Magnet Virtual Summit 2020 CTF — Memory

How’s Your Memory? -f memdump.mem imageinfo

Hash Slinging -f memdump.mem --profile=Win7SP1x64 hashdump

Cache Money -f memdump.mem --profile=Win7SP1x64 filescan > filescan.txtcat filescan.txt | grep Chrome | grep -f memdump.mem --profile=Win7SP1x64 dumpfiles -Q 0x000000013fdc56b0 -n -D .

Never Tell Me The Odds…

IgnitionCasino.exe | 3b7ca3bb8d4fb2b6c287d6a247efd7c457937a3e

Compilation Station




Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

Airflow — Custom Plugins

Nearest neighbour with SQL and Python

Unity AR VR — Code Quality and Integrity

The Software Engineering approach in Cross-Platform Programming with Flutter (Part 2)

Software Engineering with Flutter (Part 2)

Building Open Access to NC Campaign Finance Data — The Plan

Learnings from Phoenix Project

Java 9 — Interfaces

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store


More from Medium

TryHackMe: Intro to Malware Analysis [Write-up]

Plan for Cyber Attacks

picoCTF2021:- Transformation writeup

TRY HACK ME: Intro to C2 Write-Up