-
It would be useful to be able to have pre-built schemas for common tool outputs, such as from Volatility modules, Eric Zimmerman's suite of tools, popular open-source forensics tools (AmcacheParser, a…
-
Im getting exception when running `./bin/autopsy`. Have followed the steps for running on Linux.
Debian 10 and Java 8 from BellSoft.
Java Warnings:
```
OpenJDK 64-Bit Server VM warning: Op…
-
We should consider ways to categorize/group CybOX Objects, to make it easier for content producers and consumers to define which set(s) of Objects they support.
One possibility is to use tags - from…
-
Hi,
It would be nice to have a possibility to check for encoded strings, data or code.
Just a quick look gives me:
https://github.com/hwhw/base64finder
https://digital-forensics.sans.org/blog/2013/0…
-
### User Story
As a Security Operations Analyst I need to be able to detect events such as data loss, malicious activity, and undertake security forensics on data transmitted over the network.
My …
-
**Is this a BUG REPORT or FEATURE REQUEST?**:
BUG
**What happened**:
When submitting a PodCheckpoint, if the name is long (>63 characters) then the PodCheckpoint will fail to process.
```
{"l…
-
Bluecheck output should be fully parsed by Logstash, and alarms should be made. Data is sent to dedicated bluecheck-* index
- [x] Create logstash filter rule for Bluecheck Certcheck (check for TLS …
-
When doing forensics / debugging on slog data, with nestedEvaluate, we had this handy kludge for getting a name from a bundle:
```python
EPRE = re.compile(r'const entrypoint = "([^"]+)"')
```
-…
dckc updated
11 months ago
-
URL you wish to be added:
https://www.inmobi.com/
Why you believe this should be added:
It is an adserver
Add to list:
Ads
Other info you think we should know:
N/A
-
### What problem does this feature solve?
The "Lines" section does not have any tools to help indicate sequence of events in a chronology. Understanding the correct order of events is fundamental to …