Cisco is happy to announce a brand new addition to the Forensic Investigation Procedures for First Responders sequence of paperwork that can assist clients and companions triage Cisco merchandise which might be suspected of being tampered with or compromised. These guides present step-by-step directions for first responders that can be utilized to evaluate platform integrity and gather data that can be utilized for forensic evaluation.
This new doc is on the market on the Cisco.com Safety Portal beneath Tactical Sources, Responding to a Safety Incident.
The next is a abstract of the brand new doc simply launched, together with a short description.
Cisco StarOS Software program Forensic Investigation Procedures for First Responders
This doc gives steps for assessing the integrity of and amassing forensic data from the Cisco ASR5000 and ASR5500 household of platforms, and Quantum Digital Packet Core (QVPC) digital machines operating Cisco StarOS Software program.
This doc accommodates procedures for amassing platform configuration and runtime state, verifying the hash worth of the StarOS system picture file, gathering core recordsdata from vital system processes, and amassing non-volatile system data and artifacts, together with course of lists, put in kernel modules, IP tables, and the system startup script.
We’d love to listen to what you assume. Ask a Query, Remark Beneath, and Keep Related with Cisco Safe on social!
Cisco Safe Social Channels
Share: