Tag feed

#btlo

2 posts0 followers

SSolvenitesolvenite.hashnode.dev

Malicious Powershell Analysis | BTLO Writeup

Jan 2 · 2 min read · Decrypting PS script: First things first, before starting our analysis, we’re supposed to decrypt the powershell command that has been given to us in our challenge question. Naturally, I tried using Base64 and Base85 but that didnt seem to work. I t...

Join discussion

SSolvenitesolvenite.hashnode.dev

0

Network Analysis - Web Shell | BTLO Writeup

Sep 15, 2025 · 2 min read · Questions: What is the IP responsible for conducting the port scan activity? For this, we can use the command tcp.flags.syn ==1 and tcp.flags.ack == 0 on our Wireshark search filter to figure out the answer. This is to give us results only with the...

Join discussion

#btlo

Search Hashnode

#btlo

Malicious Powershell Analysis | BTLO Writeup

Network Analysis - Web Shell | BTLO Writeup