After engaging with the first image from the DefCon 2018 CTF, I thought it would be fun, and instructive, to take a look at the second image in the CTF, the File Server.As before, not having signed up for the CTF itself, I found the questions … [Continue Reading]
DefCon 2018 CTF Plus
I don't often engage in CTFs. Yes, they're fun, but even when an effort is made to have various aspects or stages be representative of real-world use cases, overall, they don't tend to hit the mark. I've done some of the various challenges, and once … [Continue Reading]
Deep Knowledge, and the Pursuit Thereof
When IR was largely DF-related work, relatively few in the industry held deep knowledge of artifacts. Over the years, IR has moved from "image all the things" to "find and image the impacted systems" to "let's deploy an enterprise agent or sensor … [Continue Reading]