all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

DFSP # 426 - SSH Forensics: Log Analysis

Add to bookmarks
April 16, 2024, 11:58 a.m. |

Digital Forensic Survival Podcast digitalforensicsurvivalpodcast.libsyn.com

This week I'm wrapping up my series on SSH forensics with a discussion on SSH log triage. Logs are usually what an analyst will start with, so this episode is important. There are a few different log types, and there is a pitfall with one of them, which is something you must be aware of to avoid making inaccurate conclusions. I'll provide the artifact breakdown, triage methodology, and more.

analysis analyst forensics important log log analysis logs series ssh start triage types week

Visit resource

More from digitalforensicsurvivalpodcast.libsyn.com / Digital Forensic Survival Podcast

DFSP # 428 - It’s all about that XML 1 day, 3 hours ago | digitalforensicsurvivalpodcast.libsyn.com
artifacts compromise events evidence +9
DFSP # 427 - MOF Balls 1 week, 1 day ago | digitalforensicsurvivalpodcast.libsyn.com
app artifact attackers dfir +11
DFSP # 426 - SSH Forensics: Log Analysis 2 weeks, 1 day ago | digitalforensicsurvivalpodcast.libsyn.com
analysis analyst forensics important +9
DFSP # 425 - SSH Forensics: Host-Based Artifacts 3 weeks, 1 day ago | digitalforensicsurvivalpodcast.libsyn.com
artifacts explained fast forensics +7
DFSP # 424 - SSH Forensics: Understanding Secure Shell 4 weeks, 1 day ago | digitalforensicsurvivalpodcast.libsyn.com
access basics communications concepts +18
DFSP # 423 - Guiding Lights: Cyber Investigations Investigation Lifecycle 1 month ago | digitalforensicsurvivalpodcast.libsyn.com
aspect clear cyber cyber investigations +18
DFSP # 422 - EVTX Express: Cracking into Windows Logs Like a Pro 1 month, 1 week ago | digitalforensicsurvivalpodcast.libsyn.com
access cracking event event logs +17
DFSP # 421 - Memory Lane: Fileless Linux Attacks Unraveled 1 month, 2 weeks ago | digitalforensicsurvivalpodcast.libsyn.com
anonymous attacks data data storage +19
DFSP # 420 - Failing, Stopping and Crashing 1 month, 3 weeks ago | digitalforensicsurvivalpodcast.libsyn.com
event exploitation forensic investigations +11

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Information Security Cyber Risk Analyst

@ Intel | USA - AZ - Chandler
View on infosec-jobs.com

Senior Cloud Security Engineer (Fullstack)

@ Grab | Petaling Jaya, Malaysia
View on infosec-jobs.com

Principal Product Security Engineer

@ Oracle | United States
View on infosec-jobs.com

Cybersecurity Strategy Director

@ Proofpoint | Sunnyvale, CA
View on infosec-jobs.com

Information Security Consultant/Auditor

@ Devoteam | Lisboa, Portugal
View on infosec-jobs.com

IT Security Engineer til Netcompany IT Services

@ Netcompany | Copenhagen, Denmark
View on infosec-jobs.com
View more jobs