The 8th and last lecture in the GÉANT module “IT Forensics for System Administrators” is coming up on 27th of January 2022. The lecture, entitled IT Forensics for System Admins – Acquisition of Other Evidence, held by our EGI CSIRT member Toby Dussa and his colleague from DFN-CERT Klaus Möller, will cover other common forms of indicators of compromise, the ones that are not present on local systems (in RAM or harddisk). The evidence of a compromise can be found in log messages, in network traffic logs from switches, firewalls, network IDS etc.
The registration is open to all GÉANT members and their member organisations and wider CERT community.
Recent Comments