Public | Automated Build

Last pushed: 23 days ago
Short Description
plaso - python log2timeline
Full Description

docker-plaso

Docker container for plaso supertimlining tool

Now with cdqr from https://github.com/rough007/CDQR

Usage

 docker run --rm -ti -v /data:/data jbeley/plaso
 log2timeline.py --data /usr/share/plaso/ --artifact_definitions \
 /usr/share/artifacts/  --hashers md5 --vss_stores all --partitions all \
 /tmp/WinXP.pb /data/WinXP2.E01

Plaso's license

see https://github.com/log2timeline/plaso/wiki/Licenses-dependencies

Docker Pull Command
Owner
jbeley
Source Repository