Does anyone know if there is a tool out there for grabbing useful information off a running linux box? I have been searching for trusted static tools but haven't been able to find much. Also if there was a script where I could run my trusted tools on the system and netcat it to another workstation.
There are many issues to consider, knight7.
1) The target Linux system, specifically the Linux kernel and libraries
2) The real and effective user IDs for the account either logged in or to which you have access to
3) The script
Scripting may not be the best approach. How the script handles errors and exceptions will be key. Further, time may be of the essence, and if you wait to review the output generated from a script the smoking gun may be gone. Unless you create different scripts for different scenarios generally one script won't apply for all scenarios. And a non-privileged user will have limited access to files and commands.
Cheers!
farmerdude