• Search
• Free Magazines
• Newest Links
• Categories
• Register
• Login

Forensic Analysis of a Live Linux System, Part 1

Added by Papergrl

Description: The main goal of this article is a presentation of methods used during an evidence collection procedure. All collected data can be used later to perform offline forensic analysis. Some of presented tasks can be also be performed in the preparation and identification phases of the incident response cycle -- these are two of the six phases defined in a guide called "Incident Handling Step by step", published by the SANS Institute.