Forensic analysis of file system intrusions using improved backtracking

@article{Sitaraman2005ForensicAO,
  title={Forensic analysis of file system intrusions using improved backtracking},
  author={Sriranjani Sitaraman and Subbarayan Venkatesan},
  journal={Third IEEE International Workshop on Information Assurance (IWIA'05)},
  year={2005},
  pages={154-163}
}
Intrusion detection systems alert the system administrators of intrusions but, in most cases, do not provide details about which system events are relevant to the intrusion and how the system events are related. We consider intrusions of file systems. Existing tools, like BackTracker, help the system administrator backtrack from the detection point, which is a file with suspicious contents, to possible entry points of the intrusion by providing a graph containing dependency information between… CONTINUE READING
Highly Cited
This paper has 40 citations. REVIEW CITATIONS

From This Paper

Figures, tables, results, connections, and topics extracted from this paper.
28 Extracted Citations
29 Extracted References
Similar Papers

Citing Papers

Publications influenced by this paper.
Showing 1-10 of 28 extracted citations

Referenced Papers

Publications referenced by this paper.

Similar Papers

Loading similar papers…