X hits on this document

182 views

0 shares

0 downloads

0 comments

21 / 47

Orion Incident Response Live CD 2

IdentityFile ~/.ssh/orion

/orion/scrip

mount remot ============ Remote host Remote usern Remote path Path of loca Mounting joh Enter passph Filesystem Mounted on john@remhost /mnt/kindle Hit any key

ts/mount-ssh: e directory as a filesystem via ssh ===================================== or IP: remhost ame: john [~]: kindle l mount point [e.g. /mnt/alpha]: /mnt/kindle n@remhost:kindle at /mnt/kindle ... rase for key '/root/.ssh/orion':

1K-blocks

Used Available Use%

:kindle

0

  • -

    0

  • 0

    103%

to continue ->

root@orion:~ download_pdf kindle_updat

  • #

    ls /mnt/kindle

s e tool.zip

kindle update tool.py

_

_

mobilereader.com.txt

_

_ r extract bin.txt e s t a r t _ l o g _ r e s e t . t x t

root@orion:~ john@otherho

  • #

    mount | grep kindle

st:remhost on /tmp/kindle type fuse.sshfs

(rw,nosuid,nodev)

Figure 14: sshfs in action

6.5.3. Citadel: Groupware for Incident Communication

For groupware collaboration (i.e., email, calendar, chat) Orion includes an installation of Citadel (http://www.citadel.org/). Citadel is a feature-rich groupware server that started as an attempt to replicate a BBS system back in the days before the World Wide Web. In the intervening years, it has grown mature and sophisticated, and the web based interface to Citadel (webcit) is a slick AJAX-based environment. It provides email, calendar, chat and other services via text-based, web-based, and standard protocols such as SMTP, POP, IMAP, and XMPP. It is intended to be run on the Orion system of the primary handler, but an instance could be run on every Orion system, if so desired.

John Jarocki, john.jarocki@gmail.com

Document info
Document views182
Page views183
Page last viewedFri Jan 20 08:44:52 UTC 2017
Pages47
Paragraphs864
Words8806

Comments