Mirrors/hacktricks
2
0
Fork 0
mirror of https://github.com/carlospolop/hacktricks synced 2024-11-21 20:23:18 +00:00
Code Issues Projects Releases Packages Wiki Activity

Update linux-forensics.md

Browse source 
fixes grammatical errors

Signed-off-by: Yuvraj Saxena <ysaxenax@gmail.com>
This commit is contained in:
Yuvraj Saxena 2024-03-31 18:14:46 +05:30
parent c539bd7d2c
commit dce6181884
1 changed files with 2 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
forensics/basic-forensic-methodology/linux-forensics.md
View file

@ -223,7 +223,7 @@ Get Access Today:
## Recover Deleted Running Binaries
Imagina a process taht was executed from /tmp/exec and deleted. It's possible to extract it
Imagine a process that was executed from /tmp/exec and then deleted. It's possible to extract it
```bash
cd /proc/3746/ #PID with the exec file deleted
@ -251,7 +251,7 @@ ls -l /usr/lib/cron/tabs/ /Library/LaunchAgents/ /Library/LaunchDaemons/ ~/Libra
### Services
Paths where a malware could be isntalled as a service:
Paths where a malware could be installed as a service:
* **/etc/inittab**: Calls initialization scripts like rc.sysinit, directing further to startup scripts.
* **/etc/rc.d/** and **/etc/rc.boot/**: Contain scripts for service startup, the latter being found in older Linux versions.