mirror of
https://github.com/overcuriousity/autopsy-flatpak.git
synced 2025-07-06 21:00:22 +00:00
Light editing of 4.19.0 release notes
This commit is contained in:
Richard Cordovano
parent
e88f0c0966
commit
071b5f4e62
32
NEWS.txt
32
NEWS.txt
@ -5,18 +5,18 @@ Data Source Management:
|
||||
- The main tree viewer can be configured to group by person and host.
|
||||
|
||||
OS Accounts:
|
||||
- Operating System (OS) accounts and realms are their own data types and not generic artifacts.
|
||||
- Operating System (OS) accounts and realms are their own data types and no longer generic artifacts.
|
||||
- OS Accounts are created for Windows accounts found in the registry. Domain-scoped realms are not fully detected yet.
|
||||
- NTFS files are associated with OS Accounts by SID.
|
||||
- The Recent Activity module associates artifacts with OS Accounts based on SID or path of database. Other modules still need to be updated.
|
||||
- OS accounts appear in a dedicated sub-tree of the main tree view and their properties can be viewed in the results view.
|
||||
- A new content viewer in the lower right area of the main window was built to display OS account data for the item selected in the result view.
|
||||
- A new content viewer in the lower right area of the main window was built to display OS account data for the item selected in the results view.
|
||||
|
||||
Analysis Result and Data Artifacts
|
||||
- All modules make either Analysis Results or Data Artifacts instead of “Blackboard Artifacts”
|
||||
- New “Analysis Result” content viewer shows the results for a given file and its score
|
||||
- The table shows an icon for the aggregate score of a file.
|
||||
- The tree organizes results into Analysis Results and Data Artifacts instead of simply “Results”.
|
||||
- All modules make either Analysis Results or Data Artifacts instead of “Blackboard Artifacts.”
|
||||
- New “Analysis Result” content viewer shows the results for a given file and its score.
|
||||
- The tabular results viewer shows an icon for the aggregate score of a file.
|
||||
- The tree organizes results into "Analysis Results" and "Data Artifacts" instead of simply “Results.”
|
||||
|
||||
Discovery UI:
|
||||
- Domain categorization and account types are displayed in Domain Discovery results.
|
||||
@ -28,7 +28,7 @@ Ingest Modules:
|
||||
- Parsing of iLEAPP and aLEAPP output was expanded to create communication relationships which can be displayed in the Communications UI.
|
||||
- EML email parsing handles EML messages that are attachments (and have their own attachments).
|
||||
- Domain categorization within Recent Activity can be customized by user-defined rules that can be imported and exported.
|
||||
- Account IDs and Installed Applications are added to the Central Repository
|
||||
- Account IDs and Installed Applications are added to the Central Repository.
|
||||
- Keyword search can be configured to only do OCR and skip non-OCR files.
|
||||
|
||||
Miscellaneous:
|
||||
@ -39,30 +39,28 @@ Miscellaneous:
|
||||
- Added option to only perform optical character recognition on certain file types.
|
||||
- Heap dumps can be saved to a custom location.
|
||||
- More detailed error messages about encrypted disks when they are added.
|
||||
- Added file size filter to Ingest Filters
|
||||
- Added file size filter to Ingest Filters.
|
||||
|
||||
Performance:
|
||||
- Keyword search does not make an explicit commit for each report if ingest is running.
|
||||
- Language ID is performed on a small subset of a file instead of the entire file
|
||||
- Recent Activity is more efficient because of TSK changes to file searching (using extension)
|
||||
- Embedded file extractor module is faster by doing file typing in memory and adding in batches.
|
||||
- Moved Content Viewers setNode() code and isSupported()/isPreferred() to background threads.
|
||||
- Language ID is performed on a small subset of a file instead of the entire file.
|
||||
- Recent Activity is more efficient because of TSK changes to file searching (using extension).
|
||||
- Embedded file extractor module has been made faster by doing file typing in memory and adding extracted files in batches.
|
||||
- Moved Content Viewers setNode() and isSupported()/isPreferred() code to background threads.
|
||||
- Moved Data Source Summary Panel population code to background threads.
|
||||
- Moved Node/Tree queries to background threads.
|
||||
|
||||
Bug Fixes:
|
||||
- Fixed embedded file extractor file name escaping bug.
|
||||
- Detect VHD files by signature and not extension
|
||||
- Detect VHD files by signature and not extension.
|
||||
- Fixed iLEAPP path error.
|
||||
- Content viewers UIs are more consistent
|
||||
- Content viewers UIs are more consistent.
|
||||
- Assorted bug fixes are included.
|
||||
|
||||
Auto Ingest:
|
||||
- The Auto Ingest Dashboard is resizable.
|
||||
- Get thread dumps from AID
|
||||
- Added beta Pause feature that pauses auto ingest for a set amount of time.
|
||||
|
||||
|
||||
- Added beta pause feature that pauses auto ingest for a set amount of time at a scheduled date and time.
|
||||
|
||||
---------------- VERSION 4.18.0 --------------
|
||||
Keyword Search:
|
||||
|
||||
Loading…
x
Reference in New Issue
Block a user