Rating: 0 out of 5 stars
0 ratings
Ebook193 pages4 hours
UNIX and Linux Forensic Analysis DVD Toolkit
By Chris Pogue, Cory Altheide and Todd Haverkos
Rating: 0 out of 5 stars
()
About this ebook
This book addresses topics in the area of forensic analysis of systems running on variants of the UNIX operating system, which is the choice of hackers for their attack platforms. According to a 2007 IDC report, UNIX servers account for the second-largest segment of spending (behind Windows) in the worldwide server market with $4.2 billion in 2Q07, representing 31.7% of corporate server spending. UNIX systems have not been analyzed to any significant depth largely due to a lack of understanding on the part of the investigator, an understanding and knowledge base that has been achieved by the attacker.
The book begins with a chapter to describe why and how the book was written, and for whom, and then immediately begins addressing the issues of live response (volatile) data collection and analysis. The book continues by addressing issues of collecting and analyzing the contents of physical memory (i.e., RAM). The following chapters address /proc analysis, revealing the wealth of significant evidence, and analysis of files created by or on UNIX systems. Then the book addresses the underground world of UNIX hacking and reveals methods and techniques used by hackers, malware coders, and anti-forensic developers. The book then illustrates to the investigator how to analyze these files and extract the information they need to perform a comprehensive forensic analysis. The final chapter includes a detailed discussion of loadable kernel Modules and malware.
Throughout the book the author provides a wealth of unique information, providing tools, techniques and information that won't be found anywhere else.
- This book contains information about UNIX forensic analysis that is not available anywhere else. Much of the information is a result of the author's own unique research and work.
- The authors have the combined experience of law enforcement, military, and corporate forensics. This unique perspective makes this book attractive to all forensic investigators.
Author
Chris Pogue
Chris Pogue has spent the past five years as part of the IBM Ethical Hacking Team. He was tasked with emulating the actions of an actual malicious attacker with the intention of assisting customers to identify and eliminate probable attack vectors. Chris has worked on over 3000 exploitation attempts for both internal IBM systems as well as third party customers. Chris is also a former US Army Warrant Officer and has worked with the Army Reserve Information Operations Command (ARIOC) on Joint Task Force (JTF) missions with the National Security Agency (NSA), Department of Homeland Security, Regional Computer Emergency Response Team-Continental United States (RCERT-CONUS), and the Joint Intelligence Center-Pacific (JICPAC). Chris attended Forensics training at Carnegie Mellon University in Pittsburgh, Pennsylvania, and holds a Master’s degree in Information Security. He is a Certified Information Systems Security Professional (CISSP) and a Certified Ethical Hacker (CEH). Chris also holds a Top Secret (TS) security clearance from the Department of Defense.
Related to UNIX and Linux Forensic Analysis DVD Toolkit
Related ebooks
Thor's Microsoft Security Bible: A Collection of Practical Security Techniques Deploying Citrix MetaFrame Presentation Server 3.0 with Windows Server 2003 Terminal Services Rating: 0 out of 5 stars0 ratingsMaking Passwords Secure Rating: 0 out of 5 stars0 ratingsPython Passive Network Mapping: P2NMAP Rating: 4 out of 5 stars4/5XBOX 360 Forensics: A Digital Forensics Guide to Examining Artifacts Rating: 4 out of 5 stars4/5Executing Windows Command Line Investigations: While Ensuring Evidentiary Integrity Rating: 0 out of 5 stars0 ratingsHow to Cheat at Designing a Windows Server 2003 Active Directory Infrastructure Rating: 0 out of 5 stars0 ratingsCEH v9: Certified Ethical Hacker Version 9 Practice Tests Rating: 0 out of 5 stars0 ratingsPlacing the Suspect Behind the Keyboard: Using Digital Forensics and Investigative Techniques to Identify Cybercrime Suspects Rating: 0 out of 5 stars0 ratingsHow to Cheat at Securing a Wireless Network Rating: 2 out of 5 stars2/5Malware Forensics Field Guide for Windows Systems: Digital Forensics Field Guides Rating: 4 out of 5 stars4/5Snort Intrusion Detection 2.0 Rating: 4 out of 5 stars4/5Defending IoT Infrastructures with the Raspberry Pi: Monitoring and Detecting Nefarious Behavior in Real Time Rating: 0 out of 5 stars0 ratingsTechno Security's Guide to Securing SCADA: A Comprehensive Handbook On Protecting The Critical Infrastructure Rating: 0 out of 5 stars0 ratingsCombating Spyware in the Enterprise: Discover, Detect, and Eradicate the Internet's Greatest Threat Rating: 4 out of 5 stars4/5Hack the Stack: Using Snort and Ethereal to Master The 8 Layers of An Insecure Network Rating: 0 out of 5 stars0 ratingsPerl Scripting for Windows Security: Live Response, Forensic Analysis, and Monitoring Rating: 0 out of 5 stars0 ratingsCertified Cyber Forensics Professional The Ultimate Step-By-Step Guide Rating: 0 out of 5 stars0 ratingsUNIX for OpenVMS Users Rating: 0 out of 5 stars0 ratingsSyngress Force Emerging Threat Analysis: From Mischief to Malicious Rating: 0 out of 5 stars0 ratingsTru64 UNIX Troubleshooting: Diagnosing and Correcting System Problems Rating: 0 out of 5 stars0 ratingsLearning Python for Forensics Rating: 0 out of 5 stars0 ratingsRelayd and Httpd Mastery: IT Mastery, #11 Rating: 0 out of 5 stars0 ratingsNessus, Snort, and Ethereal Power Tools: Customizing Open Source Security Applications Rating: 0 out of 5 stars0 ratingsPAM Mastery: IT Mastery, #10 Rating: 0 out of 5 stars0 ratingsDigital Forensics Framework A Complete Guide Rating: 0 out of 5 stars0 ratingsCracking the Fortress: Bypassing Modern Authentication Mechanism Rating: 0 out of 5 stars0 ratingsClustering Windows Server: A Road Map for Enterprise Solutions Rating: 0 out of 5 stars0 ratings
Security For You
CompTIA Security+ Study Guide: Exam SY0-601 Rating: 5 out of 5 stars5/5Network+ Study Guide & Practice Exams Rating: 4 out of 5 stars4/5CompTIA Network+ Review Guide: Exam N10-008 Rating: 0 out of 5 stars0 ratingsMake Your Smartphone 007 Smart Rating: 4 out of 5 stars4/5Codes and Ciphers - A History of Cryptography Rating: 4 out of 5 stars4/5Hacking For Dummies Rating: 4 out of 5 stars4/5Cybersecurity: The Beginner's Guide: A comprehensive guide to getting started in cybersecurity Rating: 5 out of 5 stars5/5Wireless Hacking 101 Rating: 4 out of 5 stars4/5Cybersecurity For Dummies Rating: 4 out of 5 stars4/5Security+ Boot Camp Study Guide Rating: 5 out of 5 stars5/5Social Engineering: The Science of Human Hacking Rating: 3 out of 5 stars3/5Hacking : The Ultimate Comprehensive Step-By-Step Guide to the Basics of Ethical Hacking Rating: 5 out of 5 stars5/5Navigating the Cybersecurity Career Path Rating: 0 out of 5 stars0 ratingsCompTIA Network+ Practice Tests: Exam N10-008 Rating: 0 out of 5 stars0 ratingsRemote/WebCam Notarization : Basic Understanding Rating: 3 out of 5 stars3/5The Art of Intrusion: The Real Stories Behind the Exploits of Hackers, Intruders and Deceivers Rating: 4 out of 5 stars4/5Practical Lock Picking: A Physical Penetration Tester's Training Guide Rating: 5 out of 5 stars5/5The Mathematics of Secrets: Cryptography from Caesar Ciphers to Digital Encryption Rating: 0 out of 5 stars0 ratingsHow to Become Anonymous, Secure and Free Online Rating: 5 out of 5 stars5/5Mike Meyers CompTIA Security+ Certification Passport, Sixth Edition (Exam SY0-601) Rating: 5 out of 5 stars5/5Ultimate Guide for Being Anonymous: Hacking the Planet, #4 Rating: 5 out of 5 stars5/5How to Hack Like a Pornstar Rating: 5 out of 5 stars5/5The Art of Attack: Attacker Mindset for Security Professionals Rating: 0 out of 5 stars0 ratingsCompTIA CySA+ Cybersecurity Analyst Certification Passport (Exam CS0-002) Rating: 5 out of 5 stars5/5Mike Meyers' CompTIA Security+ Certification Guide, Third Edition (Exam SY0-601) Rating: 5 out of 5 stars5/5Handbook of Digital Forensics and Investigation Rating: 4 out of 5 stars4/5Cybersecurity for Beginners : Learn the Fundamentals of Cybersecurity in an Easy, Step-by-Step Guide: 1 Rating: 0 out of 5 stars0 ratings
Related podcast episodes
Mobile Forensics 0% found this document usefulBonus: Afternoon Cyber Tea: IoT-Based Infrastructures 0% found this document usefulHacked, Again 100% found this document usefulDigital Forensics with Jared Luebbert 0% found this document usefulAn inside view on North Korean cybercrime. 0% found this document useful#056 – It’s Just Data! 0% found this document usefulRise Up! Privacy Tech is Here to Stay (Lourdes Turrecha) 0% found this document usefulAll for Privacy and Justice for All: The Critical Role Privacy Plays in Social Justice 0% found this document useful#001 – Chris Pogue: Like a Chihuahua On a Pork Chop 0% found this document useful#008 – Darren Hayes: Be Cautious and Think It Through 0% found this document useful
Related articles
At War In The Cyber World Money MagazineArticle
At War In The Cyber World
Oct 30, 2019
5 min readCoder Charged In Massive CIA Leak Portrayed As Vindictive AppleMagazineArticle
Coder Charged In Massive CIA Leak Portrayed As Vindictive
Mar 6, 2020
2 min readHow To Run Classic Distros With QEMU Linux FormatArticle
How To Run Classic Distros With QEMU
Aug 24, 2021
Back in the late 1990s this author chose their PC magazines by what was on the cover disc, something that had started back in their Amiga days. One month they chose a PC magazine that had something called Red Hat Linux on the second disc which was pr
8 min readKernel Watch Linux FormatArticle
Kernel Watch
Sep 21, 2021
Linus Torvalds announced the release of Linux 5.14, which came mere days after the 30th birthday of his very first Linux announcement. The new kernel includes features such as “core scheduling” (a defence against speculation attacks that span multipl
2 min read'A Lot Of Gray Area': A Legal Expert Explains 'How To Read The Constitution' NPRArticle
'A Lot Of Gray Area': A Legal Expert Explains 'How To Read The Constitution'
Jun 25, 2019
4 min readIn Crosshairs Of Ransomware Crooks, Cyber Insurers Struggle AppleMagazineArticle
In Crosshairs Of Ransomware Crooks, Cyber Insurers Struggle
Jul 9, 2021
5 min readRocky Linux Linux FormatArticle
Rocky Linux
Jun 29, 2021
4 min readAmerica’s Hopelessly Anemic Response to One of the Largest Personal-Data Breaches Ever The AtlanticArticle
America’s Hopelessly Anemic Response to One of the Largest Personal-Data Breaches Ever
Feb 12, 2020
5 min readLook Internally For New Cyber Security Employees NZBusiness and ManagementArticle
Look Internally For New Cyber Security Employees
May 27, 2019
2 min readWhat We Know – And Still Don’t – About The Worst-ever US Government Cyber-attack The GuardianArticle
What We Know – And Still Don’t – About The Worst-ever US Government Cyber-attack
Dec 19, 2020
Nearly a week after the US government announced that multiple federal agencies had been targeted by a sweeping cyber-attack, the full scope and consequences of the suspected Russian hack remain unknown. Key federal agencies, from the Department of Ho
5 min readKeys And Signatures Linux FormatArticle
Keys And Signatures
Mar 9, 2021
4 min readRolling Your Own NAS, 2021 Edition TechLifeArticle
Rolling Your Own NAS, 2021 Edition
Mar 8, 2021
4 min readAnswers Linux FormatArticle
Answers
May 30, 2023
8 min readThe Default Applications Linux FormatArticle
The Default Applications
Mar 8, 2022
1 min readGet More From Your Grubby Boot Menu Linux FormatArticle
Get More From Your Grubby Boot Menu
Nov 19, 2019
10 min readGet Into Coding! Linux FormatArticle
Get Into Coding!
Aug 23, 2022
1 min readUS Indicts Chinese Hackers For Targeting Coronavirus Vaccine Data And Defence Secrets Post MagazineArticle
US Indicts Chinese Hackers For Targeting Coronavirus Vaccine Data And Defence Secrets
Jul 22, 2020
3 min readUS to Create Independent Military Cyber Command AppleMagazineArticle
US to Create Independent Military Cyber Command
Jul 21, 2017
3 min readAccuWeb Hosting Linux FormatArticle
AccuWeb Hosting
Jan 9, 2024
2 min readAll About Firewalls TechLifeArticle
All About Firewalls
Jan 13, 2020
4 min readSix Security Holes You Need To Plug Now PC Pro MagazineArticle
Six Security Holes You Need To Plug Now
May 7, 2022
6 min readUsing Bash Aliases For An Easier Life Linux FormatArticle
Using Bash Aliases For An Easier Life
Sep 19, 2023
2 min readUse Home Assistant NodeRED devices Linux FormatArticle
Use Home Assistant NodeRED devices
May 31, 2022
NodeRED is an open source graphical programming environment that can be used to complete a large number of tasks. Graphical programming languages tend to be more intuitive than textual programming languages and can be easier to learn. Support is buil
5 min readDoctor Maximum PCArticle
Doctor
Feb 1, 2022
6 min readTsurugi Linux 2019.1 Linux FormatArticle
Tsurugi Linux 2019.1
Sep 24, 2019
2 min read'Persistent Engagement': The Phrase Driving A More Assertive U.S. Spy Agency NPRArticle
'Persistent Engagement': The Phrase Driving A More Assertive U.S. Spy Agency
Aug 26, 2019
4 min readWith Ransomware Attacks Multiplying, US Moves To Bolster Defenses The Christian Science MonitorArticle
With Ransomware Attacks Multiplying, US Moves To Bolster Defenses
Jul 6, 2021
As the private sector fends off more ransomware attacks, the federal government’s stepped-up efforts include the first national cyber director.
4 min readAdminister Servers With Your Browser Linux FormatArticle
Administer Servers With Your Browser
May 4, 2021
What’s the best way to administer your headless server remotely from another machine inside your local network? You can al ways ssh in of course, but a friendlier approach will give you access to key metrics as well as the ability to perform various
7 min readThe Thinning Line Between Commercial and Government Surveillance The AtlanticArticle
The Thinning Line Between Commercial and Government Surveillance
May 15, 2017
3 min readThe Internet of Things Needs a Code of Ethics The AtlanticArticle
The Internet of Things Needs a Code of Ethics
May 1, 2017
8 min read
Reviews for UNIX and Linux Forensic Analysis DVD Toolkit
Rating: 0 out of 5 stars
0 ratings
0 ratings0 reviews
Book preview
UNIX and Linux Forensic Analysis DVD Toolkit - Chris Pogue
Enjoying the preview?
Page 1 of 1