Rare-Tech/tools-of-the-trade-linux-sql

# 🐧 Tools of the Trade — Linux & SQL Security Lab ## 🧠 Scenario A mid-sized organization relies on Linux systems and a database to store and manage user login data and security logs. Recently, the security team suspects unauthorized access attempts and abnormal login activity within the system. As a **Junior Cybersecurity Analyst**, you have been assigned to investigate system logs using Linux commands and SQL queries to identify suspicious behavior and potential security threats. ## 🎯 Project Objectives Use Linux commands to explore system logs Filter and analyze login activity Identify failed and successful login attempts Use SQL queries to extract security-related data Detect suspicious patterns in system activity Document findings and security recommendations ## 🛠️ Tools Used Linux Terminal Bash Commands SQL Queries GitHub Log files # 📊 Security Investigation Report ## 🔍 Findings * Multiple failed login attempts detected * Repeated access attempts from suspicious locations * Normal login activity from trusted users ## ⚠️ Risks Identified * Possible brute-force attack * Unauthorized access attempts * Weak authentication controls ## 🛡️ Recommendations * Enable Multi-Factor Authentication (MFA) * Monitor logs regularly * Restrict access from high-risk locations * Implement account lockout policy