Revision as of 11:57, 16 April 2006

PyFlag is a web-based, database-backed forensic and log analysis GUI written in Python.

Features

Can it build timelines and search by creation date?

Originally started by the Australian Department of Defence, PyFlag is now hosted on SourceForge.

@@ Line 1: / Line 1: @@
-Man shot dead at vehicle checkpoint
+'''PyFlag''' is a web-based, database-backed ''forensic and log analysis GUI'' written in [[Python]].
-A man has been shot dead by police at a vehicle checkpoint in Northern Ireland. Officers fired a number of rounds during the incident on Church Street in Ballynahinch, County Down. The man shot dead was the
+=Features=
+==File Systems Understood==
+==File Search Facilities==
+* Lists allocated and unallocated files.
+* Sorts files by type.
+* Searches for keywords.
+* Works with compressed zip files.
+==Historical Reconstruction==
+Can it build timelines and search by creation date?
+* Creates a "case file".
+==Searching Abilities==
+* Searches for keywords.
+* Builds an index.
+==Hash Databases==
+* Hashes and compares with [[Hashkeeper]] using [[MD5]].
+==Evidence Collection Features==
+=History=
+* Originally started by the [[Australian Department of Defence]], PyFlag is now hosted on [[SourceForge]].
+==License Notes==
+* GNU GPL
+= External Links =
+* [http://pyflag.sourceforge.net/ Official website]
+==External Reviews==