| Key | Value |
|---|---|
| FileName | ./usr/lib/python2.7/dist-packages/plaso/formatters/winevtx.py |
| FileSize | 2416 |
| MD5 | 5C21F2882C54E3048F6587285E8BD0C9 |
| SHA-1 | 042E202D0F88646825DA3ADD576F778A3788B19A |
| SHA-256 | 0C09A6686773236D8B586805ED984CF13DC87F2AEEF179E431C20BF10D6779AF |
| SSDEEP | 48:/HjcoeUBGFt80w4tnViyIuzWbGjuUeu9nLeE3NLNC7RpYVIsIL:1efFmGn9KG2Wp3NLI7PYVIsIL |
| TLSH | T16141DB33E8265859485B8A9FB2CC71819F2C22A3582039B3F9EC0C244F27D4A82F57A5 |
| tar:gname | bin |
| tar:uname | root |
| hashlookup:parent-total | 12 |
| hashlookup:trust | 100 |
The searched file hash is included in 12 parent files which include package known and seen by metalookup. A sample is included below:
| Key | Value |
|---|---|
| FileName | https://ftp.lysator.liu.se/pub/OpenBSD/6.1/packages//powerpc//plaso-1.5.1.tgz |
| MD5 | 7E77AFB8B1450E13B968B06FA78635EC |
| SHA-1 | FC5580F45C96B6085F71DE2B724DCF789FA94DAE |
| SHA-256 | C464492EE968B79B0BD4DF0EAED1CF59D9D349510DDBFCDCB68200108E681BA0 |
| SSDEEP | 49152:wTAcUuZU6C/kdGVY7uydSynzU7/XlXGdx6DYSzp+RR+kudJp2jE9oeIOQTZhK:wUalC/kcau2nQbXZGdx6DYSFAM1np2fg |
| TLSH | T132D533CF492D3DA5CE283262A4832C4C84491D11D53EF85B8E445F869E534793BAEFAF |
| Key | Value |
|---|---|
| FileName | https://ftp.lysator.liu.se/pub/OpenBSD/6.2/packages//amd64//plaso-1.5.1.tgz |
| MD5 | 95D528260904C45865A6B27681869A77 |
| SHA-1 | C3D0CB8FEC8956328DFB4F14F740D571B1F6B526 |
| SHA-256 | 40A5B7A744AEC7073C071DBCA89368707B89CFD532B636E09D10A2F03606A84F |
| SSDEEP | 49152:9twpAcouZU6C/YOSmKIjoYN0dSynzU7/XlXGdx6DYSzp+RR+kudJp2jE9oeIOQTW:9t1mlC/YUDjanQbXZGdx6DYSFAM1np2Y |
| TLSH | T1BBD533CF486D3DA58E1863A3F4871D5CC55A1A00D12AF8274E402F869E5347E3BADE9F |
| Key | Value |
|---|---|
| FileName | https://ftp.lysator.liu.se/pub/OpenBSD/6.1/packages//i386//plaso-1.5.1.tgz |
| MD5 | 76A4798EDC2C012EE32802357ADFD83C |
| SHA-1 | C82B5C7CC5B516E5AC0D071ADD7219914A6BB170 |
| SHA-256 | FFDD139CAFB28B317745905A20ABF3A40B8D556F80B48134A0FBB6BDE73255DF |
| SSDEEP | 49152:JjAcUuZU6C/kdGVY7uydSynzU7/XlXGdx6DYSzp+RR+kudJp2jE9oeIOQTZhK:JEalC/kcau2nQbXZGdx6DYSFAM1np2fg |
| TLSH | T172D533CF4A2D3DE5CE283262E4832C4CC4491911D52EF8178E455B869E534793BAEFAF |
| Key | Value |
|---|---|
| FileName | https://ftp.lysator.liu.se/pub/OpenBSD/6.1/packages//mips64el//plaso-1.5.1.tgz |
| MD5 | 059BECAFD205B915983B91882B3517FA |
| SHA-1 | 48DD9253877D7E3FB62DA6ECDC76D65BFC2CFB00 |
| SHA-256 | 655877A341079B141D1B16637ED7156F3BC8DBAD9A19523E6AE4C6F65EDB7CC6 |
| SSDEEP | 49152:R+5AcouZU6C/YOSmKIjoYN0dSynzU7/XlXGdx6DYSzp+RR+kudJp2jE9oeIOQTZ0:R+imlC/YUDjanQbXZGdx6DYSFAM1np2Y |
| TLSH | T150D533CA49793DA58E186263F4871D5CC5991D00D12EF8274E402F87AE4387A3BADE9F |
| Key | Value |
|---|---|
| FileName | https://ftp.lysator.liu.se/pub/OpenBSD/6.1/packages//mips64//plaso-1.5.1.tgz |
| MD5 | 2AFE3EE9232B59FDAC9F748E1441B930 |
| SHA-1 | 049189C49FBD59AD5E7DA8C3F89D10F8406631C5 |
| SHA-256 | 12778E4DD7A01FEB2EA9E79E36D5A93DB0DF1FDFF8770C5153F610F4DB1B3A52 |
| SSDEEP | 49152:a+PpAcouZU6C/YOSmKIjoYN0dSynzU7/XlXGdx6DYSzp+RR+kudJp2jE9oeIOQTW:aEymlC/YUDjanQbXZGdx6DYSFAM1np2Y |
| TLSH | T113D533CF49693DA68E143263F4831D5CC5990900D52AF8278E405F869E9387E3BA9FDF |
| Key | Value |
|---|---|
| FileSize | 1152318 |
| MD5 | 489165EF904D557A38BC3DE5E2F6C30E |
| PackageDescription | super timeline all the things Plaso (plaso langar að safna öllu) is the Python based back-end engine used by tools such as log2timeline for automatic creation of a super timelines. The goal of log2timeline (and thus plaso) is to provide a single tool that can parse various log files and forensic artifacts from computers and related systems, such as network equipment to produce a single correlated timeline. This timeline can then be easily analysed by forensic investigators/analysts, speeding up investigations by correlating the vast amount of information found on an average computer system. |
| PackageMaintainer | Debian Forensics <forensics-devel@lists.alioth.debian.org> |
| PackageName | plaso |
| PackageSection | admin |
| PackageVersion | 1.5.1+dfsg-3 |
| SHA-1 | D4701E9729E9BB05720F88A2EBB0930511CC6CE3 |
| SHA-256 | 9D46642FDF86FA8C9D23AEC0A8FFCA58E1F590E747F2A92B0D38327EA5947765 |
| Key | Value |
|---|---|
| FileName | https://ftp.lysator.liu.se/pub/OpenBSD/6.2/packages//alpha//plaso-1.5.1.tgz |
| MD5 | 6F9E6F0E18765CD90F6D0927B4962088 |
| SHA-1 | 0965FE6DD4C73B54B14836149652E52468744C63 |
| SHA-256 | A7C0EB7E990CFF9933B3B92A22163DC8938EAAD3030370752C31D9862CCE692E |
| SSDEEP | 49152:BNnAcouZU6C/YOSmKIjoYN0dSynzU7/XlXGdx6DYSzp+RR+kudJp2jE9oeIOQTZ0:gmlC/YUDjanQbXZGdx6DYSFAM1np2fpK |
| TLSH | T141D533CF49793DA58E1822A3B4831D5CC55A1D00D12EFC274E406F46AE5387E3BA9E9F |
| Key | Value |
|---|---|
| FileName | https://ftp.lysator.liu.se/pub/OpenBSD/6.1/packages//sparc64//plaso-1.5.1.tgz |
| MD5 | 4535FA18D0235C697F08943EA430C982 |
| SHA-1 | B8DA038F80A6A1B3D144B447C49A0E548F746F4E |
| SHA-256 | 631B364481B0923E89DDABE73775CD2BE26F4211DE6C0B0DA723F21B87C4833A |
| SSDEEP | 49152:l3buAcouZU6C/YOSmKIjoYN0dSynzU7/XlXGdx6DYSzp+RR+kudJp2jE9oeIOQTW:JbZmlC/YUDjanQbXZGdx6DYSFAM1np2Y |
| TLSH | T12DD533CE49393D958E187263F4831D5CC55A1901D12FF8274E402F86AE9783E3BA9E9F |
| Key | Value |
|---|---|
| FileName | https://ftp.lysator.liu.se/pub/OpenBSD/6.1/packages//amd64//plaso-1.5.1.tgz |
| MD5 | B245945ECE3E05496CAEDE8B0F83646D |
| SHA-1 | 13836D8E27BF465B30555A16EE86C40BB5B1CEB3 |
| SHA-256 | 5A98C01C102C84F535139C6A845071ECDA132165E2B0C67C08D8A7B748B955F4 |
| SSDEEP | 49152:SDAcouZU6C/YOSmKIjoYN0dSynzU7/XlXGdx6DYSzp+RR+kudJp2jE9oeIOQTZhK:SkmlC/YUDjanQbXZGdx6DYSFAM1np2fg |
| TLSH | T132D533CE59693D958E183263F8831D5CC59A1900D12BF8174E402F869E9387E3BA9FDF |
| Key | Value |
|---|---|
| FileName | https://ftp.lysator.liu.se/pub/OpenBSD/6.2/packages//arm//plaso-1.5.1.tgz |
| MD5 | 054C4C6B435AD905337A8759B60D946D |
| SHA-1 | 328CC422CA3E563BA2D22D938A596ECAC9602A34 |
| SHA-256 | F0B6F4382E6D92FE73FA406D1388A968629E8804806548640D7DEF20A51AF26D |
| SSDEEP | 49152:qcQHPAcUuZU6C/kdGVY7uydSynzU7/XlXGdx6DYSzp+RR+kudJp2jE9oeIOQTZhK:qcQH4alC/kcau2nQbXZGdx6DYSFAM1nt |
| TLSH | T1B3D533CF492D3DA5CE243262A4832D4CC5491901D13EF8678E415F869E538793BAAFEF |
| Key | Value |
|---|---|
| FileName | https://ftp.lysator.liu.se/pub/OpenBSD/6.1/packages//arm//plaso-1.5.1.tgz |
| MD5 | 77175F7195A129EF81722C84D581379C |
| SHA-1 | F9BFA97B2FF09C09029B0D91F49251D993F660AF |
| SHA-256 | 9AF6575EC9C6449B193B16735499E09055E69340B0993546C4EB6E029E1F99A9 |
| SSDEEP | 49152:nnAcUuZU6C/kdGVY7uydSynzU7/XlXGdx6DYSzp+RR+kudJp2jE9oeIOQTZhK:nAalC/kcau2nQbXZGdx6DYSFAM1np2fg |
| TLSH | T109D533CF4D283DA58E143363A4832D4CC4991901D12EF8274E455B969E5387E3FAAFAF |
| Key | Value |
|---|---|
| FileSize | 1149400 |
| MD5 | C4EA486A6C1C7CCDB455AD8BB700868B |
| PackageDescription | super timeline all the things Plaso (plaso langar að safna öllu) is the Python based back-end engine used by tools such as log2timeline for automatic creation of a super timelines. The goal of log2timeline (and thus plaso) is to provide a single tool that can parse various log files and forensic artifacts from computers and related systems, such as network equipment to produce a single correlated timeline. This timeline can then be easily analysed by forensic investigators/analysts, speeding up investigations by correlating the vast amount of information found on an average computer system. |
| PackageMaintainer | Ubuntu Developers <ubuntu-devel-discuss@lists.ubuntu.com> |
| PackageName | plaso |
| PackageSection | admin |
| PackageVersion | 1.5.1+dfsg-4 |
| SHA-1 | FE97D5FB74D5278AA1145E2576F49E22D6080B64 |
| SHA-256 | B927F12765CF509361C23EA1B68D3D7466D01FAB40F9A5454F24B3A78D23B530 |