plaso
plaso copied to clipboard
log2timeline
Super timeline all the things
## One line description of pull request Add SQLite parser for iOS Accounts (Accounts3.sqlite) file ## Description: I add/edit several files: - Add import ios_accounts to plaso/parsers/sqlite_plugins/__init__.py - Add a...
## One line description of pull request Add iOS IMO HD chat message custom parser plugin ## Description: In this pull request I add several files : • Add file...
## One line description of pull request Add SQLite parser for android burners app (burners.sqlite) file ## Description: I add/edit several files: - add import android_burners to plaso/parsers/sqlite_plugins/init.py - add...
I've observed that Plaso does not process the Registry's transaction logs. As a result, any recent changes made to the registry are not captured by Plaso, potentially omitting crucial information...
Background Intelligent Transfer Service (BITS) is used for persistence. Two sources: Microsoft-Windows-Bits-Client/(Microsoft-Windows-Bits-Client/Operational.evtx AND qmgr[??].dat REF: https://www.secureworks.com/blog/malware-lingers-with-bits
Hi ! Six was a comatibility layer used to have a billingual Python 2+3 codebase https://wiki.debian.org/Python3-six-removal
Added a new Plist plugin parser for extracting known WiFi network details from iOS devices. ## Description: This pull request introduces a new Plist plugin parser specifically for the `com.apple.wifi.known-networks.plist`...
## One line description of pull request Add a JPEG EXIF parser ## Description: Parses basic EXIF data from JPEG images. It seems introducing new dependencies isn't exactly encouraged due...
Ran a few scanners against vanilla IIS running in Windows Server 2022 and made sure everything parses. Details: ## Iteration 1 ``` **************************** Extraction warning: 0 ***************************** Message : unable...
