Back to binalyze.com

IBM AIX Collections

AIR supports the following IBM AIX Evidence and Artifacts

IBM AIX Evidence List

#

Category

Evidence (click for details)

Parsed

Investigation Hub

Source Files Collected

1

System

Cron Jobs

Yes

Yes

No

2

System

ULimit Information

Yes

Yes

No

3

Disk

Mounts

Yes

Yes

No

4

File System

File System Enumeration

Yes

Yes

No

5

Processes

Processes

Yes

Yes

No

6

Users

User Groups

Yes

Yes

No

7

Users

Users

Yes

Yes

No

8

SSH

SSH Known Hosts

Yes

Yes

No

9

SSH

SSH Authorized Keys

Yes

Yes

No

10

SSH

SSH Configs

Yes

Yes

No

11

SSH

SSHD Configs

Yes

Yes

No

12

Network

Hosts

Yes

Yes

No

13

Network

DNS Resolvers

Yes

Yes

No

14

Other Evidence

YUM Sources

Yes

Yes

No

15

Other Evidence

YUM History

Yes

Yes

No

16

Other Evidence

SUID Binaries

Yes

Yes

No

17

Other Evidence

Shell History

Yes

Yes

No

18

Other Evidence

System Artifacts

Yes

Yes

No

19

Other Evidence

Log Files

Yes

Yes

No

IBM AIX Artifact List

#

Category

Artifact (click for details)

Parsed

Investigation Hub

Source Files Collected

1

Server

MySQL Logs

awaits

awaits

awaits

2

Server

SSH Server Logs

awaits

awaits

awaits

3

Server

DHCP Server Logs

awaits

awaits

awaits

4

System

System Logs

awaits

awaits

awaits

5

System

Auth Logs

awaits

awaits

awaits

6

System

Boot Logs

awaits

awaits

awaits

7

System

Mail Logs

awaits

awaits

awaits

PreviousWBEM InfoNextArtifacts

Last updated

Was this helpful?