Download Shareware and Freeware Software for Windows, Linux, Macintosh, PDA

line Home  |  About Us  |  Link To Us  |  FAQ  |  Contact

Serving Software Downloads in 956 Categories, Downloaded 45.040.843 Times

Zeitline 0.2 Beta

Company: Florian Buchholz
Date Added: November 28, 2013  |  Visits: 813

Zeitline

Report Broken Link
Printer Friendly Version


Product Homepage
Download (34 downloads)



Zeitline: a forensic timeline editor<br /><br />The area of event reconstruction in computer forensics deals with analyzing and evaluating data obtained from a system and use it to determine what happened. The data recovery process is a well-covered area within computer forensics, but little work has been done on how to actually analyze and evaluate the data. Only very crude tools, such as mactimes or individual log analyzers, exist. A comprehensive event reconstruction on a system that takes into account data from various sources, such as file MAC times, system logs, firewall logs, and application data, is mostly done manually by the investigator. With storage capacities growing rapidly and systems permanently being connected to global networks more and more, it is not uncommon that the number of events recorded by a system easily goes into the hundreds of thousands.<br /><br />To provide an investigator a tool that helps him process this large amount of data, we are developing a graphical time line editor. The tool should allow the grouping of events into super-events. The main data structure for the time line analyzer is the event. An event consists of a time span when the event took place, a source to denote the origin of the event, and a description of the event. An event can contain a list of sub-events and can also be part of a super event's sub-list. Starting with events at discrete times that were generated from the system information, events that belong to the same ``action'' can thus be grouped together into event hierarchies. For example, the three events ``access program gcc'', ``access file x'' and ``access library y'' could be grouped together into a super event by an investigator labeled ``compile program x'', which in turn could be part of another super event ``install rootkit z''.<br /><br />A graphical front-end should allow an investigator to manage the events. Super events may be created based on selected sub-events. Events may be moved around via drag-and-drop or directly assigned to a super event hierarchy. The event hierarchy can be displayed in a tree-like view allowing to collapse all or select branches. This way, an investigator can concentrate on events only relevant to his direct attention.<br /><br />We have the following design objectives for the tool:<br /> . Import events from various sources, such as system MAC times, system and firewall logs, and application data<br /> . Provide an easy to use and intuitive GUI to manage and classify the events.<br /> . Allow a fast retrieval of individual events or events that fall into a certain time window.<br /> . Support for many platforms

Requirements: No special requirements
Platforms: Mac, Mac OSX
Keyword: Access Compile Gcc Hierarchies Install Labeled Library Program Rootkit Subevents X039039 Y039039 Z039039a
Users rating: 0/10

License: Freeware Size: 215.04 KB
USER REVIEWS
More Reviews or Write Review


ZEITLINE RELATED
3D Graphic Tools  -  Lphoto 2.0.42
This is a Photo Library program from Linspire. They developed it for their Linspire Linux Desktop, and then released it under the GNU/GPL. This is a pretty neat program, the only drawback is that the path where it saves your photos is hardcoded...
204.8 KB  
Libraries  -  Devel::Hints 0.11
Devel::Hints is a Perl module created to access compile-time hints at runtime. SYNOPSIS use Devel::Hints :all; LABEL: print cop_label(); # LABEL cop_label(0 => FOO); # "goto FOO;" is valid after this point! print cop_file(); # same as...
44.03 KB  
Libraries  -  libtecla 1.6.1
The tecla library provides UNIX and LINUX programs with interactive command line editing facilities, similar to those of the unix tcsh shell. In addition to simple command-line editing, it supports recall of previously entered command lines, TAB...
512 KB  
Libraries  -  Pymousetrap 0.6.0
Pymousetrap provides access to a C-implemented shared library that efficiently stores information about a 2-dimensional grid (a mousetrap). The mousetrap is integer resolution, and supports works very similarly to graphics libraries; mousetraps...
35.84 KB  
Programming  -  Smack XmlBeans Packet Extension rc
Provides access to the Smack XMPP client library packet extensions via XMLBeans binding framework. Mapper converts XML Beans document objects to the Smack packet extensions and vice versa.
66.2 KB  
Graphics Cataloging Tools  -  kfuseiso 20090816
kfuseiso contains small set of modules to help access ISO image files. Depends on fuseiso program and therefore on fuse library so it is only linux specific now. Fuseiso along with .iso images also support windows-born .nrg, .mdf, .bin...
10.24 KB  
Libraries  -  libband 0.01
LibBand is a simple library wrapper written in assembly and C (but I plan to rewrite everything in C) useful if you want to limit the bandwidth used by a program. It simply overrides some libc functions, using the LD_PRELOAD environment...
22.53 KB  
Shell & Desktop  -  Font Configuration Library 2.3.94
Fontconfig is a library for configuring and customizing font access. Font Configuration Library contains two essential modules, the configuration module which builds an internal configuration from XML files and the matching module which accepts...
1.1 MB  
Libraries  -  IFF Format Library 0.1
IFF Format Library provides header structures and utility functions for reading and writing data files in the Interchange Files. The Interchange File Format is a simple structured binary file format consisting of sized and typed chunks of data,...
26.62 KB  
Libraries  -  liblauch 1.0.0
liblauch is a simple library enables you you launch another program from within a program. It handles the intricacies of fork(2) and execve(2) for you. It returns a couple of pipes that are connected to the launched programs stdin and stdout. It...
13.31 KB  
NEW DOWNLOADS IN MACINTOSH SOFTWARE, SECURITY TOOLS
Macintosh Software  -  EasyEDA PCB Designer for MacOS 2.0.0
EasyEDA, a great web based EDA(Electronics Design Automation) tool, online PCB tool, online PCB software for electronics engineers, educators, students, makers and enthusiasts. Theres no need to install any software. Just open EasyEDA in any...
34.4 MB  
Macintosh Software  -  VideoSolo Video to GIF Converter (Mac) 1.0.12
How to make a GIF? VideoSolo Free Video to GIF Converter for Mac supports all popular video files including MP4, AVI, MOV, WMV, FLV, M4V, etc. You can easily turn MP4/AVI/MOV/WMV/FLV/M4V to GIF animation on Mac and share your GIFs with your...
46.51 MB  
Macintosh Software  -  VideoSolo Free Video Converter (Mac) 1.0.18
VideoSolo Free Video Converter for Mac is a fast, powerful and easy-to-master video converter. Its main purpose is to convert video files from one format into another. It is able to convert video and audio files in 300+ formats on Mac for totally...
75.29 MB  
Macintosh Software  -  ManyCam for Mac 6
ManyCam is a free Webcam software and a screen recorder for anyone to use. Several feature enhancements are included within ManyCam to produce a professional quality live video production. It can connect a desktop, smartphone, tablet and live...
90.49 MB  
Macintosh Software  -  MacX Free Rip DVD to QuickTime for Mac 4.1.9
MacX Free Rip DVD to QuickTime for Mac is totally free yet versatile DVD to QuickTime ripper software for Mac users to free rip both normal and copy-protected DVDs to QuickTime MOV, MP4 on Mac with excellent image quality. Besides the powerful...
36.3 MB  
Security Tools  -  hide.me VPN for macOS 3.3.0
World's most trusted VPN provider, hide.me, with over 3 million downloads now offers newly enhanced VPN Apps for all Devices and Operating systems with Free VPN. It's as easy as 123, No Registration, No Login required. Just download and enjoy the...
30.5 MB  
Security Tools  -  RT Credential Toolkit 1.0
RT Credential Toolkit is a free and open source software that provides a set of tools to write and make use of credentials for authorization purposes. RT is a role based language that allows for easy delegation of authority. Here are...
1.95 MB  
Security Tools  -  Darkjumper 5.8
Darkjumper.py Developed by : mywisdom & gunslinger_ This tool will try to find every website that host at the same server at your target Then check for every vulnerability of each website that host at the same server
30.72 KB  
Security Tools  -  PassNuds 0.2 Beta
This program will store your departments passwords is a hierarchical manner, with different users having different access to available passwords. Early days at the moment so the password file isn't encrypted and some facilities not working yet..
20.48 KB  
Security Tools  -  Pam PKCS#11 0.6.2
Pam PKCS#11 is a fully featured pam authentication module allowing login with smart cards and full verification of the card data - using certificate chains, certificate revocation lists, LDAP, Active Directory, Kerberos. To be able to...
1.01 MB