Why Volatility 3 Refuses to Read a Windows Sandbox Memory Dump2026-06-20A debugging rabbit hole on symbols, ISF, and why WDAG memory dumps break Volatility 3 even when everything "should" work
Recovering Text from a Ricoh RPCS Print Job - ICC Tokyo 20252026-06-13Recovering a flag from a proprietary Ricoh RPCS print stream by reverse engineering undocumented bitmap chunk format and CCITT Group 4 decompression.
Your Home Screen Could Be a Backdoor: Static Analysis of the Advan X1's Default Launcher2026-05-31Static Analysis of the Advan X1 Default Launcher
Reconstructing an APT Intrusion from a Single Minidump - Bad OPSEC Write-up2025-12-29Cyber Jawara National 2025 [CSIRT] qualification Write Up for Bad OPSEC Challenge
Chrome Extension Forensic and Harmful Shellcode Simulation - INTECHFEST 20252025-11-22This is the proof of concept of "Interesting", the challenge which i created for INTECHFEST 2025
Recovering Deleted Files from NTFS $MFT: Resident-File, ICC Tokyo 20252025-11-20Walktrough of Resident-File Challenge from ICC Tokyo 2025
Analysis of PyArmor-Obfuscated Python Malware Without Deobfuscating the Source - ITSEC CTF 2025, Operation: Baby-Step2025-08-11ITSEC CTF 2025 Write-Up - ITSEC
Windows Sandbox Memory Dump Analysis - Cyber Jawara National 2024 Final Round2025-05-04Proof-of-Concept of a challenge I crafted for the Cyber Jawara National 2024 Final Round
BreachCTF 2025 - Onions Make Me Cry :(2025-04-06Onions Make Me Cry :( challenge writeup from BreachCTF 2025
ARA 6.0 CTF Qualification - Writeup2025-02-10ARA 6.0 Qualification Write Up - Sepuluh November Institute of Technology
Leveraging Prefetch Files in Memory Forensics | SNI CTF 2024 - pf-ing2025-02-05How prefetch files help uncover malicious activity that volatile memory alone cannot reveal - a challenge I designed for SNI CTF 2024.
Cyber Jawara National 2024 Qualification - Forensic Writeup2025-01-13All Forensic Write Up on Cyber Jawara National 2024 Qualification
COMPFEST 16 CTF 2024 Qual & Final - Forensic Writeup2025-01-08All Forensic Write Up on COMPFEST 16 CTF 2024
X Window System Protocol (X11) Analysis, Parsing the Graphical Packets - NETCOMP 3.02025-01-07X11 Protocol Challenge on NETCOMP 3.0 Qualification
HackTheBox University CTF 2024 - Forensic Writeup2024-12-173/4 Forensic Write Up on HackTheBox University CTF 2024
Cyber Jawara International 2024 - Forensic Writeup2024-12-16All Forensic Write Up on Cyber Jawara International 2024
Gemastik Qualification 2024 - Ruze Writeup2024-10-02Gemastik Qualification 2024 Ruze Forensic Write Up