ports

security/plaso

plaso-1.5.1 – engine and tools to automate creation of super timeline

Description

plaso is a Python-based framework for computer forensic analysis. It can read
files from many types of filesystem and volume image, has parsers for a huge
number of file types across multiple platforms, and tools to deal with this
information, in particular log2timeline which can use this to produce a single
correlated timeline from a system.

WWW: https://github.com/log2timeline/plaso/wiki

Categories:
lang/python security

Library dependencies

None

Build dependencies

Run dependencies