Hosting Provided By

SecurityFocus Article Announcement: Incident Response Tools For Unix, Part One: System Tools

From: Dan Hanson <dhanson(at)securityfocus.com>
Date: Thu Mar 27 2003 - 18:24:24 EST

Hey incidents subscribers, many times posters to this list have questions about odd behaviour on a host and the answer is usually to run some investigative tools. The following series will hopefully help people investigating potential breaches on Unix or Linux systems.

=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=

Incident Response Tools For Unix, Part One: System Tools

By Holt Sorensen

This article is the first in a three-part series on tools that are useful during incident response and investigation after a compromise has occurred on a OpenBSD, Linux, or Solaris system. This installment will focus on system tools, the second part will discuss file-system tools, and the concluding article will look at network tools.

http://www.securityfocus.com/infocus/1679

Powerful Anti-Spam Management and More... SurfControl E-mail Filter puts the brakes on spam, viruses and malicious code. Safeguard your business critical communications. Download a free 30-day trial: http://www.surfcontrol.com/go/zsfihl1 Received on Thu Mar 27 21:10:24 2003

This message: [ Message body ]
Next message: Klayton Monroe: "FTimes 3.2.1 Release (Includes Dig, HashDig, and Map Tools)"
Previous message: steve baker: "strange DNS behavior over the last 2 days"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 14:02:00 EDT