mstoeck3/autopsy-flatpak
1
0
Fork 0
mirror of https://github.com/overcuriousity/autopsy-flatpak.git synced 2025-07-16 09:47:42 +00:00
Code Issues Packages Projects Releases Wiki Activity
10,515 Commits 1 Branch 0 Tags
Commit Graph

136 Commits

Author SHA1 Message Date
Nick Davis
df24391d6f Merge branch 'develop' of github.com:sleuthkit/autopsy into 1501-ja-recentactivity 2016-01-29 11:40:09 -05:00
Nick Davis
900269d62c Fixed mis-spelling of NON-NLS tags. 2016-01-27 17:01:16 -05:00
Oliver Spohngellert
1c99f0b614 Got rid of bad constructor usage 2016-01-27 14:00:57 -05:00
Eugene Livis
73a5d53561 Added artifact indexing to recent activity module 2015-11-10 14:08:51 -05:00
Karl Mortensen
332a08f07d Bulk format code with new settings 2015-08-07 13:23:40 -04:00
sidheshenator
d8f3f35dfe silently ignore shellfolders registry datatype 2015-08-03 14:46:11 -04:00
Nick Davis
5df5f7ff17 Marked some strings with NON-NLS 2015-02-18 19:26:29 -05:00
APriestman
a0349b3fb7 Removed reference to TSK_PROCESSOR_NAME from RecentActivity. 2015-01-29 08:40:10 -05:00
APriestman
8ac91c2cb8 Combine OS attributes found in the registry. 2015-01-23 13:30:27 -05:00
APriestman
fe62624541 Updated RecentActivity to use RegRipper 2.8. 
Added additional RegRipper modules to support STIX data.
Stopped RecentActivity IE parser from generating empty user accounts.
 2014-12-03 14:21:14 -05:00
Brian Carrier
1cfbda53d7 Changed Regripper to make an Autopsy report instead of TOOL_OUTPUT to make it easier to use 2014-11-18 14:39:36 -05:00
Richard Cordovano
caff69063d Make sure the correct reg ripper copy is run by the recent activity module 2014-11-07 17:44:38 -05:00
Richard Cordovano
2562cd684e Fix typos in recent activity module 2014-11-06 22:04:23 -05:00
Richard Cordovano
cb01eb40cd Make recent activity module cancellable 2014-11-06 21:14:26 -05:00
esaunders
6b7380f2d0 Replace NUL bytes in RegRipper output with spaces. If we don't do this the XML parser will fail. 2014-11-05 16:55:29 -05:00
Eamonn Saunders
780d40971d - Modified ExtractRegistry.java to attach Windows version info to TSK_OS_INFO artifact instead of TSK_INSTALLED_PROGRAM. 
- Added new icon for "Operating System Information" to UI and Report.
- Added TSK_OS_INFO artifact to report.
 2014-10-15 16:31:12 -04:00
Eamonn Saunders
d276f54077 Added a new RegRipper plugin to determine processor architecture and modified ExtractRegistry.java to create a new TSK_OS_INFO artifact with a single TSK_PROCESSOR_ARCHITECTURE attribute. 2014-10-14 13:18:12 -04:00
Brian Carrier
e5230e5a79 Reduce database round trips in registry parsing code 2014-07-28 13:52:38 -04:00
Brian Carrier
e5026a108b Changed uses of Java loggger to Autopsy logger 2014-07-10 17:13:40 -04:00
Brian Carrier
ce69ad93fa Ensure USB make is in proper place even if initial entries don't specify it 2014-06-16 14:57:20 -04:00
Brian Carrier
f91c53fe3e Merge branch 'develop' of github.com:sleuthkit/autopsy into develop 2014-06-06 11:14:24 -04:00
Brian Carrier
1924ff4750 stop executils when it is not needed anymore. Remove stop method from recent activity since it is no longer needed. 2014-06-06 11:14:15 -04:00
Brian Carrier
26e01a6cb0 Merge branch 'develop' of github.com:sleuthkit/autopsy into develop 2014-06-05 23:24:03 -04:00
Brian Carrier
bd2f97da4c Allow DS modules to supply sub-title of progress bar and updated RecentActivity to use it 2014-06-05 23:23:54 -04:00
Brian Carrier
1d3b1dab67 USB device parser adds vendor name when product code isn't known 2014-05-30 00:20:51 -04:00
Nick Davis
85083eeaac RecentActivity - Added NON-NLS tags to hardcoded strings not needing National Language Support. 2014-04-22 15:52:40 -04:00
Richard Cordovano
1431d12a90 Eliminated duplication of ingest job cancellation check methods 2014-04-10 17:10:08 -04:00
Brian Carrier
4206ab4a10 Fixed device ID lookup error, updated device mapping file, renamed class 2014-04-07 16:06:46 -04:00
Richard Cordovano
4f8617a16a Tidied up ingest framework API 2014-03-26 17:12:24 -04:00
Richard Cordovano
ff0b814225 Merged develop into new ingest framework feature branch 2014-03-19 10:51:58 -04:00
Richard Cordovano
e99925fb7d Check in current state of new ingest framework for safekeeping 2014-03-17 17:45:59 -04:00
Richard Cordovano
302655d5bf Continued work on ingest framework in 3.1 form 2014-03-11 01:29:58 -04:00
Nick Davis
7be84916b0 Pulled strings into Bundle. 
Created _ja.
Added org.openide.utils to project.xml for NbBundle dep.
 2014-03-03 13:51:27 -05:00
Richard Cordovano
0c7b2664ab Make compilable first version of minimal new ingest infrastructure 2014-02-26 17:54:33 -05:00
raman-bt
c1d90f878f Defined IngestModuleException that an ingest module may throw if init() fails. 2014-02-21 13:10:47 -05:00
Brian Carrier
4692715fc2 Reduced RecentActivity API via making veriables private and reducing scope of classes. Also removed dead enums 2014-01-15 23:43:23 -05:00
Brian Carrier
8834123cb4 changed order of attributes for web artifacts, marked 2 unused classes as deprecated 2013-10-27 00:21:31 -04:00
Brian Carrier
2d80d2ee21 normalized timestamps in registry analysis, updated reports 2013-10-26 23:37:48 -04:00
Brian Carrier
6767cc42ab renamed autopsy rr plugin for ntuser to be more consistent 2013-10-26 21:19:19 -04:00
Brian Carrier
08e324a635 more comment updates 2013-10-26 20:35:15 -04:00
Brian Carrier
f9485d3ba2 Minor cleanup and comments 2013-10-25 23:07:26 -04:00
Jeff Wallace
b2d7c471bf Renamed parseReg method to be more specific parseAutopsyPluginOutput. 2013-10-21 11:50:04 -04:00
Jeff Wallace
ab88536b5e Merge https://github.com/sleuthkit/autopsy into recentActivityFixes 2013-10-17 14:24:18 -04:00
Jeff Wallace
e393c31789 Fixed errors during parsing of regripper output. 2013-10-17 14:05:21 -04:00
Jeff Wallace
ba3d35fa09 Updated error checking 2013-10-03 12:23:11 -04:00
Jeff Wallace
f63a3eab7f Added error messages when registry extraction / parsing fails 2013-10-02 15:46:37 -04:00
Brian Carrier
d4840fcf0a Improved artifact viewer and such to make regripper output easier to read in the raw output form. 2013-07-16 14:13:16 -04:00
Brian Carrier
f1aa4441fe Better deal with write failures in RecentActivity. Use more specialized temp/output folders 2013-07-16 11:41:11 -04:00
Brian Carrier
87f68da53c Run regripper full on registry hives and post to blackboard. Removed old rr code in third party since it is not used 2013-07-16 10:50:29 -04:00
Smoss
672e8af76e Made reccomended changes to ExtractUSB and ExtractRegistry. 
Signed-off-by: Smoss <Smoss117@gmail.com>
 2013-06-26 17:44:31 -04:00