It's so easy to use, our high school intern with zero previous Linux experience has been able to use it in our lab to document what we detect and what our gaps are.
It's been a great project for him to learn about Linux and detection engineering.
It's been a great project for him to learn about Linux and detection engineering.
Comments
https://www.elastic.co/security-labs/continuation-on-persistence-mechanisms