Linux Endpoint Investigation