Linux Forensics! First Look at usbrip
In this episode, we’ll take a look at a forensics tool that can help us parse and track USB device artifacts on a GNU/Linux system. While there have been plenty of episodes covering Linux tools used to parse Windows forensic artifacts, this is the first time we’ve looked at a Linux tool for parsing Linux artifacts. A common use of this tool would be to prove that a USB device was connected to a specific Linux box, by a specific user, within a specific timeframe. This is often useful during IP theft cases and other cases in which USB devices are involved.
** If you enjoy this video, please consider supporting 13Cubed on Patreon at patreon.com/13cubed. **
usbrip GitHub Project:
https://github.com/snovvcrash/usbrip
Background Music Courtesy of Anders Enger Jensen:
/ hariboosx
#Forensics #DigitalForensics #DFIR #ComputerForensics #LinuxForensics
Watch video Linux Forensics! First Look at usbrip online without registration, duration hours minute second in high quality. This video was added by user 13Cubed 21 October 2019, don't forget to share it with your friends and acquaintances, it has been viewed on our site 5,05 once and liked it 10 people.