![]() ![]() Linux OS distribution used in this blog: AWS Linux. ![]() Linux has different OS distributions -Suse, OpenSUSE, Debian, Ubuntu, CentOS, Arch, Fedora, RHEL, AWS Linux all are common Linux distribution names.Some will be have same commands, only kernel variations etc. ![]() But in recent years, there was many APT etc groups are targeting the Linux OS platforms as well.Īs Blu e teamer we should be knowing the common OS process and also identifying process masquerading, hidden process(explained in detail later in upcoming blogs.) etc. Though the windows OS is more targeted by APT other threat groups( as it’s mostly used one above 80%). ![]() So I thought of implementing the same in the Linux OS side. Inspired from the Sans Poster: Find Evil - Know Normal - i.e Knowing what’s normal running process on a Windows OS host helps cut through the noise to quickly locate potential malware.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |