7RedViolin Blog

DFIR Thoughts & CTF Writeups

Powered by Jekyll — Theme by BDHU

KringleCon 4: Four Calling Birds WriteUp - Kerberoasting on an Open Fire

Posted: Jan 26, 2022 | ~ 6 mins read time
#active-directory #ctf #kringlecon-2021
No MFA, weak passwords, and shell escapes - what could possibly go wrong?

KringleCon 4: Four Calling Birds WriteUp - Now Hiring!

Posted: Jan 22, 2022 | ~ 1 min read time
#aws #ctf #kringlecon-2021 #web
Web testing and SSRF

KringleCon 4: Four Calling Birds WriteUp - FPGA Programming

Posted: Jan 22, 2022 | ~ 4 mins read time
#ctf #iot #kringlecon-2021
Frequency changing via FPGA programming

KringleCon 4: Four Calling Birds WriteUp - Customer Complaint Analysis

Posted: Jan 22, 2022 | ~ 1 min read time
#ctf #kringlecon-2021 #network #wireshark
How to search a PCAP via wireshark

KringleCon 4: Four Calling Birds WriteUp - Splunk

Posted: Jan 14, 2022 | ~ 5 mins read time
#ctf #kringlecon-2021 #splunk
Dashing through the logs

KringleCon 4: Four Calling Birds WriteUp - Shellcode Primer

Posted: Jan 14, 2022 | ~ 3 mins read time
#assembly #ctf #kringlecon-2021 #shellcode
How to read and write the contents of a file via shellcode

KringleCon 4: Four Calling Birds WriteUp - Printer Exploitation

Posted: Jan 14, 2022 | ~ 2 mins read time
#cryptography #ctf #kringlecon-2021
If you have unauthenticated access to upload firmware updates to a printer, what could possibly go wrong?

KringleCon 4: Four Calling Birds WriteUp - WiFi Dongle & Thermostat

Posted: Jan 13, 2022 | ~ 1 min read time
#api #ctf #kringlecon-2021 #wifi
An intro to WiFi and API stuff

KringleCon 4: Four Calling Birds WriteUp - Slot Machine Investigation

Posted: Jan 13, 2022 | ~ 1 min read time
#ctf #kringlecon-2021 #web
Can we beat the odds at a slot machine?

KringleCon 4: Four Calling Birds WriteUp - Greppin' for Gold

Posted: Jan 13, 2022 | ~ 3 mins read time
#ctf #kringlecon-2021
Searching and aggregating logs in the command line