CTF Writeups

Forensics, malware analysis, incident response, and more from competitions worldwide.

Securinets 2025 — Lost File

CTF Writeup

Ransomware-style challenge requiring memory capture analysis and reverse engineering of an encryption tool to recover a deleted key.

Memory Forensics Reverse Engineering IDA Pro Cryptography
Hard Memory Forensics • Encryption Recovery ⏱️ 3 min read
Read Writeup

Memory Forensics with Volatility 3

Walkthrough

A complete beginner-to-intermediate guide to memory forensics using Volatility 3. Covers installation, essential plugins, process analysis, network artifact extraction, and memory-resident malware hunting.

Memory Forensics Volatility DFIR Malware Analysis
Beginner-Intermediate • ~20 min read ⏱️ 3 min read
Read Writeup

QnQSec 2025 — Masks

CTF Writeup

Tracing a phishing attack chain from initial email delivery in Outlook to scheduled task persistence using Volatility 3 and AmCache forensics.

Memory Forensics Volatility 3 AmCache Incident Response
Medium 8 Questions • Memory Forensics ⏱️ 2 min read
Read Writeup