HFS+ Header trivia
In the wee hours of Friday night, just as I was tucked in and toasty, Magnet Weekly CTF dropped a 10 point trivia question. I jumped to answer it like a kid ...
Recent posts
Get top tweeting usernames based on hashtag
I was thinking about the Magnet Weekly Forensics CTF Challenge. There are a few ways to get points: answering the CTF question, trivia, and posting on social...
Magnet CTF Week 1 - Timestamps of doom
Magnet Forensics is running a weekly forensic CTF. More information can be found on their blog. It is a fun way to practice, so let’s get to it!
Hex editors and data structures
A student sent a question about hex editors. Hex editors are often used in forensics to view and analyze data. Viewing data in hexadecimal (hex) instead of r...
Detecting manual clock modifications
I received a question from an aspiring forensic investigator taking the Intro to Digital Forensics course.