2014 CSAW Qualifying CTF - Forensics 100

Written by: Justin G.

This challenge was pretty easy. You are given a Firefox memory file, firefox.mem.zip, after unzipping the file you are left with a 400 megabyte file.

My solution was to open the file up in a hex editor and just search for the string "flag{".

flag{cd69b4957f06cd818d7bf3d61980e291}

TALK TO US