Evidence: SELinux Configs
Description: Collect SELinux configurations
Category: System
Platform: linux
Short Name: selinuxc
Is Parsed: Yes
Sent to Investigation Hub: Yes
Collect File(s): No
Background
This collector gathers selinux configs information from the Linux system. This data is essential for understanding system activity, detecting security incidents, and investigating system-related events.
Data Collected
This collector gathers structured data about selinux configs.
Collection Method
This collector parses configuration files and records key-value pairs into the selinux_configs table.
Forensic Value
This evidence is crucial for forensic investigations as it provides selinux configs information. It helps investigators understand system activity, detect security incidents, and investigate system-related events.
