A writeup of the five Gamer challenges from the 2024 edition of the 0xL4ugh CTF. The challenges required the use of multiple Windows forensics technics to understand an attack delivered via Discord.
A writeup of the Shadow of the Undead hard forensics challenge from Hack The Box's University CTF 2023. As the zombie invasion rages, suspicious activity is detected from the account of the biohazard waste removal team. Let's decrypt some meterpreter traffic and analyze its Windows shellcode...
Playing a role in the organization of the 404 CTF is probably what taught me the most out of all the projects I worked on. One thing that was especially formative during the 2023 In 2023 was a minor security issue we experienced. It was caused by an SSRF vulnerability that was not covered properly by the security measures we had put in place. This article talks in detail about the issue and the fixes we deployed.
A writeup of the four Memdump challenges from the 2023 edition of the HackSecuReims. These challenges mainly involved Volatility, with the small twist that the memory dump was performed on a very recent Debian machine, just after the packaging of the kernel's debug symbols had changed. There was absolutely no documentation online on building Volatility profiles for these Debian versions, meaning one had to really understand the process and not just copy-paste a tutorial.
A writeup of the Keep the steam activated forensics challenge from the 2021 HackTheBox UniCTF qualifiers. It was the forensics challenge rated the most difficult of the CTF, and had the player analyse a network capture to understand how an Active Directory domain had been compromised.
