Sec440‐Linux‐Search - ConnorEast/Tech-Journal GitHub Wiki
| Lab Steps: | Proof: |
|---|---|
| Install net tools |
|
| Install AuditD |
|
| Download some random guys rules with no valid reason as to why? |
|
| restart audit.d |
|
| check log population |
|
| run wget https://research.cyfidant.com |
|
| Check log for wget |
|
Step 1: Install SetupThreathunt and verifylab scripts
--- The professor shared two items through GoogleDrive for us to download. one being a malicious script while the other confirms the artifacts have been emplaced upon the system.
Step 2: Run the installed scripts
--- Using an administrator terminal install the malware and the checker.
