The knowledge domain explains the processes and techniques used to perform digital forensics on Linux systems. It is closely related to incident response, yet will focus on safeguarding and investigating data.
Digital forensics and incident response form together what we call DFIR. This area of expertise deals with handling and investigating system intrusions and data breaches.
Paying member? Log in to see your progress