Christchurch Hacker Con 2017 Linux Forensics Slides

The slides for Craig’s talk on command line Linux Forensics from the 2017 Christchurch Hacker Con can be found here:

Christchurch Hacker Con 2017 Linux Digital Forensics Presentation

The slides cover using basic command line tools to find compromised Linux hosts. This includes how to look for suspicious processes, network ports, directories, and other indicators a Linux system has been compromised.