Difference between revisions of "PyFlag"

From ForensicsWiki
Jump to: navigation, search
m (Pyflag moved to PyFlag)
m
Line 34: Line 34:
 
==License Notes==
 
==License Notes==
  
* GNU GPL.
+
* GNU GPL
  
 
= External Links =
 
= External Links =

Revision as of 15:55, 21 March 2006

PyFlag is a web-based, database-backed forensic and log analysis GUI written in Python.

Features

File Systems Understood

File Search Facilities

  • Lists allocated and unallocated files.
  • Sorts files by type.
  • Searches for keywords.
  • Works with compressed zip files.

Historical Reconstruction

Can it build timelines and search by creation date?

  • Creates a "case file".

Searching Abilities

  • Searches for keywords.
  • Builds an index.

Hash Databases

Evidence Collection Features

History

License Notes

  • GNU GPL

External Links

External Reviews