Live Linux Forensics | Processes & Cronjobs | TryHackMe Linux Process Analysis

In this video walkthrough, we covered live forensics of a Linux workstation suspected of being infected with malware. We analyzed running processes, services, scheduled cronjobs, autostart script and application artefacts and we discovered the existence of bind shell and scripts performing calls to C2 servers to retrieve further malware. This was part of TryHackMe Linux Process Analysis room.
****
Receive Cyber Security Field, Certifications Notes and Special Training Videos
   / @motasemhamdan  
******
Writeup
https://motasem-notes.net/live-linux-...
TryHackMe Linux Process Analysis
https://tryhackme.com/r/room/linuxpro...
********
Google Profile
https://maps.app.goo.gl/eLotQQb7Dm6ai...
LinkedIn
[1]:   / motasem-hamdan-7673289b  
[2]:   / motasem-eldad-ha-bb42481b2  
Instagram
  / motasem.hamdan.official  
Twitter
  / manmotasem  
Facebook
  / motasemhamdantty