Category Archives: Network Analytics

Ringzer0team – Forensics Challenge 35 – Poor internet connection

Posted on June 2, 2017 by HatsOffSecurity

This writeup is to explain how to get the answer (flag) to the Forensic Challenge named “Poor Internet Connection” I will not be posting the flag here as I am giving you all of the instructions to get it yourself! … Continue reading →

Posted in Competitions, Cyber, Network Analytics, Network Forensics, PCAP Analysis | Tagged file carving, hats off security, hex, Network Forensics, PCAP, pcap carving, Wireshark | 1 Comment

TTLs and where to find them

Posted on March 11, 2017 by HatsOffSecurity

Recently I have been conducted a lot of interviews for SOC Analysts; one of the questions I ask is as follows: You are reviewing your DNS logs and find an answer to a DNS query which shows rabbitcoldhotel.evil.com on <AnyExternalIP> … Continue reading →

Posted in Network Analytics, Network Forensics | Tagged basics, hats off security, Interview Questions, Network Forensics, SOC Analyst | 2 Comments

M	T	W	T	F	S	S
				1	2	3
4	5	6	7	8	9	10
11	12	13	14	15	16	17
18	19	20	21	22	23	24
25	26	27	28	29	30	31

	Week 13 – 2022… on Improving Technical Interviews
	HatsOffSecurity on AnyDesk Forensic Analysis and…
	Alex on AnyDesk Forensic Analysis and…
	Week 10 – 2022… on AnyDesk Forensic Analysis and…
	Kunal on Force Enabling ReadyBoost Wind…

Category Archives: Network Analytics

Ringzer0team – Forensics Challenge 35 – Poor internet connection

TTLs and where to find them

Recent Posts

Categories

CyberLinks

Recent Posts

Recent Comments

Archives

Categories

Meta