mstoeck3/autopsy-flatpak
1
0
Fork 0
mirror of https://github.com/overcuriousity/autopsy-flatpak.git synced 2025-07-17 10:17:41 +00:00
Code Issues Packages Projects Releases Wiki Activity
33,151 Commits 1 Branch 0 Tags
Commit Graph

373 Commits

Author SHA1 Message Date
Mark McKinnon
3c8f91dfa2 Update ExtractRegistry.java 
Check for empty string and if it is empty do not add the attribute.

Format the block of code.
 2021-10-21 10:23:04 -04:00
Richard Cordovano
0c1a44ca2f 7673 ngest infrastructure documentation improvements 2021-10-19 14:54:18 -04:00
Kelly Kelly
0c7d5ea51d Added some comments to stripRelativeIdentifierFromSID 2021-10-14 16:53:56 -04:00
Kelly Kelly
89da42a27b Added a SAMId list to extractRegistry 2021-10-14 13:44:22 -04:00
Brian Carrier
c5a2e808b4
Update ExtractRegistry.java 2021-09-29 12:28:42 -04:00
Kelly Kelly
2906ce2401 Implemented new logic to determine if an account is in a domain realm 2021-09-28 18:46:10 -04:00
Kelly Kelly
4ad1d0f4c9 First pass 2021-09-28 17:15:04 -04:00
Kelly Kelly
0e89366339 Simplfied addAccountInstance method on ExtractRegisty 2021-09-28 15:24:41 -04:00
Kelly Kelly
b7796a15c7 fixed RA instance issue 2021-09-28 11:58:09 -04:00
Richard Cordovano
c75fff5268 7332 new Blackboard method sig, Recent Activity submits arts to pipeline 2021-07-22 10:32:04 -04:00
Kelly Kelly
f749d54a08 Fixed os account realm issues 2021-07-07 17:30:31 -04:00
Mark McKinnon
3e05c44679 Merge remote-tracking branch 'upstream/develop' into 7682-Store-Acccount-IDs-and-Applications-in-CR 2021-06-21 10:22:17 -04:00
Mark McKinnon
f98f6d80ff TSK_INSTALLED_PROG Added to CR 
TSK_INSTALLED_PROG added to CR
Table added to CR for TSK_INSTALLED_PROG
Upgrade CR if older version to add TSK_INSTALLED_PROG
 2021-06-17 09:48:44 -04:00
apriestman
c9950dd660 Merge remote-tracking branch 'upstream/develop' into 7629_fileManager 2021-06-14 13:06:38 -04:00
apriestman
c2eb9a7179 Remove unnecessary path checks 2021-06-10 12:48:08 -04:00
apriestman
5a1879217c Use more efficient version of findFiles() 2021-06-10 10:03:00 -04:00
Mark McKinnon
4feb6e187c Changed code to support encoded characters 
Change code to support encoded characters from regripper and reading them from regripper output file.
 2021-06-08 09:10:48 -04:00
Mark McKinnon
ae0d95b089 Update ExtractRegistry.java 
Check length of Tokens after split, if they are not greater than 2 then skip trying to parse the token.
 2021-05-30 10:12:21 -04:00
Richard Cordovano
ad439b6bd7
Merge pull request #6958 from gdicristofaro/7317-dataArtifacts 
7317 data artifacts
 2021-05-20 16:37:51 -04:00
Mark McKinnon
2f5790c2fe Update ExtractRegistry.java 
Install date from regripper is UTC time, when it is parsed it does not recognize a timezone so it defaults to current timezone of pc, or that appears to happen.  When  UTC timezone added to parse it stores the epoch time correctly.
 2021-05-15 22:19:41 -04:00
Greg DiCristofaro
b9ab67c689 merge from develop 2021-05-13 07:59:32 -04:00
Greg DiCristofaro
c9dd573e61 fixes 2021-05-06 15:20:57 -04:00
Kelly Kelly
6b39909199 Added method header 2021-05-06 14:22:13 -04:00
Kelly Kelly
a46bbb81a3 Fixed RA NPE 2021-05-06 14:19:26 -04:00
Greg DiCristofaro
6cad9fe539 extract fixes 2021-05-06 12:49:00 -04:00
Greg DiCristofaro
fe30187808 Merge branch 'develop' of github.com:sleuthkit/autopsy into 7317-dataArtifacts 2021-05-04 10:15:58 -04:00
Mark McKinnon
243ffb8745 Update ExtractRegistry.java 
Add update of domain for user
 2021-04-29 09:43:08 -04:00
Greg DiCristofaro
1d2b460b8c removing newArtifact and newBlackboardArtifact from autopsy 2021-04-28 11:16:32 -04:00
Mark McKinnon
173495627e Remove ParseDomainHost 
Remove the parse registry hive.
Remove Parse Domain method
 2021-04-28 10:11:10 -04:00
Richard Cordovano
700df92ae6
Merge pull request #6923 from markmckinnon/7528-Error-in-Processing-Registry-File-possibly-still-open-in-another-process 
7528-Error-in-Processing-Registry-File-possibly-still-open-in-another-process
 2021-04-15 14:46:40 -04:00
Mark McKinnon
1f8a48055f Update ExtractRegistry.java 
Add domain to beginning of the file name to make it unique to avoid other processes not being able to write to the file.
 2021-04-15 10:42:44 -04:00
Richard Cordovano
c2c0253e41
Merge pull request #6886 from kellykelly3/7480-fix-timeline-filters 
7480 - Changed RA to use TSK_DELETED_PROG artifact for unistalled programs
 2021-04-14 16:28:36 -04:00
Richard Cordovano
6fb8069cbb
Merge pull request #6915 from markmckinnon/7525-Searching-For-registry-key-returns-error-if-no-found 
7525-Searching-For-registry-key-returns-error-if-no-found
 2021-04-14 14:32:24 -04:00
Mark McKinnon
216985fe4e Update ExtractRegistry.java 
Add check for zero length file and ignore it if it is.
 2021-04-13 20:59:31 -04:00
Mark McKinnon
30edb0a53d Handle key not found exception and realm scope 
Handle key not found exception
Fix check for realm scope when creating user.
 2021-04-13 16:42:15 -04:00
Kelly Kelly
9866a75d75 Merge branch 'develop' into 7480-fix-timeline-filters 2021-04-13 14:17:53 -04:00
Greg DiCristofaro
eea0ddb810 updates to RA temp path 2021-04-12 10:04:35 -04:00
Mark McKinnon
bf8bd5012d Update ExtractRegistry.java 
add check for domain is empty
 2021-04-09 10:24:02 -04:00
Mark McKinnon
84a190fd32 Update ExtractRegistry.java 
Add break to jump out when we found what we want.
 2021-04-08 14:42:46 -04:00
Mark McKinnon
31ac5fb061 Merge remote-tracking branch 'upstream/develop' into 7453-populate-osaccount-realm-name 2021-04-07 15:47:09 -04:00
Kelly Kelly
1640fbf793 Changed RA to use TSK_DELETED_PROG artifact for unistalled programs 2021-04-07 15:07:20 -04:00
Mark McKinnon
2111e343d4 Add Registry Class and Revert Realmname back in OsAccounts 
Move code from ExtractRegistry to its own class to get registry information.
Revert the change from OsAccounts back to orginal.
 2021-04-06 14:36:16 -04:00
Greg DiCristofaro
22619ed2da Merge branch 'develop' of github.com:sleuthkit/autopsy into 7447-apiChanges 2021-04-06 13:56:05 -04:00
Mark McKinnon
3d561de60c Revert "Add Registry Class and Revert Realmname back in OsAccounts" 
This reverts commit 9337f72d0e156e7153fc6a5ab92ff6c57008a5b4.
 2021-04-06 13:45:23 -04:00
Mark McKinnon
9337f72d0e Add Registry Class and Revert Realmname back in OsAccounts 
Move code from ExtractRegistry to its own class to get registry information.
Revert the change from OsAccounts back to oirginal.
 2021-04-06 13:45:02 -04:00
Richard Cordovano
82a24d47d7
Merge pull request #6847 from raman-bt/4251-osaccount-update-philosophy 
4251: Reconcile different OsAccount update philosophies.
 2021-04-06 12:23:53 -04:00
Mark McKinnon
722a2eef8b Merge remote-tracking branch 'upstream/develop' into 7453-populate-osaccount-realm-name 2021-04-06 09:36:34 -04:00
Greg DiCristofaro
d5772c0725 api changes 2021-04-05 09:39:55 -04:00
Raman Arora
55424a82fe Addressed more review comments 
- renamed update account methods
 - renamed AccountUpdateStatus and AccountUpdateResult
 - Made OsAccountAttribute an inner class of OsAccount.
 2021-04-05 08:39:49 -04:00
Raman Arora
ad2b69e5b7 Renamed AccountUpdateStatusEnum/AccountUpdateStatus to AccountUpdateStatus/AccountUpdateResult. 2021-04-03 01:40:24 -04:00