plaso
plaso copied to clipboard
log2timeline
Super timeline all the things
Improve vsftpd log parser * Extract pid and username * add support for xferlog_std_format xferlog_std_format is an alternative log format that can be used by vsftpd https://linux.die.net/man/5/vsftpd.conf Also see: *...
https://github.com/log2timeline/plaso/pull/4790 added a Mac OS background items plist parser plugin make the following enhancements * [ ] Add test for version 4, 7 or 8 - needs test file that...
## One line description of pull request Created parser for Apple IPS files as well as an IPS parser plugin for recoverylogd-[...].ips files. ## Description: Created parser for Apple IPS...
**Describe the problem:** When I run log2timeline with BrowserHistory artifact I dont get any results nor do I see any error. **To Reproduce:** Plaso Version: Latest: 20230717 OS Version; Ubuntu...
Add support for XML Plist files with signature: ``` ... ----BEGIN RSA SIGNATURE---- ```
## One line description of pull request Parser for events and activities exported from Microsoft 365 Defender portal. ## Description: - Created parser for events from Activity log. - Created...
``` /usr/lib64/python3.12/multiprocessing/popen_fork.py:66: DeprecationWarning: This process (pid=2333598) is multi-threaded, use of fork() may lead to deadlocks in the child. self.pid = os.fork() ```
Copied from [add multi volume support #109](https://github.com/log2timeline/plaso/issues/109) Change preprocessor and knowledge base to handle more than one system configuration * [ ] Have a closer look at https://github.com/log2timeline/plaso/issues/4781 * [...
**Describe the problem:** Commit fb0a7d415fa3ef6dcf6adb77f91e1e190ca6a3dc changed the error handling of preprocessor to only raise an exception when none of the sources were successfully pre-processed. However, the current implementation will actually...
