mirror of
https://github.com/Ponce/slackbuilds
synced 2024-11-25 10:03:03 +01:00
994bd188d5
Signed-off-by: Dave Woodfall <dave@slackbuilds.org> Signed-off-by: Willy Sudiarto Raharjo <willysr@slackbuilds.org>
14 lines
739 B
Text
14 lines
739 B
Text
plaso (Forensic Super-Timeline)
|
|
|
|
Plaso is the Python based back-end engine used by tools such as
|
|
log2timeline for automatic creation of a super timelines. The goal of
|
|
log2timeline (and thus plaso) is to provide a single tool that can parse
|
|
various log files and forensic artifacts from computers and related
|
|
systems, such as network equipment to produce a single correlated
|
|
timeline. This timeline can then be easily analysed by forensic
|
|
investigators/analysts, speeding up investigations by correlating the
|
|
vast amount of information found on an average computer system.
|
|
|
|
Please pay close attention to the build order for plaso and its
|
|
requirements (particularly dfvfs). Read the README files and do NOT
|
|
rely on automated package tools.
|