https://b1872f9d.camati-site.pages.dev/tags/htb/ Recent content in htb on Hugo -- gohugo.io en-us Sun, 19 Apr 2026 17:36:49 -0300 https://b1872f9d.camati-site.pages.dev/posts/case-study-08/ Sun, 19 Apr 2026 17:36:49 -0300 https://b1872f9d.camati-site.pages.dev/posts/case-study-08/ Holmes 2025 5: The Payload Write-up Description This is my write-up for the Sherlock Challange completed on 04/12 in the HTB challanges, bellow are my answers for the challange and how i got each flag. Goal Analyze a stealthy malware sample that silently propagates across systems. Your task is to uncover its hidden logic, understand how it maintains persistence, and reveal the secret it’s designed to protect. Scenario With the malware extracted, Holmes inspects its logic. https://b1872f9d.camati-site.pages.dev/posts/case-study-07/ Sat, 28 Mar 2026 15:12:59 -0300 https://b1872f9d.camati-site.pages.dev/posts/case-study-07/ Introduction In this blog post I will show how I solved the Sherlocks Hijacked challenge in HTB about DFIR1 and mobile malware (android). The description of the challenge is the following: A S1rBank client reported unauthorized transactions. The victim received an SMS urging a banking app update via a link, which installed a dormant app mimicking the bank’s official version. Once activated, it stole credentials, bypassed 2FA via SMS interception, and exfiltrated data. https://b1872f9d.camati-site.pages.dev/posts/case-study-06/ Sat, 27 Dec 2025 09:19:28 -0300 https://b1872f9d.camati-site.pages.dev/posts/case-study-06/ HackTheBox Hijacked Challenge - Sherlocks forensics Introduction In this blog post I will show how I solved the Sherlocks Hijacked challenge in HTB about DFIR1 and memory forensics. The description of the challenge is the following: Happy Grunwald, the CEO of Forela, decided to expand the company’s business in Lahore, Pakistan, and brought along his IT Administrator, Alonzo Spire, to help set up the new office and ensure the company’s IT infrastructure was running smoothly. https://b1872f9d.camati-site.pages.dev/posts/case-study-05/ Sat, 27 Sep 2025 20:21:34 -0300 https://b1872f9d.camati-site.pages.dev/posts/case-study-05/ HackTheBox CrewCrow Challenge - Sherlocks forensics Introduction In this blog post I will show how I solved the Sherlocks CrewCrow challange in HTB about DFIR1, cryptography and Zoom app enumeration. The description of the challenge is the following: The Cyber Crime Investigation Unit (CCIU) has been tracking a famous cybercriminal organization known as “CrewCrow” for several years. The group is responsible for numerous high-profile cyber-attacks, targeting financial institutions, government agencies, and private corporations worldwide.