Hi, I have some questions about security and computer forensics on opensbd.
- Is openbsd vulnerable to bootkit ? and firmware rootkit ?
- Can an attacker (with root) infect the kernel and insert code to be relinked ?
- Can an attacker substitute the entire kernel with an infected one ? If yes, how to check its integrity ?
- Are there forensics tools for openbsd ?
- Could be usefull memory forensics frameworks like rekall and volatility in openbsd ? Is planned to build something like that ?
Thank you.
Cord
No comments:
Post a Comment