BSidesLV 2015 has ended
Back To Schedule
Tuesday, August 4 • 15:00 - 15:25
Catching Linux Post-Exploitation with Auditd

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Many Linux administrators are required to deploy Auditd in order to meet government or industry security compliance requirements. In this talk we will dive into common Linux Audit configurations and determine their value when responding to successful attacks. Finally by examining real world attacks, we can create Auditd rules that can alert us following the successful exploitation of a service.


Eric Gershman

Eric Gershman is currently working on the security team for a group that manages large systems that enable researchers to do "Big Science". Prior to working in security Eric pursued a bachelors degree in Information Technology at the University of Central Florida. During his time... Read More →

Tuesday August 4, 2015 15:00 - 15:25 PDT
Proving Ground Florentine E

Attendees (0)