{"id":"https://openalex.org/W3096694539","doi":"https://doi.org/10.23919/mipro48935.2020.9245304","title":"Linux Forensic Triage: Overview of Process and Tools","display_name":"Linux Forensic Triage: Overview of Process and Tools","publication_year":2020,"publication_date":"2020-09-28","ids":{"openalex":"https://openalex.org/W3096694539","doi":"https://doi.org/10.23919/mipro48935.2020.9245304","mag":"3096694539"},"language":"en","primary_location":{"id":"doi:10.23919/mipro48935.2020.9245304","is_oa":false,"landing_page_url":"https://doi.org/10.23919/mipro48935.2020.9245304","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2020 43rd International Convention on Information, Communication and Electronic Technology (MIPRO)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5038910399","display_name":"Aleksandar S. An\u0111elkovi\u0107","orcid":"https://orcid.org/0000-0003-2736-6793"},"institutions":[],"countries":[],"is_corresponding":true,"raw_author_name":"A. Andelkovic","raw_affiliation_strings":["INsig2 d.o.o., Zagreb, Croatia"],"affiliations":[{"raw_affiliation_string":"INsig2 d.o.o., Zagreb, Croatia","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5081600242","display_name":"K. Hausknecht","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"K. Hausknecht","raw_affiliation_strings":["INsig2 d.o.o., Zagreb, Croatia"],"affiliations":[{"raw_affiliation_string":"INsig2 d.o.o., Zagreb, Croatia","institution_ids":[]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5074632416","display_name":"Goran Sirovatka","orcid":null},"institutions":[{"id":"https://openalex.org/I4210103466","display_name":"University of Applied Health Sciences","ror":"https://ror.org/019yxat94","country_code":"HR","type":"education","lineage":["https://openalex.org/I4210103466"]}],"countries":["HR"],"is_corresponding":false,"raw_author_name":"G. Sirovatka","raw_affiliation_strings":["Zagreb University of Applied Sciences, Zagreb, Croatia"],"affiliations":[{"raw_affiliation_string":"Zagreb University of Applied Sciences, Zagreb, Croatia","institution_ids":["https://openalex.org/I4210103466"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5038910399"],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":0.2669,"has_fulltext":false,"cited_by_count":2,"citation_normalized_percentile":{"value":0.6631645,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":95},"biblio":{"volume":null,"issue":null,"first_page":"1230","last_page":"1235"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T12034","display_name":"Digital and Cyber Forensics","score":0.9994999766349792,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T12034","display_name":"Digital and Cyber Forensics","score":0.9994999766349792,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9969000220298767,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11181","display_name":"Advanced Data Storage Technologies","score":0.9769999980926514,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/digital-forensics","display_name":"Digital forensics","score":0.8718219995498657},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7440465688705444},{"id":"https://openalex.org/keywords/popularity","display_name":"Popularity","score":0.620201826095581},{"id":"https://openalex.org/keywords/linux-kernel","display_name":"Linux kernel","score":0.605583131313324},{"id":"https://openalex.org/keywords/computer-forensics","display_name":"Computer forensics","score":0.5883157253265381},{"id":"https://openalex.org/keywords/process","display_name":"Process (computing)","score":0.5353809595108032},{"id":"https://openalex.org/keywords/triage","display_name":"Triage","score":0.5321855545043945},{"id":"https://openalex.org/keywords/linux-unified-key-setup","display_name":"Linux Unified Key Setup","score":0.48009923100471497},{"id":"https://openalex.org/keywords/network-forensics","display_name":"Network forensics","score":0.4642627239227295},{"id":"https://openalex.org/keywords/microsoft-windows","display_name":"Microsoft Windows","score":0.4622741639614105},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.45044201612472534},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.3787271976470947},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.3750919997692108}],"concepts":[{"id":"https://openalex.org/C84418412","wikidata":"https://www.wikidata.org/wiki/Q3246940","display_name":"Digital forensics","level":2,"score":0.8718219995498657},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7440465688705444},{"id":"https://openalex.org/C2780586970","wikidata":"https://www.wikidata.org/wiki/Q1357284","display_name":"Popularity","level":2,"score":0.620201826095581},{"id":"https://openalex.org/C553261973","wikidata":"https://www.wikidata.org/wiki/Q14579","display_name":"Linux kernel","level":2,"score":0.605583131313324},{"id":"https://openalex.org/C556601545","wikidata":"https://www.wikidata.org/wiki/Q878553","display_name":"Computer forensics","level":3,"score":0.5883157253265381},{"id":"https://openalex.org/C98045186","wikidata":"https://www.wikidata.org/wiki/Q205663","display_name":"Process (computing)","level":2,"score":0.5353809595108032},{"id":"https://openalex.org/C2777120189","wikidata":"https://www.wikidata.org/wiki/Q780067","display_name":"Triage","level":2,"score":0.5321855545043945},{"id":"https://openalex.org/C45463861","wikidata":"https://www.wikidata.org/wiki/Q942617","display_name":"Linux Unified Key Setup","level":3,"score":0.48009923100471497},{"id":"https://openalex.org/C50747538","wikidata":"https://www.wikidata.org/wiki/Q7001032","display_name":"Network forensics","level":3,"score":0.4642627239227295},{"id":"https://openalex.org/C508378895","wikidata":"https://www.wikidata.org/wiki/Q1406","display_name":"Microsoft Windows","level":3,"score":0.4622741639614105},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.45044201612472534},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.3787271976470947},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.3750919997692108},{"id":"https://openalex.org/C194828623","wikidata":"https://www.wikidata.org/wiki/Q2861470","display_name":"Emergency medicine","level":1,"score":0.0},{"id":"https://openalex.org/C77805123","wikidata":"https://www.wikidata.org/wiki/Q161272","display_name":"Social psychology","level":1,"score":0.0},{"id":"https://openalex.org/C71924100","wikidata":"https://www.wikidata.org/wiki/Q11190","display_name":"Medicine","level":0,"score":0.0},{"id":"https://openalex.org/C15744967","wikidata":"https://www.wikidata.org/wiki/Q9418","display_name":"Psychology","level":0,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.23919/mipro48935.2020.9245304","is_oa":false,"landing_page_url":"https://doi.org/10.23919/mipro48935.2020.9245304","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2020 43rd International Convention on Information, Communication and Electronic Technology (MIPRO)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"score":0.7799999713897705,"id":"https://metadata.un.org/sdg/16","display_name":"Peace, Justice and strong institutions"}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":3,"referenced_works":["https://openalex.org/W2520289676","https://openalex.org/W2604064983","https://openalex.org/W6736299046"],"related_works":["https://openalex.org/W2387692413","https://openalex.org/W2534736331","https://openalex.org/W2161391695","https://openalex.org/W4238452393","https://openalex.org/W2489557937","https://openalex.org/W2354252607","https://openalex.org/W2957807204","https://openalex.org/W2368593140","https://openalex.org/W2375473997","https://openalex.org/W3166826721"],"abstract_inverted_index":{"Digital":[0,95],"forensics":[1,12,21,93],"dates":[2],"back":[3],"into":[4,16],"the":[5,8,41,48,51,61,71,74,84,98,122,128,135,157,173,179],"1980s,":[6],"but":[7],"importance":[9],"of":[10,50,55,73],"Linux":[11,20,45,126,158],"was":[13],"not":[14,69,117],"taken":[15],"place":[17],"until":[18],"recently.":[19],"is":[22,34,46,97,132,160],"a":[23,38,53,88,112,149],"distinctive":[24],"world":[25],"compared":[26],"to":[27,133,142,146,177],"example":[28],"Microsoft":[29],"Windows":[30,75],"forensics.":[31],"Although":[32],"it":[33,86],"commonly":[35],"used":[36],"as":[37],"name":[39,49],"for":[40,91,124,148],"entire":[42],"operating":[43,76],"system,":[44,77,174],"just":[47],"kernel,":[52],"piece":[54],"software":[56],"that":[57],"handles":[58],"interactions":[59],"between":[60],"hardware":[62],"and":[63,107,137,171,175,181],"end-user":[64],"applications.":[65],"Its":[66],"popularity":[67,72],"has":[68],"reached":[70],"therefore,":[78],"without":[79],"many":[80,118],"reliable":[81],"tools":[82,120,180],"on":[83,121],"market,":[85],"represents":[87],"bigger":[89],"challenge":[90],"digital":[92,109],"investigators.":[94],"triage":[96],"process":[99],"in":[100,140],"which":[101,144],"an":[102],"investigator":[103],"collects,":[104],"assembles,":[105],"analyzes,":[106],"prioritizes":[108],"evidence":[110],"from":[111],"crime.":[113],"Since":[114],"there":[115],"are":[116],"available":[119],"market":[123],"performing":[125],"triage,":[127],"most":[129],"important":[130],"part":[131],"understand":[134,178],"tool":[136],"its":[138,163],"capabilities":[139],"order":[141],"know":[143],"one":[145,168],"use":[147],"certain":[150],"situation.":[151],"This":[152],"paper":[153],"will":[154],"describe":[155],"how":[156,166,176],"system":[159],"structured,":[161],"what":[162],"architecture":[164],"contains,":[165],"should":[167],"correctly":[169],"approach":[170],"acquire":[172],"results":[182],"they":[183],"provide.":[184]},"counts_by_year":[{"year":2025,"cited_by_count":1},{"year":2023,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}