Difference between revisions of "PyFlag"
From Forensics Wiki
Uwe Hermann (Talk | contribs) m (Reverted edit of Porker, changed back to last version by Uwe Hermann) |
Uwe Hermann (Talk | contribs) (Infobox and categories.) |
||
| Line 1: | Line 1: | ||
| + | {{Infobox_Software | | ||
| + | name = PyFlag | | ||
| + | maintainer = [[Michael Cohen]], [[David Collett]] | | ||
| + | os = {{Linux}}, {{Web-based}} | | ||
| + | genre = {{Analysis}} | | ||
| + | license = {{GPL}} | | ||
| + | website = [http://pyflag.sourceforge.net/ pyflag.sf.net] | | ||
| + | }} | ||
| + | |||
| + | |||
'''PyFlag''' is a web-based, database-backed ''forensic and log analysis GUI'' written in [[Python]]. | '''PyFlag''' is a web-based, database-backed ''forensic and log analysis GUI'' written in [[Python]]. | ||
| Line 33: | Line 43: | ||
==License Notes== | ==License Notes== | ||
| − | |||
| − | |||
= External Links = | = External Links = | ||
| − | |||
| − | |||
==External Reviews== | ==External Reviews== | ||
Revision as of 11:27, 6 May 2006
| PyFlag | |
|---|---|
| Maintainer: | Michael Cohen, David Collett |
| OS: | Linux,Web-based |
| Genre: | Analysis |
| License: | GPL |
| Website: | pyflag.sf.net |
PyFlag is a web-based, database-backed forensic and log analysis GUI written in Python.
Contents |
Features
File Systems Understood
File Search Facilities
- Lists allocated and unallocated files.
- Sorts files by type.
- Searches for keywords.
- Works with compressed zip files.
Historical Reconstruction
Can it build timelines and search by creation date?
- Creates a "case file".
Searching Abilities
- Searches for keywords.
- Builds an index.
Hash Databases
- Hashes and compares with Hashkeeper using MD5.
Evidence Collection Features
History
- Originally started by the Australian Department of Defence, PyFlag is now hosted on SourceForge.
