VM-Packages icon indicating copy to clipboard operation
VM-Packages copied to clipboard
verified publisher icon mandiant

Package proposal: autopsy.vm

Open day1player opened this issue 2 years ago • 4 comments

Package Name

autopsy.vm

Tool Name

Autopsy

Package type

GITHUB_REPO

Is the tool a console application?

false

Tool's version number

4.21.0

Category

Forensic

Tool's authors

Sleuthkit

Tool's description

Autopsy is a digital forensics platform and graphical interface to The Sleuth Kit and other digital forensics tools.

Download URL

https://github.com/sleuthkit/autopsy/releases/download/autopsy-4.21.0/autopsy-4.21.0-64bit.msi

Download SHA256 Hash

abcdef1234567890

Why is this tool a good addition?

Requested by a Commando VM user

day1player avatar Oct 19 '23 15:10 day1player

I would like to pass the decision for this one onto @mandiant/flare-vm, I'm not familiar with the tool

day1player avatar Oct 19 '23 19:10 day1player

It's a great tool for forensics, but I don't necessarily see it as part of FLARE VM (in the context of malware/binary analysis).

mr-tz avatar Oct 20 '23 07:10 mr-tz

Ok yeah that would probably make more sense for commando then, since we would want to inspect the system for forensics after payload detonation or some ttp testing.. Sounds good, I will look into it then :)

day1player avatar Oct 20 '23 15:10 day1player

This issue can be closed (see #782) @Ana06

naacbin avatar Dec 24 '23 17:12 naacbin