- HOW DOES PRODISCOVER BASIC PERFORM IN LINUX SOFTWARE
- HOW DOES PRODISCOVER BASIC PERFORM IN LINUX CODE
HOW DOES PRODISCOVER BASIC PERFORM IN LINUX SOFTWARE
I could have used software such as Live View, but I wasn’t sure how well it worked with Linux as my host OS. I needed a quick way of determine the capabilities of the malware, so I decided to boot a copy of the original dd image using vmware and then do behavioral analysis on the system. I didn’t have time to run it through ollydbg or Ida Pro.
HOW DOES PRODISCOVER BASIC PERFORM IN LINUX CODE
The system had a nasty rootkit that was injecting code into a couple of processes. After building a timeline, I was able to determine that the initial infection vector had been deleted and the malware hosting site had been pulled off-line. In this instance, a number of different malware products had been ran, along with clearing temp files and Internet cache, but the system was still showing signs of infection. But, sometime you may need to do analysis on the system. Most of the time, I tell them the evidence has been trampled on by different malware scanning software and just re-image the system. I was, then, able to fix this issue and boot into Linux.Sometimes as an incident responder we get called on to analyze a system that has already been “looked at” by another admin or desktop support personnel. Because LILO codes are easy to interpret, I was able to quickly determine my issue: a geometry mismatch. In this case, it got to ‘LIL,’ but didn’t finish booting. When an error occurs, it displays a code that makes up part of the word LILO. I recognized the error because when LILO boots Linux correctly, it displays the word LILO on the screen.
For example, one time I was booting Linux using LILO when I experienced an error. In my experience using LILO, its simple error codes were very helpful. LILO doesn’t have a streamlined interface, however, so those looking for a user interface might prefer to work with GRUB. LILO allows businesses to boot into Linux to perform operational activities using a simple code system to help troubleshoot errors. Other popular boot loaders include GRUB and ELILO. Now, it’s in the top three popular today, even though further development of the boot loader ceased in 2015. LILO used to be the default boot loader for Linux. It is a bootloader for Linux that loads Linux into main memory and starts up the operating system. To answer it thoroughly, explain what the acronym means, define the process and explain how it’s used.Įxample: “The acronym LILO stands for Linux Loader. This is a technical question about a specific, important feature of any Linux operating system, the bootloader. Related: Technical Interview Questions and Example Answers What is the standard size for a swap partition while using a Linux system?