Introduction to Forensics
*Excerpt
In this talk Kyle Rankin will provide an introduction to performing forensics analysis on Linux machines using the popular Sleuthkit tools with their easy-to-use Autopsy web-based front-end. The talk will cover basic concepts for a forensics investigation, and at the end there will be a demo with a compromised Linux image.
Description
In this talk Kyle Rankin will provide an introduction to performing forensics analysis on Linux machines using the popular Sleuthkit tools with their easy-to-use Autopsy web-based front-end. The talk will cover initial installation and configuration of Sleuthkit and Autopsy, basic concepts and considerations for a forensics investigation, and at the end there will be a demo with a real, compromised Linux image.
Tags
linux, forensics, systems administration, sleuthkit
Speaking experience
Speaker
-
- Website: http://greenfly.org/
Biography
Kyle Rankin is a systems architect for Quinstreet Inc.; the current president of the North Bay Linux Users’ Group; the author of Knoppix Hacks, The Official Ubuntu Server Book, Knoppix Pocket Reference, Linux Multimedia Hacks, Ubuntu Hacks; and a contributer to a number of other O’Reilly books. Rankin is a columnist for Linux Journal, has written for PC Magazine, TechTarget websites and other publications. He speaks frequently on Open Source software including at OSCON, Linux World Expo, Penguicon. and a number of Linux Users’ Groups.