HSC
Network Security Consulting Agency Since 1989 - Specialized in Unix, Windows, TCP/IP and Internet
 Text mode: access to the page content
Hervé Schauer Consultants
You are here: Home > Resources > Lectures > Intervention after compromision of a Unix server
Go to: HSC Trainings
Search:  
 Version française
   Services   
o Skills & Expertise
o Consulting
o ISO 27001 services
o Vulnerabilities monitoring
o Audit & Assessment
o Penetration tests
o Vunerability assessment (TSAR)
o Forensics
o ARJEL
o Training courses
o E-learning
   Conferences   
o Agenda
o Past events
o Tutorials
   Resources   
o Thematic index
o Tips
o Lectures
o Courses
o Articles
o Tools (download)
o Vulnerability watch
   Company   
o Hervé Schauer
o Team
o Job opportunities
o Credentials
o History
o Partnerships
o Associations
   Press and
 communication 		  
o HSC Newsletter
o Press review
o Press releases
o Publications
   Contacts   
o How to reach us
o Specific inquiries
o Directions to our office
o Hotels near our office
|>|Intervention after compromision of a Unix server  
> Access to the content HTML Beginning of the presentation  
> Description Report on an investigation after an incident and experience of quickly cleaning a compromised Solaris server.  
> Context & Dates Talk made before the SUR group from the OSSIR , on 11 July 2000.
 
> Author Frédéric Lavécot  
> Type 14 slides [ French - HTML ]  
> Abstract &
Table of content		 Flyleaf
La victime
Activité surprenante
Traces réseau
Stacheldraht
Services ouverts
Détection de la falsification du système
Preuves de la falsification du système
Informations diverses
Le rootkit
Solution
Information complémentaire
Les motivations du pirate
Conclusion  
> Related documents
themeIncidents
[Presentation]  Logging and incident processing [15 May 2008 - French]
[Presentation]  Logs and incident processing [29 March 2007 - French]
[Presentation]  Software vulnerabilities: latest trends and possible solutions [23 March 2005 - French]
[Presentation]  Vulnerabilities: from discovery to exploitation [4 November 2004 - French]
[Tip]  Antimap [20 November 2001 - French]
[Tip]  How to react (technicaly) in case of intrusion [21 October 2000 - French]
> Copyright © 2000, Hervé Schauer Consultants, all rights reserved.

 

Last modified on 17 April 2002 at 17:24:20 CET - webmaster@hsc.fr
Information on this server - © 1989-2010 Hervé Schauer Consultants