Forensics Challenge for CSIRT Team - Part 2 Solution

The goal of the tutorial is to provide a solution to the forensic challenge game that I created for testing forensic skills of CSIRT team. Please be careful and run a suspicious binary file located inside a provided virtual machine only in a secured environment in order to avoid unwanted damage or loss. As you can notice, some files are […]
Continue reading…

 

Forensics Challenge for CSIRT Team - Part 1 Assignment

I have created a virtual machine that you can use to test your forensics analysis skills. Please, download the VM, solve an assignment below and share solutions with us. 1. Assignment Your are a member of the elite CSIRT team which is responsible for dealing with computer security incidents in your jurisdiction. You are asked to investigate a server that was […]
Continue reading…

 

Forensic Lab Game Zero - Level 2 Results

Below are my solutions to the level 2 of the forensics lab game zero. The solutions to  the level 1 of the game are posted here. 1. Find way to reset root’s account password and retrieve flag from /root/flag.txt Reboot the VM and press ‘e ‘ edit inside the Grub menu screen. Add command init=/bin/bash at the end of the line […]
Continue reading…

 

Forensic Lab Game Zero - Level 1 Results

The goal of the post is to provide solutions for the first level of the game for “hackers” created by forensic lab of CESNET association. With this game CESNET introduces a work of forensic analysts and test your knowledge of Linux OS. They are several assignments and practical tasks included inside Debian image which is available for download […]
Continue reading…