Remote Data Acquisition Method Live Forensics Using the GRR Rapid Response
(Remote Forensics, Live Forensics, Forensics Acquisition, Incident Response)
GRR stands for Google Rapid Response a Framework Remote Live Forensics Multi-Platform built and deployed by Incident Response Team Google, gained popularity by 20% until fully supported by open sources community. The main motivation in establishing a GRR Rapid Response is to improve the readiness of analysis and investigation, by lowering the cost of Investigation as well as improving the quality of digital evidence obtained the main features, Collecting Information on the Agent system which will be analyzed through the remote and features detailed monitoring of CPU Client (Agent), Memory, use of I / O and more.
- 2016 October 2 13:30
- 15 min
- Convention Hall
- openSUSE.Asia Summit 2016