Rosvoja ja kunnon kansalaisia

Tehtävänanto:

Ratkaise HoneyNet: Scan of the Month 15.

#################################

Analysis could have been completed using Autopsy -tool,

so first it was installed in virtual Ubuntu environment. That’s the resulting snapshot:

#################################

After the disk image was analysed, I could browse the internals of the disk image.

And pretend I could find a rootkit out of it…

And what now?!

How deep is the rootkit?

#################################

Advertisements

Comments are closed.

%d bloggers like this: