With LPI’s Help: Eilay Yosfan on Linux Skills for Cybersecurity

2025 Gennaio 29 - By Eilay Yosfan

I am Eilay Yosfan, a Threat Researcher at Security Joes, where my role involves analyzing and addressing complex security incidents across both Linux and Windows environments. During my career, I often found that my limited experience with Linux hindered my ability to fully investigate and understand Linux-specific incidents. This knowledge gap sometimes affected my capacity to extract and identify critical artifacts during investigations, sparking my desire to deepen my expertise in this domain.

LPI’s “Essentialses” as Work Tools

My search for comprehensive learning resources led me to the Linux Professional Institute (LPI). I was drawn to their structured certification path, which promised to build a solid foundation in Linux. Being meticulous by nature, I knew I had to start from the basics to ensure thorough understanding and mastery. I decided to pursue the Linux Essentials and Security Essentials certificates as my first steps.

Completing these certificates was an eye-opening experience. They equipped me with a better grasp of how Linux operates under the hood, including its processes, file systems, and security mechanisms. The coursework and the exams challenged me to become proficient not only in using Linux but also in understanding its deeper intricacies. These skills were invaluable when it came to interacting with and analyzing Linux systems, and they transformed my professional approach to threat research.

Beyond enhancing my investigative capabilities, these certificates had a notable impact on my development work. I am the author of MasterParser, an open-source DFIR tool hosted on Security Joes’s GitHub page. MasterParser is specifically designed for the analysis of Linux logs, focusing on the /var/log directory, and it is an integral part of my forensic toolkit. The knowledge I gained through my certifications greatly contributed to my ability to build and refine this tool, making it more effective for parsing and analyzing critical log data during incident response.

What next!?

Looking ahead, my journey with LPI is far from over. I am now preparing to tackle LPIC-1, the next level in LPI’s certification path. I am eager to continue developing my expertise, not only to enhance my technical skill set but also to become an even more capable Incident Responder, threat researcher, and contributor to the cybersecurity community.

By sharing my journey, I hope to inspire other professionals who may feel limited by gaps in their knowledge. The path to expertise is not always straightforward, but with dedication and the right resources, significant growth is possible.

About Eilay Yosfan:

Eilay Yosfan is a Threat Researcher, Incident Responder at Security Joes, YouTube filmmaker, and PowerShell Developer with a Jujitsu black belt—making him equally skilled at tackling threats in both the digital and physical worlds. Passionate about cybersecurity since the age of 14, he has developed DFIR tools like MasterParser and ForensicMiner, which have been showcased at events like Black Hat and CONFidence and are trusted by professionals across the industry.

Lascia un commento Annulla risposta

Linux Professional Institute è un’organizzazione senza scopo di lucro

Linux Professional Institute (LPI) è lo standard di certificazione globale e l’organizzazione di supporto alla carriera per i Professionisti Open Source. Con più di 250,000 titolari di Certificazione, è il primo e il più grande ente di Certificazione Open Source e Linux “vendor-neutral”. LPI ha professionisti certificati in oltre 180 Paesi, offre i suoi Esami in più lingue e ha centinaia di Partner di formazione in tutto il mondo.

La nostra missione è promuovere l’uso dell’Open Source supportando le persone che vi lavorano.