bi0s
  •  Home
  •  Categories
  •  Archives
  •  Home
  •  Categories
  •  Archives

Find My Pass - HackTM CTF Quals 2020

stuxn3t
2020-02-09
Forensics / Memory

tl;dr

  • Memory dump analysis using Volatility.
  • Extracting Keepass Master Password from the memory.
  • Extracting flag from ZIP archive attached in the Keepass database.
Read More
Windows Memory Analysis HackTM

Notch It Up - InCTF Internationals 2019

stuxn3t
2019-09-24
Forensics / Memory

tl;dr

  • Chrome history analysis
  • File recovery from the memory dump
  • Raw analysis of email content
  • Environment variables analysis
  • RAR password cracking
  • Corrupted file analysis
Read More
Windows Memory Analysis InCTFi Volatility

Just Do It - InCTF Internationals 2019

stuxn3t
2019-09-24
Forensics / Memory

tl;dr

  • Master File Table Analysis
  • Deleted file data recovery
Read More
Windows Memory Analysis InCTFi Volatility

Easy Husky - ISITDTU Quals 2019

stuxn3t
2019-07-08
Forensics / Memory

tl;dr - Volatility + Corrupted file analysis
Full solution of Easy Husky challenge from ISITDTU Quals 2019.

Read More
Windows Memory Analysis

Official blog of team bi0s

  Find us on
  •   bi0s
    (Homepage)
  •   CTFtime
    (bi0s)
  •   Twitter
    (@teambi0s)
  •   GitHub
    (/teambi0s)
  •   Facebook
    (/teambi0s)
  •   LinkedIn
    (/bi0s)
  Categories
  • Crypto
    (11)
  • Authenticated-Ciphers
    (1)
  • Block-Ciphers
    (1)
  • Digital-Signatures
    (2)
  • Elliptic-Curves
    (2)
  • Linear
    (1)
  • PRNG
    (1)
  • PubKey-Enc
    (2)
  • Forensics
    (13)
  • Disk
    (1)
  • Memory
    (5)
  • Network
    (5)
  • Registry
    (1)
  • Steganography
    (1)
  • Hardware
    (1)
  • Misc
    (1)
  • Linux
    (1)
  • ELF
    (1)
  • Pwn
    (11)
  • Browser-Exploitation
    (2)
  • Kernel-Exploitation
    (1)
  • Linux
    (1)
  • ELF
    (1)
  • VM-Escape
    (1)
  • Windows
    (1)
  • Reversing
    (5)
  • Automation
    (1)
  • Linux
    (3)
  • Windows
    (1)
  • Web
    (6)
  Tags
35c3 AES-CTR Automation BLE Badge Life BitFlipping BugBounty CTF CTRmode CVE-Writeups Coppersmith CustomTCP DLP Defenit ECDLP EV3 Robot ElGamal Euler Exploitation Gauss GoogleCTF Gopherus HITCON Hack.lu HackTM Handlebars template injection Hardware Badge HenselLifting InCTFi IoT JIT Kernel Exploitation Linux Linux Reversing MacOS Memory Analysis Matrix Morse Code NumberTheory OOB PHP PIL PRNG Plaid PohligHellman PolynomialRing Privilege-Escalation PublicKeyCrypto Pwn RAID Recovery RBF RSA Race Condition Reversing SSRF Ssti Steganography Stego Symlink VM VM-Escape Volatility Windows Windows Memory Analysis Windows Registry Analysis Wireshark Write-up Writeup YAML Zip Slip disable_functions fuzzer pwn spidermonkey writeup
  Projects
  •   bi0s-wargame
    (Unraveling)
  •   bi0s-wiki
    (Free Encyclopedia)
  •   InCTF
    (bi0s CTF)

Made With Love and Coffee



Blog content follows the Attribution-NonCommercial-ShareAlike 4.0 International (CC BY-NC-SA 4.0) License

Use Material X as theme, total visits times.