Linux Incident Response

 

A cheatsheet for incident response and live forensics in Linux environments

With commandline commands for investigating:

* User accounts

* Log entries

* Processes

* Services

* Network settings

* + more