9(-_-9)

Six new challenges have been added to DFIR LABS, focused on complex malware analysis, high-fidelity threat hunting and advanced DFIR investigation. Designed to push your expertise. If you haven’t explored DFIR LABS yet, now is the time! github.com/Azr43lKn1ght/D…

New insane challenge: Android FBE-encrypted disk - extract masterkeys from cold booted kernel memory, decrypt userdata, analyze post-exploitation artifacts, C2 activity, and ransomware analysis. If you haven’t explored DFIR LABS yet, now is the time! github.com/Azr43lKn1ght/D…

When stepping into DFIR LABS, don’t miss my latest challenge — Kage no Nazo. Just added, and waiting to be unraveled.

Introducing VolExoPass - Volatility 3 plugin that extracts potential Exodus Wallet passphrases. It analyzes process VAD to recover passphrases along with their VAD allocation address, passphrase memory location, and PID. github.com/Azr43lKn1ght/V… #volatility3

Introducing DFIR Labs: A 24-challenge series by internationally acclaimed CTF authors, tailored for professionals, researchers and students. Master DFIR, Malware Analysis and Threat Hunting through challenges designed to push your expertise to new heights github.com/Azr43lKn1ght/D…

Introducing Rust-ProcHollow: a sophisticated and efficient implementation of process hollowing now in Rust ! Complete with support for Portable Executable (PE) relocation. github.com/Azr43lKn1ght/R… #Rust #Malware #Maldev #OffensiveRust #Windows

Happy to share that we clinched 1st place at #niteCTF24 this past weekend! 🏆 A big thank you to the organizers #cryptonite for a great event and congratulations to all participating teams. #teambi0s #CTF

Coauthored an article for @SANSInstitute with my friend Abdelrhman on "Analysis of Virtual Address Descriptors" for hunting malwares, ransomware keys, notepad abuse/data recovery and detailed windows internals of a process and its memory structure. sans.org/blog/the-analy…

I had fun authoring 3 DFIR challenges for International Cybersecurity Challenge Edition III, Chile which went unsolved at the end of the CTF, 2 Challenges with @j0hith @sp3p3x @mspr75 @hrippix_ and 1 solo. Also Congratulations Team Europe for the victory #ICC #IC3

Just Published a tool to parse Ext4 File System of Android and Linux. it can File System, Superblock, Group Descriptor, inode, xattr, Directory, Blocks, Extent and hashtree informations. Just have to extend parsing journal and decrypting Android FBE. github.com/Azr43lKn1ght/e…

A really good post on the basic's of Win Internals and deeper

Start from the ground up! Learn the fundamentals of x86 assembly in my latest blog post, where I lay the groundwork for you to become a master of Malware Analysis! Second post in Malware Development, Analysis and DFIR series out azr43lkn1ght.github.io/Malware%20Deve… #MalwareAnalysis #DFIR #RE

Recruitment for upcoming freshers is now open! Click here to get started: join.bi0s.in *Note*: Recruitment is open only to freshers joining Amrita University, Amritapuri. #recruitment #Cybersecurity #CTF #Security #teambi0s

Investigating and analyzing various Malwares like rootkit, ransomware, c2 and more. here is our writeup for the fourth challenge in Batman Investigation Series from bi0sctf 2024! @sp3p3x @j0hith @mspr75 blog.bi0s.in/2024/04/17/For… #dfir #malwareanalysis #windows #forensics

A new blog series about Malware Development, Malware Analysis, DFIR focusing on windows. Roadway for DFIR beginner to a Advanced! azr43lkn1ght.github.io/Malware%20Deve… #dfir #malwareanalysis #incidentresponse #malware #windowsdfir #malwaredevelopment

Investigating and analyzing various Malwares like rootkit, ransomware, c2 and more. here is our writeup for the fourth challenge in Batman Investigation Series from bi0sctf 2024! @sp3p3x @j0hith @mspr75 azr43lkn1ght.github.io/Batman%20Inves… #dfir #malwareanalysis

Here's my write-up for the second challenge of Batman Investigation Series in bi0sCTF 2024 blog.bi0s.in/2024/02/27/For… #dfir #malwareanalysis #bi0sctf2024 #blockchainforensics #memoryforensics #macforensics #incidentresponse

#bi0sctf 2024 has officially ended! Congrats to the winners: 1. @thehackerscrew1 2. @r3kapig 3. @FlatNetworkOrg We hope you enjoyed the challenges this edition, and hope to see everyone again for bi0sCTF 2025! Please do leave your feedback at ctftime.org/event/2117

Our DFIR team won first prize in The International Digital Forensics Challenge (DFC) 2023, organized by @KIISC_DFR @Azr43lKn1ght , @5h4rrK , @sp3p3x and @j0hith were invited to present at the DFRF ceremony in Seoul, South Korea. Thank you @KIISC_DFR for this opportunity.