Re: Unix/Linux Incident Response resources

[Jon Schipp <jonschipp () gmail com>]

On Wed, Nov 16, 2011 at 7:49 AM, David3 Gonnella <netevil () hackers it> wrote:

> Hi Jon
> here are some cheat sheets from SANS,
> that could help as a quick reference during an incident response...
>
> http://devcheatsheet.com/**source/sans-institute/<http://devcheatsheet.com/source/sans-institute/>
>
> cheers,
> D.
>
> On 11/16/2011 02:06 AM, Jon Schipp wrote:
>
> > Hey guys,
> >
> >
> > Do you know of any good resources e.g. books, articles, cheat sheets on
> > incident response for *nix machines.
> >
> > Things I'm looking for e.g. uses of "find", "grep", "strings", and tools
> > covering time stamp information etc.
> >
> > Basically, going through your typical unix tools except with a IR
> > perspective/focus. I figured something like this would help me pay more
> > attention to things on my systems.
> >
> > Thanks
> > Jon
> >
> >
> >
> >
> > ______________________________**_________________
> > Pauldotcom mailing list
> > Pauldotcom () mail pauldotcom com
> > http://mail.pauldotcom.com/**cgi-bin/mailman/listinfo/**pauldotcom<http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom>
> > Main Web Site: http://pauldotcom.com
>
> ______________________________**_________________
> Pauldotcom mailing list
> Pauldotcom () mail pauldotcom com
> http://mail.pauldotcom.com/**cgi-bin/mailman/listinfo/**pauldotcom<http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom>
> Main Web Site: http://pauldotcom.com


Thanks guys!

_______________________________________________
Pauldotcom mailing list
Pauldotcom () mail pauldotcom com
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com