[HeroCTF 2024] [Forensics 316 – LazySysAdmin #2] Write UpThis challenge is of medium difficulty. You have identified a malicious script that was executed before the computer shut down. A copy of the disk was made, and your task is to investigate the disk to understand the “extent of the damage” caused by the script.
Fingerprint (SHA256): eb135b3db3efe64220753c2b6495cc30bd51a1fa0268d1b7074323c91e872492
Format: HERO{flag} Author: Mallon
Continue reading [HeroCTF 2024] [Forensics 316 – LazySysAdmin #2] Write Up
[Defcamp Quals 2024] [FORENSICS – FORENSICS-DISK] WRITE UPCan you recover the secret inside?
Files : forensics-disk.zip
Continue reading [Defcamp Quals 2024] [FORENSICS – FORENSICS-DISK] WRITE UP
[Ins’Hack 2018] [Forensics 400 – Taking a look inside] Write UpI acquired some information about my PC because I think someone messed up with it…
You can find everything attached.
Please find out what’s wrong about these captures.
Have fun!
Continue reading [Ins’Hack 2018] [Forensics 400 – Taking a look inside] Write Up
[NDH 2018] [Forensics 200 – Where Is My Purse] Write UpHelps an important person to find the content of his numeric purse.
Continue reading [NDH 2018] [Forensics 200 – Where Is My Purse] Write Up
[EasyCTF 2017] [FORENSICS 325 – Decomphose] Write Up