search

google / timesketch

Collaborative forensic timeline analysis
Apache License 2.0
2.58k stars 589 forks source link

Feature extraction for TI data in "Windows-Bits-Client" events #2873

Closed jkppr closed 1 year ago

jkppr commented 1 year ago

Adding feature extractions for URL & IP from "Windows-Bits-Client" events to allow for easy usage with the TI features. (collab with @itsmvd )