How to use Linux process environment variables to find forensic evidence around attacker IP addresses and other information associated with hacking activity.

You can use these techniques to investigate malware and suspicious binaries running on compromised Linux system.

We also demonstrate using our agentless Linux security bot and threat hunter to find these types of attacks automatically.

Sandfly Security creates agentless security bots to keep hackers off Linux. Find out more here:

https://www.sandflysecurity.com

Be sure to subscribe and follow us:

  / craighrowland  
  / sandflysecurity  
  / sandfly  
  / sandflysec