Forgetting to Lock the Back Door: A Break-in Analysis on a Red Hat Linux 6.2 Machine

This document is intended to highlight the steps taken in ascertaining the level of damage done in a network break-in (or hack attack) on our system, and the steps taken in rectifying the damage. Using the crisis case I encountered in a small company, I will demonstrate how to gather the evidence,...

By

Gary Belshaw

August 4, 2002

All papers are copyrighted. No re-posting of papers is permitted

Related Content

DFIR - Blog - Breaking Down December 2024’s Top Threats_340 x 340.jpg

Digital Forensics, Incident Response & Threat Hunting

December 23, 2024

SANS Threat Analysis Rundown in Review: Breaking Down December 2024’s Discussion

Exploring the power of the PEAK Threat Hunting framework

OO - Blog - November 2024's Top Threats_340 x 340.jpg

Digital Forensics, Incident Response & Threat Hunting

November 25, 2024

SANS Threat Analysis Rundown in Review: Breaking Down November 2024’s Top Threats

There’s always plenty of news on cyber threats to discuss, and this month was no exception.

Coolest Careers Poster

Digital Forensics, Incident Response & Threat Hunting

SANSがおすすめするサイバーセキュリティの仕事20選: サイバーセキュリティアナリスト/エンジニア

サイバーセキュリティアナリスト/エンジニアの主な業務や、スキルアップのためのSANSのおすすめのコースを紹介します！