- Notifications
You must be signed in to change notification settings - Fork0
Lyro1/image_analysis
Folders and files
| Name | Name | Last commit message | Last commit date | |
|---|---|---|---|---|
Repository files navigation
A little forensic tool to analyse files from an ISO image.
Image Analysis provides 3 scripts that allows you to perform the following actions:
- Get a clean and working setup ofLog2Timeline Plaso on a Debian 9 running system.
- Generate the.plaso and the.csv files from an ISO image with
log2timeline.pyandpsort.py. - Get list of those files and filter them based on a trusted database of good files, using
nsrllookup.
Image Analysis is a package of scripts that have been developped forDebian 9 devicesonly. We do not guarantee that those scripts will work on any other OS. If you want to use those on other OS, you may have to modify the scripts. If you do so, please submit aPull Request so that we can add your scripts to the repository and potentialy help other people.
The scripts provided by Image Analysis are autonomus. If your device does not have the required softwares, the scripts will automatically get them before executing their original process. This means that you don't have to worry about some prerequisites to run those scripts.
For a detailed explanation on each script usage, please read theWiki pages of each scripts.
About
A little tool to get files from an ISO image and analyse potential threats