Linux 045

Uploaded by

MotivatioNet

0% found this document useful (0 votes)

11 views8 pages

Original Title

linux045

Copyright

Available Formats

PDF, TXT or read online from Scribd

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Report this Document

Copyright:

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

0% found this document useful (0 votes)

11 views8 pages

Linux 045

Uploaded by

MotivatioNet

Copyright:

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

Jump to Page

You are on page 1of 8

Search inside document

Linux Forensics

Dr. Phil Polstra @ppolstra

PhD, CISSP, CEH http://philpolstra.com
Certifications:
http://www.securitytube-training.com

Pentester Academy: http://www.PentesterAcademy.com

©SecurityTube.net
Read-only Compatible Features
●
Filesystem may be mounted read-only if these
features are not supported
●
The fsck utility should not be run against this
filesystem

©SecurityTube.net
Why do we care about features?
●
Affect the structure of block groups
●
That in turn affects where data is located
●
Affects how data is stored in inodes, etc.
●
Some features might supply additional metadata
for analysis

©SecurityTube.net
Read-only Compatible Features
Bit Name Description
0x1 Sparse Super Sparse superblocks (only in BG 0 or power of 3, 5, or 7)
0x2 Large File File(s) larger than 2GB exist on the filesystem
0x4 Btree Dir Btrees are used in directories (not common)
0x8 Huge File File sizes are represented in logical blocks, not sectors
0x10 Gdt Csum Group descriptor tables have checksums
0x20 Dir Nlink Subdirectories are not limited to 32k entries
0x40 Extra Isize Indicates large inodes are present on the filesystem
0x80 Has Snapshot Filesystem has a snapshot
0x100 Quota Disk quotas are being used on the filesystem

0x200 BigAlloc File extents are tracked in multi-block clusters

0x400 Metadata Csum Checksums are used on metadata items

0x800 Replica The filesystem supports replicas

0x1000 ReadOnly Should only be mounted as read-only

©SecurityTube.net
Features that affect layout
●
Sparse Super Blocks
– Backup superblocks only in groups that are powers of 3, 5, and
7
●
Extra isize
– Indirectly affects layout by changing inode size

Managing Multimedia and Unstructured Data in the Oracle Database
From Everand
Managing Multimedia and Unstructured Data in the Oracle Database
Marcelle Kratochvil
No ratings yet
Linux 043
Document7 pages
Linux 043
MotivatioNet
No ratings yet
File System Organization: DR Bhanu
Document29 pages
File System Organization: DR Bhanu
mjdcan_563730775
No ratings yet
File Systems: Fundamentals: Files
Document14 pages
File Systems: Fundamentals: Files
IvanPamiđ
No ratings yet
Module-5 BCS303
Document55 pages
Module-5 BCS303
malleshrevanna021
No ratings yet
10 File Systems
Document108 pages
10 File Systems
shoaibbhatti
No ratings yet
File System
Document17 pages
File System
Chitrank Shukl
No ratings yet
History For Router Security Audit Logs Feature Release Modification
Document10 pages
History For Router Security Audit Logs Feature Release Modification
Onyekachi Jack
No ratings yet
Linux InterviewQuestions - For - Level - 2 - Ratnakar PDF
Document225 pages
Linux InterviewQuestions - For - Level - 2 - Ratnakar PDF
KOLLI MALLIKARJUNAREDDY
80% (10)
Linux InterviewQuestions For Level 2 by Ratnakar-1-1
Document275 pages
Linux InterviewQuestions For Level 2 by Ratnakar-1-1
ShadAslamPn
No ratings yet
Textual Learning Material - Module 5
Document56 pages
Textual Learning Material - Module 5
Amir Irfan Sayed
No ratings yet
Basics of Operating Systems
Document211 pages
Basics of Operating Systems
Arpit
No ratings yet
2015KS Singhal-LUSTRE HPC FileSystem Deployment Method PDF
Document27 pages
2015KS Singhal-LUSTRE HPC FileSystem Deployment Method PDF
Sanket Pandhare
No ratings yet
SX-500 Servers Product Brief
Document9 pages
SX-500 Servers Product Brief
Techne Phobos
No ratings yet
Btrs
Document5 pages
Btrs
Luka Persic
No ratings yet
WD Nas 2TB
Document2 pages
WD Nas 2TB
superdog
No ratings yet
Operating Systems Foundations MSIT 5170
Document12 pages
Operating Systems Foundations MSIT 5170
Asad Mehmood
No ratings yet
Lecture 16
Document15 pages
Lecture 16
api-3801184
No ratings yet
Linux Forensics: Dr. Phil Polstra @ppolstra PHD, Cissp, Ceh
Document7 pages
Linux Forensics: Dr. Phil Polstra @ppolstra PHD, Cissp, Ceh
scrapy
No ratings yet
Windows 033
Document8 pages
Windows 033
MotivatioNet
No ratings yet
Linux Filesystems
Document13 pages
Linux Filesystems
Halil F. Berisha
No ratings yet
DS - EE Hash Stage Disk Caching
Document26 pages
DS - EE Hash Stage Disk Caching
cms_gcoles
No ratings yet
Lotspot: (A Online File Sharing and Downloading System) Software Requirement Specification
Document17 pages
Lotspot: (A Online File Sharing and Downloading System) Software Requirement Specification
Shyam Karwa
No ratings yet
BT5 Filesystem
Document3 pages
BT5 Filesystem
BÁCH LÊ
No ratings yet
File Systems
Document64 pages
File Systems
RekhaBhandari
No ratings yet
Linux 052
Document9 pages
Linux 052
MotivatioNet
No ratings yet
Digital Forensics: Computer Forensics
Document26 pages
Digital Forensics: Computer Forensics
baby app
No ratings yet
Lustre File System Overview
Document7 pages
Lustre File System Overview
ratnadeepbimtac
No ratings yet
Operating Systems: Lesson 13: File Systems
Document39 pages
Operating Systems: Lesson 13: File Systems
Isabel Martinez
No ratings yet
Chapter 6 File System
Document9 pages
Chapter 6 File System
Daya Ram Budhathoki
No ratings yet
Accenture Managed Services For Google Cloud Platform Service Descriptions
Document2 pages
Accenture Managed Services For Google Cloud Platform Service Descriptions
ginseng7302
No ratings yet
CHAPTER 3. Disk Management Rev
Document44 pages
CHAPTER 3. Disk Management Rev
fidelekamsu12
No ratings yet
Interview Question
Document9 pages
Interview Question
sonupawar8883
No ratings yet
The Comparison Between Btrfs and Ext4 Filesystems Shovon Haniwriter
Document7 pages
The Comparison Between Btrfs and Ext4 Filesystems Shovon Haniwriter
NJ Lin
No ratings yet
Linux Interview Questions & Answers
Document87 pages
Linux Interview Questions & Answers
Sri Shailam
No ratings yet
The Undelete Technology Research For UNIX-like
Document5 pages
The Undelete Technology Research For UNIX-like
Suhani Mathur
No ratings yet
Security and File Permissions
Document34 pages
Security and File Permissions
PRASANTH
No ratings yet
Windows 018
Document7 pages
Windows 018
MotivatioNet
No ratings yet
XenData Product Brief XenData6 Server en
Document12 pages
XenData Product Brief XenData6 Server en
Techne Phobos
No ratings yet
File System Structure
Document28 pages
File System Structure
akbisoi1
No ratings yet
Anatomy of Linux Journaling File Systems: Journaling Today and Tomorrow
Document9 pages
Anatomy of Linux Journaling File Systems: Journaling Today and Tomorrow
hpno2
No ratings yet
CHAPTER-III Useless
Document5 pages
CHAPTER-III Useless
Steven Jose
No ratings yet
Oracle Real Application Clusters: Cluster File System Release Notes
Document22 pages
Oracle Real Application Clusters: Cluster File System Release Notes
chichang
No ratings yet
Lab 1 Is3440 Linux Security
Document5 pages
Lab 1 Is3440 Linux Security
salinghizon
No ratings yet
File System Interface and Operations
Document30 pages
File System Interface and Operations
Sri Vardhan
No ratings yet
Windows 044
Document8 pages
Windows 044
MotivatioNet
No ratings yet
Linuxsec3e PPT ch05
Document48 pages
Linuxsec3e PPT ch05
Pham Hung Thinh (K17 DN)
No ratings yet
Lecture 2
Document48 pages
Lecture 2
Allison Tee
No ratings yet
File Carving
Document39 pages
File Carving
Rin Tohsaka
No ratings yet
Understanding UNIX / Linux File System: What Is A File?
Document9 pages
Understanding UNIX / Linux File System: What Is A File?
Abhinav Madheshiya
No ratings yet
ICT246 Notes
Document7 pages
ICT246 Notes
elvyins
No ratings yet
Interview Test: Stefan - Ungureanu@siatel - Ro Victor - Citiriga@siatel
Document1 page
Interview Test: Stefan - Ungureanu@siatel - Ro Victor - Citiriga@siatel
Florin Voicu
No ratings yet
SQL Material
Document77 pages
SQL Material
Ramesh
No ratings yet
6.1 File-Management
Document15 pages
6.1 File-Management
ईश्वर महाले
No ratings yet
02 Linux Overview
Document81 pages
02 Linux Overview
Lmehyaoui Talal
No ratings yet
FortiAnalyzer 04 Logs
Document60 pages
FortiAnalyzer 04 Logs
crgonzalezflores
No ratings yet
Ch. 4 ... Part - 5
Document13 pages
Ch. 4 ... Part - 5
V
No ratings yet
Oops
Document19 pages
Oops
satya kamble
No ratings yet
Toad For Mysql: Installation Guide
Document36 pages
Toad For Mysql: Installation Guide
sethobja
No ratings yet
HP Proliant Dl380 G4 Storage Server: Data Sheet
Document4 pages
HP Proliant Dl380 G4 Storage Server: Data Sheet
oon
No ratings yet
TCP Bind Shell I
Document4 pages
TCP Bind Shell I
MotivatioNet
No ratings yet
Chaining Encoders Crypters
Document4 pages
Chaining Encoders Crypters
MotivatioNet
No ratings yet
Privilege Escalation DLL Hijacking
Document7 pages
Privilege Escalation DLL Hijacking
MotivatioNet
No ratings yet
Exploiting Utorrent Network Share
Document6 pages
Exploiting Utorrent Network Share
MotivatioNet
No ratings yet
DLL Hijacking Dtools
Document4 pages
DLL Hijacking Dtools
MotivatioNet
No ratings yet
Run Meterpreter 32 64 DLL
Document5 pages
Run Meterpreter 32 64 DLL
MotivatioNet
No ratings yet
DLL Hijacking Ida Analysis
Document6 pages
DLL Hijacking Ida Analysis
MotivatioNet
No ratings yet
Av Evasion No Silver Part
Document8 pages
Av Evasion No Silver Part
MotivatioNet
No ratings yet
Not Encoder GDB Analysis
Document4 pages
Not Encoder GDB Analysis
MotivatioNet
No ratings yet
Crypter
Document7 pages
Crypter
MotivatioNet
No ratings yet
Running Metasploit Loader As DLL
Document5 pages
Running Metasploit Loader As DLL
MotivatioNet
No ratings yet
Not Encoder
Document4 pages
Not Encoder
MotivatioNet
No ratings yet
024 Exploiting SSH Server Part 1
Document4 pages
024 Exploiting SSH Server Part 1
MotivatioNet
No ratings yet
026 Exploiting FTP Server Part 1
Document4 pages
026 Exploiting FTP Server Part 1
MotivatioNet
No ratings yet
Course Conclusion
Document4 pages
Course Conclusion
MotivatioNet
No ratings yet
Hidden Bind Shell
Document5 pages
Hidden Bind Shell
MotivatioNet
No ratings yet
Rip Relative Addressing
Document5 pages
Rip Relative Addressing
MotivatioNet
No ratings yet
Dns Poisoning Hosts File
Document5 pages
Dns Poisoning Hosts File
MotivatioNet
No ratings yet
Rip Relative Addressing
Document5 pages
Rip Relative Addressing
MotivatioNet
No ratings yet
Linux 027
Document8 pages
Linux 027
MotivatioNet
No ratings yet
Blocking Websites Using Malicious Pac
Document4 pages
Blocking Websites Using Malicious Pac
MotivatioNet
No ratings yet
Impersonation
Document6 pages
Impersonation
MotivatioNet
No ratings yet
Helloworld Shellcode JMP Call Pop
Document5 pages
Helloworld Shellcode JMP Call Pop
MotivatioNet
No ratings yet
022 Load Store Move Strings
Document4 pages
022 Load Store Move Strings
MotivatioNet
No ratings yet
Exploiting SSH Server Part 2
Document4 pages
Exploiting SSH Server Part 2
MotivatioNet
No ratings yet
How Twilio Built An API For Whatsapp For Business
Document6 pages
How Twilio Built An API For Whatsapp For Business
MotivatioNet
No ratings yet
024 Exit Shellcode
Document5 pages
024 Exit Shellcode
MotivatioNet
No ratings yet
020 Pentesting Windows Endpoints Av Bypass Python
Document7 pages
020 Pentesting Windows Endpoints Av Bypass Python
MotivatioNet
No ratings yet
022 Pentesting Windows Endpoints Win7hash Dumping Mimikatz
Document6 pages
022 Pentesting Windows Endpoints Win7hash Dumping Mimikatz
MotivatioNet
No ratings yet
023 Exploiting File Sharing Server Part 2
Document4 pages
023 Exploiting File Sharing Server Part 2
MotivatioNet
No ratings yet