Skip to content
Sections
>> Trisquel >> 套件 >> etiona >> admin >> plaso
etiona  ] [  aramo  ]
[ 原始碼: plaso  ]

套件: plaso (1.5.1+dfsg-4)

super timeline all the things

Plaso (plaso langar að safna öllu) is the Python based back-end engine used by tools such as log2timeline for automatic creation of a super timelines. The goal of log2timeline (and thus plaso) is to provide a single tool that can parse various log files and forensic artifacts from computers and related systems, such as network equipment to produce a single correlated timeline. This timeline can then be easily analysed by forensic investigators/analysts, speeding up investigations by correlating the vast amount of information found on an average computer system.

其他與 plaso 有關的套件

  • 依賴
  • 推薦
  • 建議
  • dep: ipython (>= 1.2.1)
    Enhanced interactive Python 2 shell
  • dep: python
    interactive high-level object-oriented language (default version)
  • dep: python-artifacts (>= 20150409)
    knowledge base of forensic artifacts (Python 2)
  • dep: python-binplist (>= 0.1.4)
    binary property list parser module
  • dep: python-bittorrent
    Scatter-gather network file transfer
  • dep: python-construct.legacy
    legacy fork of declarative binary data parser/builder (Python 2)
    或者 python-construct (<< 2.8)
    powerful declarative parser (and builder) for binary data
  • dep: python-crypto (>= 2.6.0)
    cryptographic algorithms and protocols for Python
  • dep: python-dateutil (>= 1.5)
    powerful extensions to the standard Python datetime module
  • dep: python-dfdatetime (>= 20160319)
    Digital Forensics date and time library for Python 2
  • dep: python-dfvfs (>= 20160803)
    Digital Forensics Virtual File System
  • dep: python-dfwinreg (>= 20160320)
    Digital Forensics Windows Registry library for Python 2
  • dep: python-dpkt (>= 1.8)
    Python packet creation / parsing module for basic TCP/IP protocols
  • dep: python-efilter (>= 1.5)
    EFILTER query language (Python 2)
  • dep: python-hachoir-core (>= 1.3.3)
    Core of Hachoir framework: parse and edit binary files
  • dep: python-hachoir-metadata (>= 1.3.3)
    Program to extract metadata using Hachoir library
  • dep: python-hachoir-parser (>= 1.3.4)
    Package of Hachoir parsers used to open binary files
  • dep: python-libbde (>= 20140531)
    BitLocker Drive Encryption access library -- Python 2 bindings
  • dep: python-libesedb (>= 20150409)
    Extensible Storage Engine DB access library -- Python 2 bindings
  • dep: python-libevt (>= 20120410)
    Windows Event Log (EVT) format access library -- Python 2 bindings
  • dep: python-libevtx (>= 20141112)
    Windows XML Event Log format access library -- Python 2 bindings
  • dep: python-libewf (>= 20131210)
    support for Expert Witness Compression format -- Python bindings
  • dep: python-libfsntfs (>= 20151130)
    NTFS access library -- Python 2 bindings
  • dep: python-libfvde (>= 20160719)
    FileVault Drive Encryption access library -- Python 2 bindings
  • dep: python-libfwnt (>= 20160418)
    Windows NT data type library -- Python 2 bindings
  • dep: python-libfwsi (>= 20150606)
    Windows Shell Item format access library -- Python 2 bindings
  • dep: python-liblnk (>= 20150830)
    Windows Shortcut File format access library -- Python 2 bindings
  • dep: python-libmsiecf (>= 20150314)
    Microsoft Internet Explorer Cache File access library -- Python 2 bindings
  • dep: python-libolecf (>= 20151223)
    OLE2 Compound File format access library -- Python 2 bindings
  • dep: python-libqcow (>= 20131204)
    QEMU Copy-On-Write image format access library -- Python 2 bindings
  • dep: python-libregf (>= 20150315)
    Windows NT Registry File (REGF) format access library -- Python 2 bindings
  • dep: python-libscca (>= 20151226)
    Windows Prefetch File access library -- Python 2 bindings
  • dep: python-libsigscan (>= 20150627)
    binary signature scanning library -- Python 2 bindings
  • dep: python-libsmdev (>= 20140529)
    storage media device access library -- Python 2 bindings
  • dep: python-libsmraw (>= 20140612)
    split RAW image format access library -- Python 2 bindings
  • dep: python-libvhdi (>= 20131210)
    Virtual Hard Disk image format access library -- Python 2 bindings
  • dep: python-libvmdk (>= 20140421)
    VMWare Virtual Disk format access library -- Python 2 bindings
  • dep: python-libvshadow (>= 20160109)
    Volume Shadow Snapshot format access library -- Python 2 bindings
  • dep: python-libvslvm (>= 20160109)
    Linux LVM volume system format access library -- Python 2 bindings
  • dep: python-pefile
    Portable Executable (PE) parsing module for Python
  • dep: python-protobuf
    Python bindings for protocol buffers
  • dep: python-psutil (>= 1.2.1)
    module providing convenience functions for managing processes
  • dep: python-pyparsing (>= 2.0.3)
    alternative to creating and executing simple grammars - Python 2.7
  • dep: python-requests (>= 2.2.1)
    elegant and simple HTTP library for Python2, built for human beings
  • dep: python-six (>= 1.1.0)
    Python 2 and 3 compatibility library (Python 2 interface)
  • dep: python-tsk (>= 20160721)
    Python Bindings for The Sleuth Kit
  • dep: python-tz
    Python version of the Olson timezone database
  • dep: python-xlsxwriter (>= 0.9.3)
    Python module for creating Excel XLSX files
  • dep: python-yaml (>= 3.10)
    YAML parser and emitter for Python
  • dep: python-yara (>= 3.4.0)
    Python 2 bindings for YARA
  • dep: python-zmq (>= 2.1.11)
    Python bindings for 0MQ library

下載 plaso

下載可用於所有硬體架構的
硬體架構 套件大小 安裝後大小 檔案
all 1,122.5 kB9516 kB [文件列表]