| Key | Value |
|---|---|
| FileName | ./usr/share/plaso/presets.yaml |
| FileSize | 2994 |
| MD5 | 7852119367E1CA35B5B345888BDF611F |
| SHA-1 | 02C04DF8111ACD9F7E21C0F92D7D12A150960629 |
| SHA-256 | 69A1D838D02CAA14CB5593C336E670E7276677E5862ED86E16C7F5D52CD49244 |
| SSDEEP | 48:XokPVgnIRGZBlRyI/NYtwRMwREZHPFbnzUyEIOkGDO1dJ9+PI6T6:YkUIR0RyI/K6RMwoHPJnzUjIqObKI1 |
| TLSH | T1F35101C6577D214DBEDB49C7ED2B32C34A11DA32E957504ABED210143D62DBB432E4D2 |
| hashlookup:parent-total | 2 |
| hashlookup:trust | 60 |
The searched file hash is included in 2 parent files which include package known and seen by metalookup. A sample is included below:
| Key | Value |
|---|---|
| FileSize | 1206424 |
| MD5 | 87BB636A81D6E1D7AC70CFE628C884F8 |
| PackageDescription | super timeline all the things -- Python 3 Plaso (plaso langar að safna öllu) is the Python based back-end engine used by tools such as log2timeline for automatic creation of a super timelines. The goal of log2timeline (and thus plaso) is to provide a single tool that can parse various log files and forensic artifacts from computers and related systems, such as network equipment to produce a single correlated timeline. This timeline can then be easily analysed by forensic investigators/analysts, speeding up investigations by correlating the vast amount of information found on an average computer system. . This package contains a Plaso installation for Python 3. |
| PackageMaintainer | Ubuntu Developers <ubuntu-devel-discuss@lists.ubuntu.com> |
| PackageName | python3-plaso |
| PackageSection | python |
| PackageVersion | 20201007-2 |
| SHA-1 | 4D2B219E1B08F0A5EF044865A2546F9E9247AE10 |
| SHA-256 | B64BC9C0A5204C7517786C27B38251604C2AB0B751AE7C0A052A496BECDF01DC |
| Key | Value |
|---|---|
| FileSize | 1208268 |
| MD5 | D5C7EA35008FAE7868E11014004514E5 |
| PackageDescription | super timeline all the things -- Python 3 Plaso (plaso langar að safna öllu) is the Python based back-end engine used by tools such as log2timeline for automatic creation of a super timelines. The goal of log2timeline (and thus plaso) is to provide a single tool that can parse various log files and forensic artifacts from computers and related systems, such as network equipment to produce a single correlated timeline. This timeline can then be easily analysed by forensic investigators/analysts, speeding up investigations by correlating the vast amount of information found on an average computer system. . This package contains a Plaso installation for Python 3. |
| PackageMaintainer | Debian Security Tools <team+pkg-security@tracker.debian.org> |
| PackageName | python3-plaso |
| PackageSection | python |
| PackageVersion | 20201007-2 |
| SHA-1 | D469D75B95ACD17A373F34BEA1B8CF22EEB8B78A |
| SHA-256 | F29534D03D32B8527F19C9FF42A88F1D1E04A6B20AF224FF58AA28F0A2296AEA |