SEARCH
TOOLBOX
LANGUAGES
Difference between revisions of "Linux Forensics Workshop"

Difference between revisions of "Linux Forensics Workshop"

From BruCON 2016

Jump to: navigation, search
(Created page with "This hands-on workshop is a rapid introduction to key artefacts and techniques for investigating compromised Linux systems using Linux tools. Part 1 covers collecting and ana...")
 
(No difference)

Latest revision as of 23:29, 26 August 2014

This hands-on workshop is a rapid introduction to key artefacts and techniques for investigating compromised Linux systems using Linux tools. Part 1 covers collecting and analyzing disk and memory evidence, showing you where to look and introducing tools every investigator should know. Part 2 is a deep-dive into the Linux EXT file system family, including recovery of deleted data and data from damaged file systems.

Retrieved from "http://2016.brucon.org/index.php?title=Linux_Forensics_Workshop&oldid=4646"