Forensic analysis on a Linux web server

Speaker(s) : Julien Reveret Mathieu Deous

  • Language : Anglais
  • Level : Confirmed
  • Nature : Conference
  • Date : Wednesday 8 July 2015
  • Schedule : 11h00
  • Duration : 40 minutes
  • Place : 202

Video : https://rmll.ubicast.tv/permalink/v1253b3dbc77cgs8v21a

How to perform a forensic analysis on a compromised web server.
What to search, where, how ? Logs but also dynamic analysis
What about privilege escalation ?
How has rootkit detection evolved ?

Julien Reveret , Mathieu Deous
Julien has been a free software enthusiast for more than 15 years, he published
many articles related to security and system administration. In 2010 he spoke at
RMLL about synspam, his own project to help fight against spammers.

Before diving in the infosec industry, Mathieu worked as a freelance developer for many years. Self-educated, he learnt a lot from the infosec/opensource community, to which he tries to give back as much as his spare time allows. In 2013, he gave a talk at ESGI Security Days about Python development applied to security.

Slides
Slides (PDF - 1.2 Mb)