tl;dr

• EV3 Robot pklg analysis
• .RSF file recovery

Write-Up for the “…—…” challenge from InCTF Internationals 2019

tl;dr

1. Alert signals encoded in morse transfered to the Mi-Band
2. Traverse through the packets and find the appropriate BLE handles of the encoded message
3. Decode the morse encoded message

tl;dr

• Decoding the strings found in TCP stream 0.
• Analysing and extracting data sent via different ports of TCP.
• Using character-wise caesar from the extracted data.
• Zip cracking

tl;dr

• Chrome history analysis
• File recovery from the memory dump
• Raw analysis of email content
• Environment variables analysis
• RAR password cracking
• Corrupted file analysis

tl;dr

• Master File Table Analysis
• Deleted file data recovery

tl;dr

1. Analysis of memory dump using Volatility framework.
2. Using mac_contacts plugin to get relevant data.
3. Base64 decode to get flag.

Solved by: stuxn3t

tl;dr

1. Open a raw socket.
2. Craft the outgoing packets with the byte order of S-PORT, D-PORT, SEQ, ACK reversed.
3. Establish the three way handshake in this fashion.
4. Send “GET_FLAG” to the server.

Full solution of Acronym challenge from ISITDTU Quals 2019.
tl;dr - Steganography

tl;dr - Volatility + Corrupted file analysis
Full solution of Easy Husky challenge from ISITDTU Quals 2019.