Tryhackme:Memory Forensics

Introduction:

Perform memory forensics to find the flags. If you are having trouble, maybe check out the volatility room first.

login:

The forensic investigator on-site has performed the initial forensic analysis of John’s computer and handed you the memory dump he generated on the computer. As the secondary forensic investigator, it is up to you to find all the required information in the memory dump.

Analysis:

TrueCrypt:

--

--

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
jagadeesh

jagadeesh

16 Followers

CTF-PLAYER, security analyst, Pentesting, vapt, digital forensics