Lab 6-1 📝 Summary The Chapter 6 labs teach you to identify C code constructs in assembly by analyzing a multi-stage malware sample. Each lab reveals one construct (if → loop → switch → complex)...

Summary Built a full DFIR Attack–Defense Lab using Kali, Windows 10, Splunk, and Sysmon to simulate adversary TTPs (ingress, execution, discovery, persistence, beaconing) and perform log-based d...

Toolkit This lab uses a standard set of tools for advanced static analysis. Tool Type Purpose Typical Usage & Notes PE Studio St...

Toolkit This labs uses a standard set of tools for basic static analysis & basic dynamic analysis. Tool Type Purpose Typical usage / notes ...

Phishing mail analysis EML File Summary summary The email pretends to be from a legitimate source and includes an attachment that, at first glance, appears to be a harmless file (in this case, ...

Salamander Salamander Basic static analysis using strings tool we found We found FLAG{0} & {0_54l4m4nd3r_0} Solution: FLAG{0_54l4m4nd3r_0} Pure Luck Pure Luck About file: Bas...

Crack the Hash Crack the Hash First step we need to analyze this hash. We can use Hash Analyzer where we found it is an MD5 hash. We can decrypt it by using MD5 Decryptor. Solution: Iamthefl...