Using Volatility to create process maps
Videos from Linux Forensics
-
Digging Deeper into Suspicious Processes -
You are watching this now -
Examining Bash Histories -
Using Volatility Check Functions