Sign up for our free Infosec: Age of AI Summit August 14 Register Here

Linux Forensics

Course Authored by .

Linux Forensics with Hal Pomeranz

This 32-hour, hands-on course is a quick start into the world of Linux forensics. Learn how to use memory forensics to rapidly triage systems and spot attacker malware and rootkits.

Course Length: 32 Hours

Includes a Certificate of Completion



Description

This 32-hour, hands-on course is a quick start into the world of Linux forensics. Learn how to use memory forensics to rapidly triage systems and spot attacker malware and rootkits.

Linux is everywhere– running in the cloud, on cell phones, and in embedded devices that make up the “Internet of Things”. Often neglected by their owners, vulnerable Linux systems are low-hanging fruit for attackers wishing to create powerful botnets or mine cryptocurrencies. Ransomware type attacks may target Linux-based database systems and other important infrastructure.

As attacks against Linux become more and more common, there is an increasing demand for skilled Linux investigators. However, even experienced forensics professionals may lack sufficient background to properly conduct Linux investigations. Linux is its own particular religion and requires dedicated study and practice to become comfortable.

Learn where the most critical on-disk artifacts live and how they can help further an investigation. Rapidly process Linux logs and build a clearer picture of what happened on the system.

  • System Requirements
    • High-speed Internet access
    • A BitTorrent client for downloading course materials (e.g., Transmission https://transmissionbt.com/download/)
    • At least 150GB of free space and capable of running a 64-bit VMware virtual machine using 4GB of RAM

FAQ

Key Takeaways

• Acquiring and analyzing Linux memory
• Accessing complex Linux disk geometries
• Rapid triage for key Linux artifacts
• Linux log analysis

Who Should Take This Course

• Experienced forensic professionals wanting to expand their Linux knowledge
• SOC analysts needing a stronger grounding in Linux
• Administrators/developers defending Linux infrastructures

Audience Skill Level

This course is an introduction to Linux forensics, but not an introduction to forensics. The course assumes at least some knowledge of digital forensic methods, such as evidence acquisition. This course is heavily command-line driven, so basic familiarity with the Linux command-line is helpful.

What Each Student Should Bring

A properly configured computer (see “System Requirements”) and natural curiosity!

About the Instructor

Pixel splash background
"Computer Forensics and Information Security, often with a spicy Linux flavor. Expert Witness. Trainer."
Bio

Hal Pomeranz is an independent digital forensic investigator who has consulted on cases ranging from intellectual property theft, to employee sabotage, to organized cybercrime and malicious software infrastructures. He has spent more than thirty years providing pragmatic Information Technology and Security solutions for some of the world’s largest commercial, government, and academic institutions.

Register for Upcoming

Linux Forensics

On-Demand Hal Pomeranz

Attention: This is not a phish!

Antisyphon Training accounts have moved to learning.antisyphontraining.com. Training purchases will now be directed to that site. You can trust us.

REGISTER NOW
$1,150

Related products

Shopping Cart

No products in the cart.