beagle
timesketch
Our great sponsors
| beagle | timesketch | |
|---|---|---|
| 1 | 2 | |
| 1,250 | 2,485 | |
| - | 1.2% | |
| 0.0 | 8.7 | |
| over 1 year ago | 6 days ago | |
| Python | Python | |
| MIT License | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
beagle
timesketch
-
Custom DFIR
Want to put those processed plaso files in an elasticsearch instance check out Timesketch - https://github.com/google/timesketch.
- Any Timeline self hosted types of software?
What are some alternatives?
evtx-hunter - evtx-hunter helps to quickly spot interesting security-related activity in Windows Event Viewer (EVTX) files.
plaso - Super timeline all the things
dfirtrack - DFIRTrack - The Incident Response Tracking Application
WELA - WELA (Windows Event Log Analyzer): The Swiss Army knife for Windows Event Logs! ゑ羅(ウェラ)
dfir-orc - Forensics artefact collection tool for systems running Microsoft Windows
TimelineJS - TimelineJS: A Storytelling Timeline built in JavaScript.
Kuiper - Digital Forensics Investigation Platform
hindsight - Web browser forensics for Google Chrome/Chromium
RELY - RELY (Name composed on project members Romy, Esther, Lucille and Yassir) is a python tool developed to help a Digital Forensics Triage procedure on some Microsoft Windows devices.
MalConfScan - Volatility plugin for extracts configuration data of known malware
AzureHunter - A Cloud Forensics Powershell module to run threat hunting playbooks on data from Azure and O365
mac_apt - macOS (& ios) Artifact Parsing Tool