mstoeck3/autopsy-flatpak
1
0
Fork 0
mirror of https://github.com/overcuriousity/autopsy-flatpak.git synced 2025-07-06 21:00:22 +00:00
Code Issues Packages Projects Releases Wiki Activity

reorganized NEWS

Browse Source
This commit is contained in:
Brian Carrier 2019-04-17 16:31:10 -04:00
parent b008eed1e1
commit 848e366808
1 changed files with 38 additions and 35 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

73
NEWS.txt
View File

@ -1,44 +1,47 @@
---------------- VERSION 4.10.0 -------------- ---------------- VERSION 4.11.0 --------------
New Features: New Features:
- Users can create portable cases, which allow a subset of case data to
be shared with another user. Adding Data:
- Ingest of a data source and subsequent generation of a CASE/UCO report can be - Hashes can optionally be entered when adding a disk image data source to a case.
driven by command line arguments. - Acquisition details can be stored when the data source is added.
- Video playback is now supported for significantly more video formats and the
viewer has additional controls.
- Users can rotate and zoom in on pictures displayed in the Application content Ingest Modules:
viewer for image files. - Added support for Microsoft Edge browser (cookies, history, and bookmarks)
- Added parsers for Microsoft Edge web browser data, Safari web browser data, - Added support for Safari web browser (downloads, cookies, history, and bookmarks)
Chrome cache files, Chrome auto fill data, Chrome login data, Firefox form - Expanded Chrome browser support to include cache parsing and form/auto fill.
history data, and zone identifiers. - Expanded Firefox browser support to extract form/auto fill fields.
- Developers of custom data source processor and ingest modules can now use a - Parse Zone.Identifier files to identify the source of files.
new file type that allows them to create files from a range of bytes in a data - Added a TSK_SOURCE artifact to downloaded files to help users trace back to where it came from.
source.
- HTML rendering support has been added to the Application and Message content
viewers.
- Users can view file contents in an external hex editor.
- Added support for parsing vCards (virtual cards). - Added support for parsing vCards (virtual cards).
- Case notes are included in the HTML report. - Extract more information about Windows user accounts (number of logins, creation date, and last login)
- Hashes can optionally be entered when adding a disk image data source to a - Detect more operating system types, which get saved as a TSK_OS_INFO artifact.
case. - Detect Android media cards, which gets saved as a TSK_DATA_SOURCE_USAGE artifact.
UI:
- The Application content viewer now displays HTML files.
- Video playback now uses gstreamer on 64-bit systems, which supports more video formats.
- Pictures can be rotated and zoomed in the Application content viewer.
- The Other Occurrences content viewer layout was reorganized to make viewing the data easier.
- New "Data Source Summary" panel shows high-level statistics and details about the data sources in the case.
- Data sources are now listed in the data sources tree in alphabetical order. - Data sources are now listed in the data sources tree in alphabetical order.
- Added a new window displaying summary data for a case and its data sources. - The presentation of finding common properties within a case was revised to group results in a more helpful way.
- Operating systems are detected and saved in the results.
- Android media cards are detected and recorded using data source usage
artifacts. Report / Export:
- Operating system account artifacts now have additional attributes extracted - Portable Cases can be created based on tagged data. These cases contain a subset of the case data and can be opened anywhere.
from Windows registry files: number of logins, creation date, and last login.
- Acquisition details are now stored and displayed for multiple data source
types.
- Users can now choose tabs or commas as the delimiter for a files report. - Users can now choose tabs or commas as the delimiter for a files report.
- Case notes are included in the HTML report.
Other:
- Added a new file type that allows module writers to specify a file based on its byte range.
- Data sources can be analyzed and have a CASE/UCO report generated using only the command line.
Bug Fixes: Bug Fixes:
- Decreased the time required to execute inter-case common properties searches - Decreased the time required to execute inter-case common properties searches of the Central Repository.
of the Central Repository.
- The presentation of intra-case common property search results was revised to
group results in a more helpful way.
- The Other Occurrences content viewer layout was reorganized to make viewing
the data easier.
- Assorted small bug fixes are included. - Assorted small bug fixes are included.