You might want to put five minutes into researching each of these questions on your own. This would help you form more meaningful questions and would also increase the likelihood that you would be able to understand the responses.
That said, here's something that you (or maybe someone else) might find useful: https://en.wikipedia.org/wiki/The_Coroner%27s_Toolkit <https://en.m.wikipedia.org/wiki/The_Coroner%27s_Toolkit> Thanks, -- Raul On Saturday, June 29, 2019, Cord <[email protected]> wrote: > Hi, I have some questions about security and computer forensics on opensbd. > > - Is openbsd vulnerable to bootkit ? and firmware rootkit ? > - Can an attacker (with root) infect the kernel and insert code to be > relinked ? > - Can an attacker substitute the entire kernel with an infected one ? If > yes, how to check its integrity ? > - Are there forensics tools for openbsd ? > - Could be usefull memory forensics frameworks like rekall and volatility > in openbsd ? Is planned to build something like that ? > > > Thank you. > Cord > > > >
