PicoCTF - Sleuthkit Intro

26 Sep 2022 picoCTF

Challenge

Description

Description Download the disk image and use mmls on it to find the size of the Linux partition. Connect to the remote checker service to check your answer and get the flag. Note: if you are using the webshell, download and extract the disk image into /tmpnot your home directory.

Download disk image
Access checker program: nc saturn.picoctf.net 52279

Prereguisite

mmls, which is a tool of sleuthkit used to display the partition layout of a volume system (partition tables).

Writeup

Download the file.

    
 wget https://artifacts.picoctf.net/c/114/disk.img.gz

Unzip.
```
    
 gzip -d disk.img.gz
    
```
Display the partition layout of a volume system (partition tables).
```
    
 mmls disk.img
    
```
nc saturn.picoctf.net 52279 and input 202752.
Here’s flag ! picoCTF{mm15_f7w!} ٩(^ᴗ^)۶

Archive

solidity picoCTF Go ethernaut linux leetcode blockchain array sql react leetcode-top-interview medium typescript smart-contract two-pointer solana javascript java ethereum easy docker css Linux zsh ubuntu next.js jekyll http hardhat golang ethers Secureum Rust web wallet vscode typeorm truffle stack shell rpc notion notes nodejs nextjs mocha html go github git geth filesystem express eslint cloudflare Vim DSA

Wei's

PicoCTF - Sleuthkit Intro

Challenge

Tags

Description

Prereguisite

Writeup

Archive

Wei's

PicoCTF - Sleuthkit Intro

Challenge

Tags

Description

Prereguisite

Writeup

Related posts

Docker - Fail to do request (network) 29 Oct 2025

Open vscode with command code 21 Oct 2025

Go build binary failed - pull from private failed 12 Aug 2025

Archive