ForensicsWiki will continue to operate as it has before and will not be shutting down. Thank you for your continued support of ForensicsWiki.

Difference between revisions of "PyFlag"

From ForensicsWiki
Jump to: navigation, search
(Infobox and categories.)
(fix website)
Line 5: Line 5:
 
   genre = {{Analysis}} |
 
   genre = {{Analysis}} |
 
   license = {{GPL}} |
 
   license = {{GPL}} |
   website = [http://pyflag.sourceforge.net/ pyflag.sf.net] |
+
   website = [http://www.pyflag.net/ pyflag.net] |
 
}}
 
}}
  

Revision as of 23:17, 14 March 2007

PyFlag
Maintainer: Michael Cohen, David Collett
OS: Linux,Web-based
Genre: Analysis
License: GPL
Website: pyflag.net


PyFlag is a web-based, database-backed forensic and log analysis GUI written in Python.

Features

File Systems Understood

File Search Facilities

  • Lists allocated and unallocated files.
  • Sorts files by type.
  • Searches for keywords.
  • Works with compressed zip files.

Historical Reconstruction

Can it build timelines and search by creation date?

  • Creates a "case file".

Searching Abilities

  • Searches for keywords.
  • Builds an index.

Hash Databases

Evidence Collection Features

History

License Notes

External Links

External Reviews