Practical Linux forensics : a guide for digital investigators /
"A thorough resource for forensic investigators, this book covers a variety of methods and techniques for locating and analyzing digital evidence found on modern Linux systems after a security incident or cyberattack. Readers will learn how Linux works from a digital forensics and investigation...
Saved in:
Main Author: | |
---|---|
Format: | Electronic eBook |
Language: | English |
Published: |
San Francisco :
no starch press,
[2022]
|
Subjects: | |
Online Access: | CONNECT |
Table of Contents:
- Digital forensics overview
- Linux overview
- Extracting evidence from storage devices and filesystems
- Directory layout and forensic analysis of Linux files
- Investigating evidence from Linux log
- Reconstructing system boot and initialization
- Examination of installed software packages
- Identifying network configuration artifacts
- Forensic analysis of time and location
- Reconstructing user desktops and login activity
- Forensic traces of attached peripheral devices
- Closing remarks
- File and directory list for digital investigators.