mstoeck3/autopsy-flatpak
1
0
Fork 0
mirror of https://github.com/overcuriousity/autopsy-flatpak.git synced 2025-07-17 02:07:42 +00:00
Code Issues Packages Projects Releases Wiki Activity
8,542 Commits 1 Branch 0 Tags
Commit Graph

131 Commits

Author SHA1 Message Date
sidheshenator
d8f3f35dfe silently ignore shellfolders registry datatype 2015-08-03 14:46:11 -04:00
Nick Davis
5df5f7ff17 Marked some strings with NON-NLS 2015-02-18 19:26:29 -05:00
APriestman
a0349b3fb7 Removed reference to TSK_PROCESSOR_NAME from RecentActivity. 2015-01-29 08:40:10 -05:00
APriestman
8ac91c2cb8 Combine OS attributes found in the registry. 2015-01-23 13:30:27 -05:00
APriestman
fe62624541 Updated RecentActivity to use RegRipper 2.8. 
Added additional RegRipper modules to support STIX data.
Stopped RecentActivity IE parser from generating empty user accounts.
 2014-12-03 14:21:14 -05:00
Brian Carrier
1cfbda53d7 Changed Regripper to make an Autopsy report instead of TOOL_OUTPUT to make it easier to use 2014-11-18 14:39:36 -05:00
Richard Cordovano
caff69063d Make sure the correct reg ripper copy is run by the recent activity module 2014-11-07 17:44:38 -05:00
Richard Cordovano
2562cd684e Fix typos in recent activity module 2014-11-06 22:04:23 -05:00
Richard Cordovano
cb01eb40cd Make recent activity module cancellable 2014-11-06 21:14:26 -05:00
esaunders
6b7380f2d0 Replace NUL bytes in RegRipper output with spaces. If we don't do this the XML parser will fail. 2014-11-05 16:55:29 -05:00
Eamonn Saunders
780d40971d - Modified ExtractRegistry.java to attach Windows version info to TSK_OS_INFO artifact instead of TSK_INSTALLED_PROGRAM. 
- Added new icon for "Operating System Information" to UI and Report.
- Added TSK_OS_INFO artifact to report.
 2014-10-15 16:31:12 -04:00
Eamonn Saunders
d276f54077 Added a new RegRipper plugin to determine processor architecture and modified ExtractRegistry.java to create a new TSK_OS_INFO artifact with a single TSK_PROCESSOR_ARCHITECTURE attribute. 2014-10-14 13:18:12 -04:00
Brian Carrier
e5230e5a79 Reduce database round trips in registry parsing code 2014-07-28 13:52:38 -04:00
Brian Carrier
e5026a108b Changed uses of Java loggger to Autopsy logger 2014-07-10 17:13:40 -04:00
Brian Carrier
ce69ad93fa Ensure USB make is in proper place even if initial entries don't specify it 2014-06-16 14:57:20 -04:00
Brian Carrier
f91c53fe3e Merge branch 'develop' of github.com:sleuthkit/autopsy into develop 2014-06-06 11:14:24 -04:00
Brian Carrier
1924ff4750 stop executils when it is not needed anymore. Remove stop method from recent activity since it is no longer needed. 2014-06-06 11:14:15 -04:00
Brian Carrier
26e01a6cb0 Merge branch 'develop' of github.com:sleuthkit/autopsy into develop 2014-06-05 23:24:03 -04:00
Brian Carrier
bd2f97da4c Allow DS modules to supply sub-title of progress bar and updated RecentActivity to use it 2014-06-05 23:23:54 -04:00
Brian Carrier
1d3b1dab67 USB device parser adds vendor name when product code isn't known 2014-05-30 00:20:51 -04:00
Nick Davis
85083eeaac RecentActivity - Added NON-NLS tags to hardcoded strings not needing National Language Support. 2014-04-22 15:52:40 -04:00
Richard Cordovano
1431d12a90 Eliminated duplication of ingest job cancellation check methods 2014-04-10 17:10:08 -04:00
Brian Carrier
4206ab4a10 Fixed device ID lookup error, updated device mapping file, renamed class 2014-04-07 16:06:46 -04:00
Richard Cordovano
4f8617a16a Tidied up ingest framework API 2014-03-26 17:12:24 -04:00
Richard Cordovano
ff0b814225 Merged develop into new ingest framework feature branch 2014-03-19 10:51:58 -04:00
Richard Cordovano
e99925fb7d Check in current state of new ingest framework for safekeeping 2014-03-17 17:45:59 -04:00
Richard Cordovano
302655d5bf Continued work on ingest framework in 3.1 form 2014-03-11 01:29:58 -04:00
Nick Davis
7be84916b0 Pulled strings into Bundle. 
Created _ja.
Added org.openide.utils to project.xml for NbBundle dep.
 2014-03-03 13:51:27 -05:00
Richard Cordovano
0c7b2664ab Make compilable first version of minimal new ingest infrastructure 2014-02-26 17:54:33 -05:00
raman-bt
c1d90f878f Defined IngestModuleException that an ingest module may throw if init() fails. 2014-02-21 13:10:47 -05:00
Brian Carrier
4692715fc2 Reduced RecentActivity API via making veriables private and reducing scope of classes. Also removed dead enums 2014-01-15 23:43:23 -05:00
Brian Carrier
8834123cb4 changed order of attributes for web artifacts, marked 2 unused classes as deprecated 2013-10-27 00:21:31 -04:00
Brian Carrier
2d80d2ee21 normalized timestamps in registry analysis, updated reports 2013-10-26 23:37:48 -04:00
Brian Carrier
6767cc42ab renamed autopsy rr plugin for ntuser to be more consistent 2013-10-26 21:19:19 -04:00
Brian Carrier
08e324a635 more comment updates 2013-10-26 20:35:15 -04:00
Brian Carrier
f9485d3ba2 Minor cleanup and comments 2013-10-25 23:07:26 -04:00
Jeff Wallace
b2d7c471bf Renamed parseReg method to be more specific parseAutopsyPluginOutput. 2013-10-21 11:50:04 -04:00
Jeff Wallace
ab88536b5e Merge https://github.com/sleuthkit/autopsy into recentActivityFixes 2013-10-17 14:24:18 -04:00
Jeff Wallace
e393c31789 Fixed errors during parsing of regripper output. 2013-10-17 14:05:21 -04:00
Jeff Wallace
ba3d35fa09 Updated error checking 2013-10-03 12:23:11 -04:00
Jeff Wallace
f63a3eab7f Added error messages when registry extraction / parsing fails 2013-10-02 15:46:37 -04:00
Brian Carrier
d4840fcf0a Improved artifact viewer and such to make regripper output easier to read in the raw output form. 2013-07-16 14:13:16 -04:00
Brian Carrier
f1aa4441fe Better deal with write failures in RecentActivity. Use more specialized temp/output folders 2013-07-16 11:41:11 -04:00
Brian Carrier
87f68da53c Run regripper full on registry hives and post to blackboard. Removed old rr code in third party since it is not used 2013-07-16 10:50:29 -04:00
Smoss
672e8af76e Made reccomended changes to ExtractUSB and ExtractRegistry. 
Signed-off-by: Smoss <Smoss117@gmail.com>
 2013-06-26 17:44:31 -04:00
Smoss
c83f4c744c Updated USBExtraction 2013-06-11 19:04:24 -04:00
Smoss
5ea8ed18cd Made changes to ExtractUSB method and class names and behavior. 2013-06-11 15:24:46 -04:00
Sean-M
4f7911fc9e Merge commit 
Signed-off-by: Sean-M <Smoss117@gmail.com>
 2013-06-11 15:00:13 -04:00
adam-m
565e01a9cf adjust fuzzy query (no logic/result change) 2013-06-10 17:14:13 -04:00
adam-m
fbe2dd76eb Changed image-level ingest to data-source Content-level ingest. 
Related changes, such as FileManager API adjustments and fixes in client code.
Simplifications in RecentActivity logic to get files per current data source (no need to use deprecated method)
 2013-06-07 18:49:59 -04:00