HTB Business CTF 2021 - Compromise
Description
We are certain that our internal network has been breached and the attacker tries to move laterally. We managed to capture some suspicious traffic and create a memory dump from a compromised server. I hope you are skilled enough to bring this incident to its end.
Available Data:
- capture.pcap (network capture of SSH traffic)
- dump.mem (memory dump of a suspicious system)