Sending data from the subject system

Now that you have a listener on the forensics workstation it is easy to send data across the network using netcat. The general sequence for sending something for logging is

{command} | nc {forensic workstation IP} {port}. For commands that do not have output that makes it obvious what was run you might want to send a header of sorts using the echo utility before sending the output of the command. This is demonstrated in Figure 2.9. The results of running the commands shown in Figure 2.9 are shown in Figure 2.10. Using scripting to automate this process is discussed later in this chapter.

FIGURE 2.9

Using netcat to send information to the forensics workstation.

FIGURE 2.10

Results received by listener from commands in Figure 2.9.

Sending data from the subject system

Sending data from the subject system

FIGURE 2.9

results matching ""

No results matching ""