- log2timeline / Plaso – timeline generation
- auditd – syscall auditing
- chkrootkit, rkhunter – rootkit scanners
- Volatility, LiME – memory cap
10 results in 0.0088 seconds.
-
Common Tools for Collection & Analysis
-
Containers (if Docker/Podman used)
...Docker Logs /var/lib/docker/containers/*/*.log -
Package & Binary Integrity
...rpm -Va, debsums Check integrity of installed packages -
-
-
-
-
-