← All Tags
# incident-response linux

2 links tagged with all of: incident-response + linux

Click any tag below to further narrow down your results

+ artifacts (1) + forensics (1) + open-source (1) + security (1) + scanner (1) + rootkit (1)

Links

>_ klint

This article explains a C++23 tool called Klint for incident response on Linux systems. It detects hidden kernel modules, rootkits, and other threats through multiple self-registering scanners. The tool runs in isolated processes and produces machine-readable JSON output for easy integration into automated workflows.
Saved by tldr-importer · Last saved February 14, 2026 · 3 min read
linux ✓ + security incident-response ✓ + scanner + rootkit

GitHub - tclahr/uac: UAC is a powerful and extensible incident response tool designed for forensic investigators, security analysts, and IT professionals. It automates the collection of artifacts from a wide range of Unix-like systems, including AIX, ESXi, FreeBSD, Linux, macOS, NetBSD, NetScaler, OpenBSD and Solaris.

UAC is an incident response tool for collecting artifacts from various Unix-like systems. It automates data collection for forensic investigations, compliance checks, and more, using customizable YAML profiles without requiring installation. The tool supports diverse environments, including IoT devices and NAS systems.
Saved by tldr-importer · Last saved February 14, 2026 · 2 min read
incident-response ✓ + artifacts + forensics linux ✓ + open-source