Revision as of 15:48, 21 March 2006

PyFlag is a web-based, database-backed forensic and log analysis GUI written in Python.

Features

Can it build timelines and search by creation date?

Originally started by the Australian Department of Defence, PyFlag is now hosted on SourceForge.

@@ Line 1: / Line 1: @@
-=PyFlag=
+'''PyFlag''' is a web-based, database-backed ''forensic and log analysis GUI'' written in [[Python]].
-"''FLAG (Forensic and Log Analysis GUI) was designed to simplify the process of log file analysis and forensic investigations. Often, when investigating a large case, a great deal of data needs to be analysed and correlated. PyFlag uses a database as a backend to assist in managing the large volumes of data. This allows PyFlag to remain responsive and expedite data manipulation operations''". --[http://pyflag.sourceforge.net/ PyFlag Website]
 =Features=
 ==File Systems Understood==
-(unknown)
 ==File Search Facilities==
@@ Line 20: / Line 15: @@
 Can it build timelines and search by creation date?
+* Creates a "case file".
 ==Searching Abilities==
@@ Line 28: / Line 24: @@
 ==Hash Databases==
-* Hashes and compares with Hashkeeper using MD5.
+* Hashes and compares with [[Hashkeeper]] using [[MD5]].
 ==Evidence Collection Features==
 =History=
-* Creates a "case file".
+* Originally started by the [[Australian Department of Defence]], PyFlag is now hosted on [[SourceForge]].
 ==License Notes==
-GNU GPL.
+* GNU GPL.
 = External Links =
-* [http://pyflag.sourceforge.net/ Website]
+* [http://pyflag.sourceforge.net/ Official website]
 ==External Reviews==