Tag feed

#memory-forensics

17 posts1 followers

Explore Hashnode

Alternatives

Trending tags this week

TATameem Amjadlabsx.hashnode.devJun 15 · 10 min read

KG Distribution

I Solved 13Cubed's KG Distribution Memory Forensics Lab - Here's the Full Walkthrough Hunting a Sliver C2 implant through a VMware memory dump with MemProcFS, one artifact at a time. The two memory

0

CCwrwcwrw.hashnode.devJan 7 · 11 min read

Sherlock Scenario:Upon completing the server recovery process, the IR team uncovered a labyrinth of persistent traffic, surreptitious communications, and resilient processes that eluded our terminatio

0

NSNull Sirynctfs.hashnode.devJan 1 · 6 min read

Syndiware CTF Writeup: Python Ransomware & Memory Forensics

Challenge Description Category: ForensicsAuthor: a_person9852 The Krampus Syndicate has never been subtle, but their newest initiative, codenamed Syndiware, might be their boldest misstep yet. Designed as a "consumer-friendly malware suite," Syndiwar...

0

HGHardik Garghardik-garg.hashnode.devSep 14, 2025 · 3 min read

Hidden Process Detection with Volatility: Uncovering Threats in Memory Forensics

🔹 Introduction In the world of cybersecurity, attackers often use stealthy techniques to hide malicious processes from system monitors. Traditional antivirus tools may fail to detect them, which is why memory forensics is critical. This blog explain...

0

DADice Algorithmsdalgorithms.hashnode.devJul 20, 2025 · 3 min read

Memory as a Form of Afterlife

There is something about memory that resists death. Not in defiance, but in continuation — as if the mind, even when no longer tethered to breath or heartbeat, still leaves footprints across the terrain of those it touched. I’ve often wondered if mem...

0

Pproxydomproxydom.hashnode.devJun 30, 2025 · 5 min read

Executing ELF Binaries From Memory Without Touching The Disk

Disclaimer: This article is intended for educational purposes only. The techniques shown below are designed to deepen understanding of ELF execution, in-memory operations, and post-exploitation methodologies on Linux systems. Use responsibly and don’...

0

KMkanishkar mathidfirpro.inMay 17, 2025 · 3 min read

RAM Forensics Simplified: A Guide to Using Magnet DumpIt

Memory forensics plays a critical role in cybersecurity investigations. Live memory can contain vital evidence such as running processes, open connections, decrypted malware, and user credentials. In this blog, we’ll cover how to create a memory dump...

0

CCwrwcwrw.hashnode.devMar 29, 2025 · 12 min read

HTB Sherlock: APTNightmare

Sherlock Scenario:We neglected to prioritize the robust security of our network and servers, and as a result, both our organization and our customers have fallen victim to a cyber attack. The origin a

0

SSathyasathya-k.hashnode.devDec 29, 2024 · 13 min read

How to Read and Interact with Your System's RAM Data

INTRODUCTION Our computer's Random Access Memory (RAM) is more than just a temporary storage space it's the beating heart of our system’s performance. From running applications to holding crucial data for active processes, RAM plays a central role in...

0

KLKim Lillåsowningmymistakes.hashnode.devJan 30, 2024 · 2 min read

Yes, you can damage flash memory

I have been writing a driver and hooking up LittleFs to an external SPI connected flash memory, W25Q32BV from Winbond with 32Mbit of memory with 1024 erasable sectors. It worked well, I could write and read data and the file system was working just f...

0

#memory-forensics

Search Hashnode

#memory-forensics

Explore Hashnode

Trending tags this week

KG Distribution

HTB Sherlock: APTNightmare2

Syndiware CTF Writeup: Python Ransomware & Memory Forensics

Hidden Process Detection with Volatility: Uncovering Threats in Memory Forensics

Memory as a Form of Afterlife

Executing ELF Binaries From Memory Without Touching The Disk

RAM Forensics Simplified: A Guide to Using Magnet DumpIt

HTB Sherlock: APTNightmare

How to Read and Interact with Your System's RAM Data

Yes, you can damage flash memory