SELinux Configs
Overview
Section titled “Overview”Evidence: SELinux Configs
Description: Collect SELinux configurations
Category: System
Platform: linux
Short Name: selinuxc
Is Parsed: Yes
Sent to Investigation Hub: Yes
Collect File(s): No
Background
Section titled “Background”This collector gathers selinux configs information from the Linux system. This data is essential for understanding system activity, detecting security incidents, and investigating system-related events.
Data Collected
Section titled “Data Collected”This collector gathers structured data about selinux configs.
Collection Method
Section titled “Collection Method”This collector parses configuration files and records key-value pairs into the selinux_configs table.
Forensic Value
Section titled “Forensic Value”This evidence is crucial for forensic investigations as it provides selinux configs information. It helps investigators understand system activity, detect security incidents, and investigate system-related events.