Skip to content

Instantly share code, notes, and snippets.

@fduran

fduran/Linux mini forensics on unknown running process

Last active August 29, 2015 14:00
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save fduran/11401011 to your computer and use it in GitHub Desktop.
Save fduran/11401011 to your computer and use it in GitHub Desktop.
Download ZIP
Raw
Linux mini forensics on unknown running process
# www.fduran.com
# what is this process? - mini forensics on unknown running process
ls -l /proc/$pid/exe
dpkg -S /path/to/process_binary
strings /path/to/process_binary
hexdump -C /path/to/process_binary
netstat -tapn|grep tang
lsof $pid
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment