The /proc directory - a look into the folder that contains all the running processes
Вставка
- Опубліковано 29 чер 2024
- Linux Command Line tutorial for forensics - 46 - The /proc directory - a look into the folder that contains all the running processes
♥️ SUBSCRIBE for more videos: ua-cam.com/users/bluemonkey4n6...
Difficulty Level: intermediate
Prerequisites: basic understanding of linux command line
Prerequisites: basic understanding of the ps, top, and kill commands
In this video, we will explore what the /proc directory in the Linux filesystem and see how there may be interesting information from a Digital Forensics and Incident Response perspective.
If you enjoyed this, please share this knowledge with someone else. I am grateful for you
Video timeline
00:00 intro
01:15 /proc folder basics
05:10 PID specific folders
11:33 Active PID folders
12:37 Special files in /proc
⭕️ For other videos about the Linux command line, see other videos in this series: • Linux Command Line tut...
getting around the linux filesystem tutorial: • Getting around the Lin...
looking at binary files tutorial: • LCL 03 - looking at bi...
mounting and unmountig tutorial: • mounting and unmountin...
RAID basics tutorial: • Redundant Array of Ind...
process control tutorial: • LCL 21 - Process contr...
Linux distro: CAINE linux (www.caine-live.net)
Proxmox VE ISO: www.proxmox.com/en/downloads
Virtualization software: Virtual Box (virtualbox.org)
Icons made by freepik from @flaticon www.flaticon.com/authors/freepik
Icons made by Smashicons from www.flaticon.com/authors/smash...
This course was designed to provide information on how to use the command line environment in a Unix/Linux system to accomplish tasks such as imaging, data acquisition, and archiving. This course covers the basics of Unix/Linux commands that allow users to view and edit text files, obtain hardware and system information, partitioning and formatting, process related commands, manipulating disks and partitions, imaging, archiving, logical acquisition, live system response, and basic networking.
This would be beneficial for folks who are interested in digital forensics, incidence response, system administration, ethical hacking, or just plain linux. his course covers material for beginners as well as for advanced users. This course would also be helpful if you are considering taking the CompTIA Linux+ certification test.
#Linux #DFIR #linuxprocesses - Наука та технологія
Thank You, this was very interesting! Especially deleting a source binary after its run from loaded memory. I would assume it would be gone after reboot though?
Yes, exactly. Thanks for watching and leaving a positive comment!