Want to know if your tool detects everything? We will keep track of the embedded secrets in [this issue](https://github.com/commjoen/wrongsecrets/issues/201) and have a [branch](https://github.com/commjoen/wrongsecrets/tree/experiment-bed) in which we put additional secrets for your tool to detect.
214
214
The branch will contain a Docker container generation script using which you can eventually test your container secret scanning.
215
215
216
-
## CTFD Support-Experimental
216
+
## CTFD Support
217
217
218
-
NOTE: CTFD support is experimental, butcanwork based on the [Juiceshop CTF CLI](https://github.com/juice-shop/juice-shop-ctf).
218
+
NOTE: CTFD support is experimental, andnowworks based on the [Juiceshop CTF CLI](https://github.com/juice-shop/juice-shop-ctf).
219
219
NOTE-II: https://wrongsecrets-ctf.herokuapp.com is based on a free heroku instance, which takes time to warm up. Initial creation of the zip file for CTFD requires you to visit [https://wrongsecrets-ctf.herokuapp.com/api/Challenges](https://wrongsecrets-ctf.herokuapp.com/api/Challenges) once before executing the steps below.
220
220
221
221
Follow the following steps:
222
222
223
223
```shell
224
224
npm install -g juice-shop-ctf-cli
225
-
juice-shop-ctf #choose ctfd and https://wrongsecrets-ctf.herokuapp.com as domain. No trailing slash! The key is 'TRwzkRJnHOTckssAeyJbysWgP!Qc2T'
226
-
docker run -p 8001:8000 -it ctfd/ctfd:3.4.3 #configurechallengeandimportthezipfromjuice-shop-ctf
225
+
juice-shop-ctf #choose ctfd and https://wrongsecrets-ctf.herokuapp.com as domain. No trailing slash! The key is 'TRwzkRJnHOTckssAeyJbysWgP!Qc2T',feelfreetoenablehints.Wedonotsupportsnippetsorlinks/urlstocodeorhints.
226
+
docker run -p 8001:8000 -it ctfd/ctfd:3.4.3
227
227
```
228
228
229
+
Now visit the CTFD instance at [http://localhost:8001](http://localhost:8001) and setup your CTF. Then use the administrative backup function to import the zipfile you created with the juice-shop-ctf command.
229
230
Game on using [https://wrongsecrets-ctf.herokuapp.com](https://wrongsecrets-ctf.herokuapp.com) !
230
-
Want to setup your own? You can!
231
+
Want to setup your own? You can! Watch out for people finding your key though, so secure it properly: make sure the running container with the actual ctf-key is not exposed to the audience, similar to our heroku container.