btop is a modern resource monitor with a beautiful TUI interface. Installation, configuration, comparison with htop, and practical tips.

Volatility 3 — the rewritten RAM analysis framework. No more profiles, new linux.* plugin syntax, installation, and a practical incident analysis example.

Introduction to Volatility — a framework for analyzing RAM dumps. Profiles, plugins, and a practical example of analyzing a compromised Linux server.

What is Wazuh and how to use it for Linux server security monitoring. FIM, vulnerability detection, log analysis, Active Response, and Suricata integration.

What is Suricata and how it works as a next-generation IDS/IPS engine. Installation, rule configuration, and operating modes — passive (IDS) and inline (IPS).

How LKRG (Linux Kernel Runtime Guard) works — a kernel module protecting against rootkits and privilege escalation exploits. Installation and comparison with Grsecurity.

How to use ftrace and trace-cmd to trace function calls inside the Linux kernel. Configuration, usage examples, and performance diagnostics.

How to use the dmesg command to diagnose hardware, driver, and boot issues in Linux. Practical examples of filtering and analyzing kernel log messages.

How to use strace to trace system calls of processes in Linux. Attaching to running processes, filtering, and practical debugging examples.

A review of the 5 essential Linux performance monitoring tools: top, htop, vmstat, iostat, and ss. How to read CPU, memory, disk, and network metrics.