linux

This article was prepared with the contribution of Adeo DFIR Team. Hello to everyone. On August 9, Defcon DFIR CTF, provided by the Champlain College’s Digital Forensic Association, will be broadcast live. I did not have the opportunity to look at the first days of publication, and later I had time and we finished the 4th place. Together with my friend, we are doing an internship at the DFIR department at ADEO IT Consulting Services and when we saw the competition we wanted to participate and write such a post....

Hello, in this article, we will first see how to get a memory image from linux systems and how we can analyze them. Many of the systems used today use the Windows operating system. Of course, forensic analysts are more knowledgeable on windows systems, but the use of linux operating systems is also not to be underestimated.For this reason, I wanted to start such a series. The memory image contains many sources of information for analysts during forensic analysis....