Lecture: Digital forensics in Linux: The good, the bad and the ugly
Digital forensics under Linux has a long tradition, and plenty of tools are available that prefer it as the underlying operating system e.g. dd, volatility, Sleuth Kit and others.
This talk will cover some of the recently released tools which take forensics to a whole new level, and how they can be used in digital investigations. In particular these tools are bulk_extractor, hashdb, as well as open-source monitoring frameworks that allow to run investigations with 10+ systems: GRR, MIG and osquery.