log

Understand Log Capturing and Analysis Tools

Leave a Comment / CHFI / By Tushar Panhalkar

Understand Log Capturing and Analysis Tools in this article explain different types of log capturing tools and analysis tools which are used in forensic investigation. Log Capturing and Analysis Tools Features: Analysis of log data, including SNMP traps, Windows event logs, W3C logs, text-based logs, Syslog, SQL Servers, and Oracle audit logs Provides specific reports for some of the major compliance acts as well as other standard reports Filter-enabled charts provide access to the important …

Understand Log Capturing and Analysis Tools Read More »

Understand Network Forensics Analysis Mechanism

Leave a Comment / CHFI, Knowledge Base / By Tushar Panhalkar

This network forensics analysis mechanism includes presenting the evidence, manipulating, and automated reasoning. Analyst Interface The analyst interface provides visualization of the evidence graph and reasoning results to the analyst, who passes the feedback to the graph generation and reasoning components. Evidence Collection Evidence collection involves the collection of intrusion evidence from networks and hosts under investigation. Evidence Preprocessing Evidence preprocessing deals with the analysis of assertive types of evidence, such as intrusion alerts, into …

Understand Network Forensics Analysis Mechanism Read More »

What is Centralized Logging?

Leave a Comment / CHFI / By Tushar Panhalkar

Centralized Logging is defined as a gathering of the computer system logs for a group of systems in a centralized location. All network logs are stored on a centralized server or computer, which helps administrators perform easy backup and retrieval. It allows the administrator to check logs on each system on a regular basis. It is used to efficiently monitor computer system logs with the frequency required to detect security violations and unusual activity. Centralized …

What is Centralized Logging? Read More »

Understand Log File Accuracy

Leave a Comment / CHFI / By Tushar Panhalkar

Understand Log File Accuracy in this during forensic investigation, log files provide a valuable source of evidence. Since these log files act as evidence in court, investigators should ensure that the files are accurate. Without following certain guidelines while collecting and preserving the log files, they will not be acceptable as valid evidence in the court. Therefore, investigators should follow the above mentioned steps to maintain the log file accuracy. Log Everything Configure the web …

Understand Log File Accuracy Read More »

Linux Forensics

Leave a Comment / CHFI, Knowledge Base / By Tushar Panhalkar

Linux forensics refers to performing forensic investigation on a Linux operated device. To do so, the investigators should have a good understanding on the techniques required to conduct live analysis; to collect volatile and non-volatile data, along with knowledge of various shell commands and the information they can retrieve. The investigators should also be aware of the Linux log files, their storage and location in the directory, as they are the most important sources of information …

Linux Forensics Read More »

Introduction of Event Logs Analysis

Leave a Comment / CHFI / By Tushar Panhalkar

Introduction of Event Logs Analysis in this article Logs are the sequential records of events that have occurred or performed over a system. All the operating systems have the ability to store these records. Investigators can build timeline based on these logs and find exact time and location of attack. Operating systems regularly conduct audit of the contents and files in order to look for discrepancies. These files store the data regarding the previous state …

Introduction of Event Logs Analysis Read More »

ISO 27001 Annex : A.12.4 Logging and Monitoring

Leave a Comment / ISO 27001 La, Knowledge Base / By Tushar Panhalkar

ISO 27001 Annex : A.12.4 Logging and Monitoring Its objective is recording events and generating evidence. A.12.4.1 Event Logging Control- Event logs should be produced, retained, and regularly reviewed to record user activities, exceptions, defects, and information security events. Implementation Guidance- Where applicable, event logs should include: IDs of User; Activities of the system; dates, times and key events details, such as log-on and log-off; System ID or location and device recognition where possible; records …

ISO 27001 Annex : A.12.4 Logging and Monitoring Read More »

Introduction of USB Spyware and It’s types

Leave a Comment / CEH / By Tushar Panhalkar

Introduction of USB Spyware and It’s types in this Spyware artical you will learn about USB, Spyware Engendering, Types of USB,Types of Spyware like Desktop, Email,Child-Observing, Internet etc. What is USB Spyware ? USB spyware screens and breaks down information moved between any USB gadget associated with a PC and its applications. It helps in application improvement, USB gadget driver or equipment advancement and offers an incredible stage for successful coding, testing, and streamlining. Coming …

Introduction of USB Spyware and It’s types Read More »

Covering Tracks

Leave a Comment / CEH / By Tushar Panhalkar

Covering Tracks we’ve got how an attacker hides malicious files on a target computer using various stenographic techniques, NTFS streams, among others, to keep up future access to the target. Now that the attacker has succeeded in performing this malicious operation, following step are to get rid of any resultant traces/tracks within the system, Covering tracks is one in all the most stage during system hacking. during this stage, the attacker tries to cover and …

Covering Tracks Read More »

Understand Log Capturing and Analysis Tools

Understand Network Forensics Analysis Mechanism

What is Centralized Logging?

Understand Log File Accuracy

Linux Forensics

Introduction of Event Logs Analysis

ISO 27001 Annex : A.12.4 Logging and Monitoring

Introduction of USB Spyware and It’s types

Covering Tracks

Course Categories

Quick Menu

Contact us

Recent Posts

Find Us Here