-
Taken from the Plaso - Roadmap and Assignment
-
The filter file is currently used to indicate which paths should be included in extraction, however a recurring feature request is to be able to exclude paths from extraction.
Change filter file fo…
-
Currently Cisco ASA Logfiles cannot be processed. See example file attached.
[cisco_ASA_example.log](https://github.com/log2timeline/plaso/files/11452716/cisco_ASA_example.log)
-
**Description of problem:**
Consider this scenario that I created on a test image:
1. \Folder1 is created (file reference: 38-1)
2. \Folder1\File1.txt is created (file reference: 42-1)
3. The $F…
-
The `verifier.py` script outputs "`Match!`" lines for good records. I think this is low-utility information, and possibly counter-productive. If a file is overwhelmingly good records, there are two …
-
Originally from https://github.com/log2timeline/plaso/issues/518
use libpff
-
**Is your feature request related to a problem? Please describe.**
Some hosts produce very large plaso data sets. As an example, a domain controller produced nearly 18 million parsed events when proc…
-
cdqr --max_cpu --nohash in:/tmp/cfreds_2015_data_leakage_pc.E01 out:/tmp/results-mormanual
Fails with a "pyewf_handle_read_buffer" error, but running the same command from inside the docker contain…
-
**Describe the problem:**
When running psort against a log2timeline-generated plaso file, message strings from the a custom winevt-rc.db database are applied only to a minority of Event Logs record…
-
Trying to push a codereview for https://github.com/juju4/plaso/tree/exim
followed https://github.com/log2timeline/plaso/wiki/Codereview
from my fork directory and feature branch
```
$ ./utils/re…
juju4 updated
6 years ago