Cisco StarOS Forensic Information Revealed

Cisco is happy to announce a brand new addition to the Forensic Investigation Procedures for First Responders sequence of paperwork that can assist prospects and companions triage Cisco merchandise which might be suspected of being tampered with or compromised. These guides present step-by-step directions for first responders that can be utilized to evaluate platform integrity and gather data that can be utilized for forensic evaluation.

This new doc is accessible on the Cisco.com Safety Portal beneath Tactical Assets, Responding to a Safety Incident.

The next is a abstract of the brand new doc simply launched, together with a short description.

Cisco StarOS Software program Forensic Investigation Procedures for First Responders

This doc offers steps for assessing the integrity of and amassing forensic data from the Cisco ASR5000 and ASR5500 household of platforms, and Quantum Digital Packet Core (QVPC) digital machines working Cisco StarOS Software program.

This doc comprises procedures for amassing platform configuration and runtime state, verifying the hash worth of the StarOS system picture file, gathering core recordsdata from essential system processes, and amassing non-volatile system data and artifacts, together with course of lists, put in kernel modules, IP tables, and the system startup script.

We’d love to listen to what you suppose. Ask a Query, Remark Under, and Keep Linked with Cisco Safe on social!

Cisco Safe Social Channels

Instagram
Fb
Twitter
LinkedIn

Share: