Check out the new public #PurpleLabs step-by-step instructions for Execution and Detection of Beacon Object File (BOF) for Linux. I hope you will like it!
edu.defensive-security.com/view/courses...

My short blog post about detecting in-memory modification of Linux kernel.yama.ptrace_scope with bpftrace.

edu.defensive-security.com/blog/detecti...

My short blog post about detecting in-memory modification of Linux kernel.yama.ptrace_scope with bpftrace.

edu.defensive-security.com/blog/detecti...

A new lab scenario in Active Defense style released 😍=> BDS #Linux Ftrace Rootkit=>more to come soon! Currently, we cover 237 sections using a hands-on offense_vs_defense_forensics_hunting approach #PurpleLabs GRAB the Black Friday Promo: PR2HP71-BFRIDAY

edu.defensive-security.com/linux-attack...

I have a dream that this "Advanced Linux Detection and Forensics Cheatsheet" will spread globally to all the people dealing with Linux security, both DevOps/DevSecOps/SecOps, #Linux admins, and Red and Blue teams including #DFIR experts

www.defensive-security.com/storage/uplo...

Check out the new public #PurpleLabs step-by-step instructions for Execution and Detection of Beacon Object File (BOF) for Linux. I hope you will like it!
edu.defensive-security.com/view/courses...

I have a dream that this "Advanced Linux Detection and Forensics Cheatsheet" will spread globally to all the people dealing with Linux security, both DevOps/DevSecOps/SecOps, #Linux admins, and Red and Blue teams including #DFIR experts

www.defensive-security.com/storage/uplo...

A new lab scenario in Active Defense style released 😍=> BDS #Linux Ftrace Rootkit=>more to come soon! Currently, we cover 237 sections using a hands-on offense_vs_defense_forensics_hunting approach #PurpleLabs GRAB the Black Friday Promo: PR2HP71-BFRIDAY

edu.defensive-security.com/linux-attack...