Staff Analyst, Unit 42 MDR @ Palo Alto Networks | GCFA | GREM | DFIR | Author - MemLabs | Ex-Captain Team bi0s | GIAC Advisory Board
Another CTF challenge on #HackTheBox Sherlock series which involves parsing artefacts from a KAPE extract. If you're looking to analyze Sysmon events recorded in Windows Event log then this is a good challenge. #CTFs #DFIR