hindsight
Sending your docker logs
Our great sponsors
| hindsight | Sending your docker logs | |
|---|---|---|
| 8 | - | |
| 1,014 | 1 | |
| - | - | |
| 5.3 | 0.0 | |
| about 1 month ago | over 4 years ago | |
| Python | Shell | |
| Apache License 2.0 | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
hindsight
-
Saving cached telegram messages from Edge
I guess it would work like any Chromium cache so first make a backup of your data %AppData%\Local\Microsoft\Edge\User Data\Default\ and use https://github.com/obsidianforensics/hindsight Telegram is encrypted so I don't know how this is going to be readable.
- Browser Login Data Dates Earlier than Laptop Date
- Lost/Erased Monsters in Vault Recovered - Chrome - GiffyGlyph's Monster Maker
-
QQT Browser History in CS for Detections at LEAST !?!? WIP ;)
Invoke-WebRequest -Uri "https://github.com/obsidianforensics/hindsight/releases/download/v2021.12/hindsight.exe" -OutFile "C:\windows\Temp\ftech_temp\hindsight.exe"
-
Forensic Tools for Browser Data
Try hindsight https://github.com/obsidianforensics/hindsight. If it fails due to the file being damaged try sqlitebrowser https://sqlitebrowser.org/dl/. If all else fails strings it!
- Forensic script ideas?
-
Evidence/ artifact for clearing chrome history?
There is a tool called Hightsight which used to pull this data out. Article about using it here. Although the emphasis is on used to pull this out. I haven't used that technique in years and I suspect it might not work on modern Chrome.
-
Help reading Chrome History file from 2010
Hindsight (https://github.com/obsidianforensics/hindsight) should be able to parse every version of Chrome, including the early ones (2009/2010).
Sending your docker logs
We haven't tracked posts mentioning Sending your docker logs yet.
Tracking mentions began in Dec 2020.
What are some alternatives?
timesketch - Collaborative forensic timeline analysis
security-onion - Security Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management
RELY - RELY (Name composed on project members Romy, Esther, Lucille and Yassir) is a python tool developed to help a Digital Forensics Triage procedure on some Microsoft Windows devices.
Octopussy - Octopussy - Open Source Log Management Solution
Logstash - Logstash - transport and process your logs, events, or other data
Echofish - Central syslog manager with whitelisting and ability to generate events from syslog entries
chrome_password_grabber - Get unencrypted 'Saved Password' from Google Chrome
Hindsight - Hindsight - light weight data processing skeleton
woanware.github.io
kibana - Your window into the Elastic Stack
Fluentd - Fluentd: Unified Logging Layer (project under CNCF)
Flume - Mirror of Apache Flume