Email Forensics Workshop where we solved the last five challenges in Metaspike's 2022 Email Forensics Capture The Flag (CTF) competition. We covered topics such as:
• Investigating MAPI properties
• Leveraging DKIM and ARC
• Exchange EntryID structure
• Investigating IMAP server metadata
• Graph API investigations and OAuth token reuse
• Q&A
📑 Sections
00:00:00 — Introduction
00:01:59 — Q6 - Leprechaun
00:06:18 — Q7 - Burning Ship
00:37:51 — Q8 - Trebuchet
00:52:32 — Q9 - Barrel Roll
01:10:54 — Q10 - Hopper
📚 Other Resources
Blog
https://www.metaspike.com/blog
Community
https://community.metaspike.com
