Free

DFIR Operator Series: Linux Forensics 101

As a cybersecurity professional, Linux is everywhere and part of our daily lives. Being prepared to respond to incidents impacting the operating system is critical. Be sure you understand the impacts on DFIR of the Linux file system, data acquisition and analysis, memory forensics, and network forensics.
0
0
M
Time
intermediate
difficulty
3
ceu/cpe

Course Content

Analyzing Compromised Images

36m

Penguin Hero: Memory Analysis
Why Linux?

34m

What's the Deal with Linux?
Memory Forensics Linux Overview

33m

Penguin Hero: Memory Collection
Overview of Linux Artifacts

31m

Penguin Hero: Artifacts & Quick Wins
Getting Started with Linux

0m

What's the Deal with Linux?
Penguin Disk Collection

0m

Penguin Disk Collection
Penguin Hero: Memory Collection

0m

Penguin Hero: Memory Collection
Penguin Hero: Artifacts & Quick Wins

0m

Penguin Hero: Artifacts & Quick Wins
Penguin Hero: Memory Analysis

0m

Penguin Hero: Memory Analysis
Penguin Hero: Timeline (Reporting)

0m

Penguin Hero: Timeline (Reporting)
Course Description

As a cybersecurity professional, Linux is everywhere and part of our daily lives. Being prepared to respond to incidents impacting the operating system is critical. Be sure you understand the impacts on DFIR of the Linux file system, data acquisition and analysis, memory forensics, and network forensics.

This course is part of a Career Path:
No items found.

Instructed by

Instructor
Marc Balingit

Marc has led, managed, and performed global incident response investigations focused on large-scale data breaches, system compromises, data exfiltration, ransomware, and malware outbreaks. He has worn many hats throughout his Incident Response career, including proactive and reactive services. Outside Blue Teaming, Marc is passionate about Vulnerability Research and Malware Analysis. He is a Technical SME at Cybrary, focusing on Threat Actors and Blue Teaming for course content.

Provider
Cybrary Logo
Certification Body
Certificate of Completion

Complete this entire course to earn a DFIR Operator Series: Linux Forensics 101 Certificate of Completion