| Key | Value |
|---|---|
| FileName | ./usr/lib/python3/dist-packages/plaso/parsers/msiecf.py |
| FileSize | 15144 |
| MD5 | 4E08DAA828ADC923BF4E6D6BD448C522 |
| SHA-1 | 0137A949199D0F699BE9CC15892F7B7E6761F725 |
| SHA-256 | 33B03C032AD42BC2ED2E5540919ACC009EA05155902D6043F8527897D0AF8716 |
| SSDEEP | 192:dSmMYB1ePoIAsChkUrax3hfzQraPiw5hhEMTeS/+UGV92hGXuIc:dAY4Urax35Qraq8eS/+UGVs4M |
| TLSH | T19062414BB94270638287FA4D5A896D435338E687DB494A343D9D8E183F12C15E2F7BE8 |
| hashlookup:parent-total | 2 |
| hashlookup:trust | 60 |
The searched file hash is included in 2 parent files which include package known and seen by metalookup. A sample is included below:
| Key | Value |
|---|---|
| FileSize | 1206424 |
| MD5 | 87BB636A81D6E1D7AC70CFE628C884F8 |
| PackageDescription | super timeline all the things -- Python 3 Plaso (plaso langar að safna öllu) is the Python based back-end engine used by tools such as log2timeline for automatic creation of a super timelines. The goal of log2timeline (and thus plaso) is to provide a single tool that can parse various log files and forensic artifacts from computers and related systems, such as network equipment to produce a single correlated timeline. This timeline can then be easily analysed by forensic investigators/analysts, speeding up investigations by correlating the vast amount of information found on an average computer system. . This package contains a Plaso installation for Python 3. |
| PackageMaintainer | Ubuntu Developers <ubuntu-devel-discuss@lists.ubuntu.com> |
| PackageName | python3-plaso |
| PackageSection | python |
| PackageVersion | 20201007-2 |
| SHA-1 | 4D2B219E1B08F0A5EF044865A2546F9E9247AE10 |
| SHA-256 | B64BC9C0A5204C7517786C27B38251604C2AB0B751AE7C0A052A496BECDF01DC |
| Key | Value |
|---|---|
| FileSize | 1208268 |
| MD5 | D5C7EA35008FAE7868E11014004514E5 |
| PackageDescription | super timeline all the things -- Python 3 Plaso (plaso langar að safna öllu) is the Python based back-end engine used by tools such as log2timeline for automatic creation of a super timelines. The goal of log2timeline (and thus plaso) is to provide a single tool that can parse various log files and forensic artifacts from computers and related systems, such as network equipment to produce a single correlated timeline. This timeline can then be easily analysed by forensic investigators/analysts, speeding up investigations by correlating the vast amount of information found on an average computer system. . This package contains a Plaso installation for Python 3. |
| PackageMaintainer | Debian Security Tools <team+pkg-security@tracker.debian.org> |
| PackageName | python3-plaso |
| PackageSection | python |
| PackageVersion | 20201007-2 |
| SHA-1 | D469D75B95ACD17A373F34BEA1B8CF22EEB8B78A |
| SHA-256 | F29534D03D32B8527F19C9FF42A88F1D1E04A6B20AF224FF58AA28F0A2296AEA |