Tag

ld_preload

1 views collected around this technical thread.

Efficient Ops

Apr 10, 2024 · Information Security

How to Detect and Recover from a Linux Server Intrusion: A Step‑by‑Step Guide

This article walks through the symptoms, root causes, forensic commands, and remediation actions taken to investigate and clean a Linux server that was compromised, highlighting key security lessons such as tightening SSH access, monitoring critical files, and restoring locked system utilities.

Server Intrusionchattrcron jobs

0 likes · 15 min read

How to Detect and Recover from a Linux Server Intrusion: A Step‑by‑Step Guide

Efficient Ops

May 31, 2020 · Information Security

Detecting and Eradicating Hidden Linux Mining Malware via Crontab and LD_PRELOAD

This article walks through a real‑world Linux mining malware incident, detailing how the attacker used a malicious crontab entry and LD_PRELOAD to hide processes, the forensic steps to uncover the payload, and practical remediation and hardening measures to prevent future compromises.

Linux securitycrontabcryptocurrency mining

0 likes · 12 min read

Detecting and Eradicating Hidden Linux Mining Malware via Crontab and LD_PRELOAD