Hack4S3cur1ty

[OTTERCTF][Memory Forensics] 1 - What the password? 본문

CTFs/2018

[OTTERCTF][Memory Forensics] 1 - What the password?

h4ck4s3cur1ty 2018. 12. 16. 05:01

volatility의 mimikatz플러그인을 이용하여 쉽게 풀 수 있다.



1
2
3
4
5
6
>vol.py -f OtterCTF.vmem --profile=Win7SP1x64 mimikatz
Volatility Foundation Volatility Framework 2.6
Module   User             Domain           Password
-------- ---------------- ---------------- ----------------------------------------
wdigest  Rick             WIN-LO6FAF3DTFE  MortyIsReallyAnOtter
wdigest  WIN-LO6FAF3DTFE$ WORKGROUP
cs


저작자표시

'CTFs > 2018' 카테고리의 다른 글

[OTTERCTF][Memory Forensics] 3 - Play Time  (0) 2018.12.16
[OTTERCTF][Memory Forensics] 2 - General Info  (0) 2018.12.16
[Seccon Beginners 2018][Pwn] condition  (0) 2018.05.28
[Seccon Beginners 2018][MISC] てけいさんえくすとりーむず  (0) 2018.05.28
[Seccon Beginners 2018][Crypto] RSA is Power  (0) 2018.05.28
'CTFs/2018' Related Articles more
Comments