search

sepinf-inc / IPED

IPED Digital Forensic Tool. It is an open source software that can be used to process and analyze digital evidence, often seized at crime scenes by law enforcement or in a corporate investigation by private examiners.
Other
884 stars 209 forks source link

Document the meaning of each timeline event #2131

Open lfcnassif opened 3 months ago

lfcnassif commented 3 months ago

Also asked by users today, this would be really important. Could be done in our wiki.

patrickdalla commented 3 months ago

Good. But some parsers will parse time events which the meaning is not previously known. For example, sqlite split PR extract timestamps giving the table column name where it was found as the event name. So, it would be also good that these meanings could be shared in some colaborative sort, as soon as some IPED user discover its detailed meaning.

Em dom., 17 de mar. de 2024, 13:51, Luis Filipe Nassif < @.***> escreveu:

Also asked by users today, this would be really important. Could be done in our wiki.

— Reply to this email directly, view it on GitHub https://github.com/sepinf-inc/IPED/issues/2131, or unsubscribe https://github.com/notifications/unsubscribe-auth/AG247S35JPSM4GPJPN3AUD3YYXJYRAVCNFSM6AAAAABE2MLYKSVHI2DSMVQWIX3LMV43ASLTON2WKOZSGE4TANZYGM3DGMA . You are receiving this because you are subscribed to this thread.Message ID: @.***>

lfcnassif commented 3 months ago

Sure @patrickdalla! Our wiki is publicly editable. Of course we could add meanings for known events.