Alex CTF 2017 Fore3 Write-Up

So this is actually my first USB PCAP analysis challenge. This is one of the most basic challenges and there's a lot to learn from it if you are new to this. USB pcap analysis is a major trend in the current CTFs. So let us get on with the challenge. Challenge Description: One of... Continue Reading →

Advertisements

InCTF 2018 Evil Crypter Writeup

I had a lot of fun organizing this year's CTF. This was also my first time organizing a CTF. Working along with my teammates, for roughly 36hrs, talking to various people in the IRC was a lot of fun. I made two challenges this year EvilCrypter and Winter Sport. I really expected a lot of teams to solve this... Continue Reading →

InCTF 2018 Winter Sport Write-Up

So this is the second challenge Winter Sport which I made for this year's InCTF international round. Challenge Description: Reading the description at first doesn't give any clue on what the challenge is. Now let us take a look at the file given. This is the PDF document that we get. There seems to be... Continue Reading →

SEC-T CTF 2018 Batou Challenge WriteUp

So this is a  challenge which I solved in SECT CTF 2018. This challenge requires the use of tools called volatility and its plugins. Please feel free to read my blog on volatility here. Challenge file can be downloaded from here. The description was: "We managed to collect a dump from Bataou's computer. Try to find info/notes that can help... Continue Reading →

Writing Plugins For Volatility

In this post, I'll be talking about how to write plugins for volatility. The prime advantage with volatility is that it can be extended to any level depending on the needs and interests of the user. This feature of volatility is one of the main reasons why it is used in Incident Response and Malware Analysis. I have done... Continue Reading →

The Volatility Framework

Volatility is a python based command line tool that helps in analyzing virtual memory dumps. It provides a very good way to understand the importance as well as the complexities involved in Memory Forensics. Advantages of using Volatility: Runs on Windows, Linux and Mac It can be executed wherever python environment is present. Uses Fast... Continue Reading →

Basics Of Memory Forensics

What is Volatile Memory? Volatile Memory is the memory used by the system or OS during the time the device is powered on. To put it simply, the data stored in RAM(Random Access Memory) can be called as volatile memory. It is also called the primary memory. So, why do we need to analyze memory? For... Continue Reading →

Powered by WordPress.com.

Up ↑

Create your website at WordPress.com
Get started