Introduction to Forensics

*

Excerpt

In this talk Kyle Rankin will provide an introduction to performing forensics analysis on Linux machines using the popular Sleuthkit tools with their easy-to-use Autopsy web-based front-end. The talk will cover basic concepts for a forensics investigation, and at the end there will be a demo with a compromised Linux image.

Description

In this talk Kyle Rankin will provide an introduction to performing forensics analysis on Linux machines using the popular Sleuthkit tools with their easy-to-use Autopsy web-based front-end. The talk will cover initial installation and configuration of Sleuthkit and Autopsy, basic concepts and considerations for a forensics investigation, and at the end there will be a demo with a real, compromised Linux image.

Speaking experience

Speaker

  • Techtarget headshot

    Biography

    Kyle Rankin is a systems architect for Quinstreet Inc.; the current president of the North Bay Linux Users’ Group; the author of Knoppix Hacks, The Official Ubuntu Server Book, Knoppix Pocket Reference, Linux Multimedia Hacks, Ubuntu Hacks; and a contributer to a number of other O’Reilly books. Rankin is a columnist for Linux Journal, has written for PC Magazine, TechTarget websites and other publications. He speaks frequently on Open Source software including at OSCON, Linux World Expo, Penguicon. and a number of Linux Users’ Groups.