https://x7peeps.com/tags/Linux/index.htmlHugozh-CNMon, 15 Jun 2026 11:00:00 +0800https://x7peeps.com/%E5%AE%89%E5%85%A8/%E5%BA%94%E6%80%A5%E5%93%8D%E5%BA%94/0x03%E5%8F%96%E8%AF%81%E5%88%86%E6%9E%90/Linux%E6%97%A5%E5%BF%97%E6%97%B6%E9%97%B4%E7%BA%BF%E5%88%86%E6%9E%90%E4%B8%8ESSH%E5%85%A5%E4%BE%B5%E6%BA%AF%E6%BA%90/index.htmlMon, 15 Jun 2026 10:00:00 +0800https://x7peeps.com/%E5%AE%89%E5%85%A8/%E5%BA%94%E6%80%A5%E5%93%8D%E5%BA%94/0x03%E5%8F%96%E8%AF%81%E5%88%86%E6%9E%90/Linux%E6%97%A5%E5%BF%97%E6%97%B6%E9%97%B4%E7%BA%BF%E5%88%86%E6%9E%90%E4%B8%8ESSH%E5%85%A5%E4%BE%B5%E6%BA%AF%E6%BA%90/index.html围绕 auth.log、secure、wtmp、bash_history 与 Web 日志，构建 Linux 主机入侵后的时间线分析方法，定位爆破、成功登录、提权与横向移动痕迹。https://x7peeps.com/%E5%AE%89%E5%85%A8/%E5%BA%94%E6%80%A5%E5%93%8D%E5%BA%94/0x03%E5%8F%96%E8%AF%81%E5%88%86%E6%9E%90/%E8%87%AA%E5%90%AF%E5%8A%A8%E9%A1%B9%E8%AE%A1%E5%88%92%E4%BB%BB%E5%8A%A1%E4%B8%8E%E6%9C%8D%E5%8A%A1%E6%8C%81%E4%B9%85%E5%8C%96%E5%88%86%E6%9E%90/index.htmlMon, 15 Jun 2026 11:00:00 +0800https://x7peeps.com/%E5%AE%89%E5%85%A8/%E5%BA%94%E6%80%A5%E5%93%8D%E5%BA%94/0x03%E5%8F%96%E8%AF%81%E5%88%86%E6%9E%90/%E8%87%AA%E5%90%AF%E5%8A%A8%E9%A1%B9%E8%AE%A1%E5%88%92%E4%BB%BB%E5%8A%A1%E4%B8%8E%E6%9C%8D%E5%8A%A1%E6%8C%81%E4%B9%85%E5%8C%96%E5%88%86%E6%9E%90/index.html从 Windows Run 键、计划任务、系统服务到 Linux systemd、cron、rc.local，系统梳理入侵后常见持久化方式及其取证分析思路。