
vmware fusion is not supporting linux kernels below 4.idontremember.0. best i can offer something like dirtypipe (cve-2022-0847), copyfail (cve-2026-31431), dirtyfrag (cve-2026-43284, cve-2026-43500) which are available for kernel version 5.10.46-4.
4- most of cves
no arm version, no party.
5- windows machines
didn't even tried windows arm, but will do a research about it.
all vms has 2 cpu and 2 ram configuration. you can lower these if you are out of resources.
downloads handled by nextcloud at germany server and ctfmirror at canada server. both servers are mine and download urls given as direct links.
if you can't reach nextcloud, you're either banned by nextcloud or i'm doing some maintenance. mail me if problem persists.
ctfs are prepared on vmware fusion, so sticking with it is a good idea.
let's say, you downloaded driftingblues3.7z to emre folder.
double click it to extract. (or 7z x driftingblues3.7z)
there is now armctf.vmwarevm machine folder. its name is armctf.vmwarevm because it's a template, which i build machines on original snapshot.
open vmware fusion. follow file > open or command + o. browse your freshly extracted armctf.vmwarevm and open it. after importing, library entry is added.
before starting the vm, don't forget to configure network. nat, cable bridge or wifi bridge.. your choice.
let's roll!
since rebuilding ctfs are taking a lot of time, i'm actively seeking your help to expand this project.
if you decided to help, you can find base images below. root password is asd.
debian 12 (kernel version 6.1.174-1)
direct link: https://nc.zurrak.com/public.php/dav/files/CRrq4QDcej3Mazd
sha256 checksum: 4b86f1d002b40f8f3dc717aa3097bb13420a5e61b067c738cf9005ca7ca456f5
debian 11 (kernel version 5.10.46-4) >>> it's for ctfs that has kernel exploiting step
direct link: https://nc.zurrak.com/public.php/dav/files/pqxYTyTcrTf8jmi
sha256 checksum: 9d57faa1b4b3c6173bab32a4d999e37200804c59582ff99f27d2af72e8840b60
you can always contact me from here.