Download Shareware and Freeware Software for Windows, Linux, Macintosh, PDA

line Home  |  About Us  |  Link To Us  |  FAQ  |  Contact

Serving Software Downloads in 976 Categories, Downloaded 32.404.067 Times

Zeitline 0.2 Beta

Company: Florian Buchholz
Date Added: November 28, 2013  |  Visits: 468


Report Broken Link
Printer Friendly Version

Product Homepage
Download (19 downloads)

Zeitline: a forensic timeline editor<br /><br />The area of event reconstruction in computer forensics deals with analyzing and evaluating data obtained from a system and use it to determine what happened. The data recovery process is a well-covered area within computer forensics, but little work has been done on how to actually analyze and evaluate the data. Only very crude tools, such as mactimes or individual log analyzers, exist. A comprehensive event reconstruction on a system that takes into account data from various sources, such as file MAC times, system logs, firewall logs, and application data, is mostly done manually by the investigator. With storage capacities growing rapidly and systems permanently being connected to global networks more and more, it is not uncommon that the number of events recorded by a system easily goes into the hundreds of thousands.<br /><br />To provide an investigator a tool that helps him process this large amount of data, we are developing a graphical time line editor. The tool should allow the grouping of events into super-events. The main data structure for the time line analyzer is the event. An event consists of a time span when the event took place, a source to denote the origin of the event, and a description of the event. An event can contain a list of sub-events and can also be part of a super event's sub-list. Starting with events at discrete times that were generated from the system information, events that belong to the same ``action'' can thus be grouped together into event hierarchies. For example, the three events ``access program gcc'', ``access file x'' and ``access library y'' could be grouped together into a super event by an investigator labeled ``compile program x'', which in turn could be part of another super event ``install rootkit z''.<br /><br />A graphical front-end should allow an investigator to manage the events. Super events may be created based on selected sub-events. Events may be moved around via drag-and-drop or directly assigned to a super event hierarchy. The event hierarchy can be displayed in a tree-like view allowing to collapse all or select branches. This way, an investigator can concentrate on events only relevant to his direct attention.<br /><br />We have the following design objectives for the tool:<br /> . Import events from various sources, such as system MAC times, system and firewall logs, and application data<br /> . Provide an easy to use and intuitive GUI to manage and classify the events.<br /> . Allow a fast retrieval of individual events or events that fall into a certain time window.<br /> . Support for many platforms

Requirements: No special requirements
Platforms: Mac, Mac OSX
Keyword: Access Compile Gcc Hierarchies Install Labeled Library Program Rootkit Subevents X039039 Y039039 Z039039a
Users rating: 0/10

License: Freeware Size: 215.04 KB
More Reviews or Write Review

3D Graphic Tools  -  Lphoto 2.0.42
This is a Photo Library program from Linspire. They developed it for their Linspire Linux Desktop, and then released it under the GNU/GPL. This is a pretty neat program, the only drawback is that the path where it saves your photos is hardcoded...
204.8 KB  
Libraries  -  Devel::Hints 0.11
Devel::Hints is a Perl module created to access compile-time hints at runtime. SYNOPSIS use Devel::Hints :all; LABEL: print cop_label(); # LABEL cop_label(0 => FOO); # "goto FOO;" is valid after this point! print cop_file(); # same as...
44.03 KB  
Libraries  -  libtecla 1.6.1
The tecla library provides UNIX and LINUX programs with interactive command line editing facilities, similar to those of the unix tcsh shell. In addition to simple command-line editing, it supports recall of previously entered command lines, TAB...
512 KB  
Libraries  -  Pymousetrap 0.6.0
Pymousetrap provides access to a C-implemented shared library that efficiently stores information about a 2-dimensional grid (a mousetrap). The mousetrap is integer resolution, and supports works very similarly to graphics libraries; mousetraps...
35.84 KB  
Education  -  EXPO2012 Library Lite 1.0
The App provides access to lite version of interactive library from Russian Exposition within EXPO 2012 Yeosu Korea, World's Fair. The main theme of the Expo is "The Living Ocean and Coast. Diversity of Resourses and Sustainable Activities"....
459 MB  
Education  -  Houston Public Library Mobile 4.80
The Houston Public Library catalog, access to your account, information about library locations, and more is now available through your mobile device. Wherever you go you can now search for books, DVDs, audiobooks, and ebooks, and place holds or...
2.6 MB  
Programming  -  Smack XmlBeans Packet Extension rc
Provides access to the Smack XMPP client library packet extensions via XMLBeans binding framework. Mapper converts XML Beans document objects to the Smack packet extensions and vice versa.
66.2 KB  
Reference  -  DCL Mobile
Connect to the Dakota County Library on your mobile device! Use DCL Mobile to search the catalog, request items and access your account. Locate your nearest library and get hours and directions. Check out the calendar of events to find out...
2 MB  
Reference  -  LibraryNowEdu
Library Now lets you access all the services your college library provides via its website. Searching is greatly simplified: just type the first couple of letters of words and see the search in action while you type. Besides searching for books,...
2 MB  
Entertainment  -  Qatar Media
Follow the Qatari national day activities on your mobile. Share your visits, and pictures to the activities, with your friends and family. Access the large photo, and video library from the past years. Get all the information that you need...
2 MB  
Macintosh Software  -  VideoSolo Video to GIF Converter (Mac) 1.0.12
How to make a GIF? VideoSolo Free Video to GIF Converter for Mac supports all popular video files including MP4, AVI, MOV, WMV, FLV, M4V, etc. You can easily turn MP4/AVI/MOV/WMV/FLV/M4V to GIF animation on Mac and share your GIFs with your...
46.51 MB  
Macintosh Software  -  VideoSolo Free Video Converter (Mac) 1.0.18
VideoSolo Free Video Converter for Mac is a fast, powerful and easy-to-master video converter. Its main purpose is to convert video files from one format into another. It is able to convert video and audio files in 300+ formats on Mac for totally...
75.29 MB  
Macintosh Software  -  ManyCam for Mac 6
ManyCam is a free Webcam software and a screen recorder for anyone to use. Several feature enhancements are included within ManyCam to produce a professional quality live video production. It can connect a desktop, smartphone, tablet and live...
90.49 MB  
Macintosh Software  -  MacX Free Rip DVD to QuickTime for Mac 4.1.9
MacX Free Rip DVD to QuickTime for Mac is totally free yet versatile DVD to QuickTime ripper software for Mac users to free rip both normal and copy-protected DVDs to QuickTime MOV, MP4 on Mac with excellent image quality. Besides the powerful...
36.3 MB  
Macintosh Software  -  MacX QuickTime Video Converter Free 4.1.9
MacX QuickTime Video Converter Free Edition is the best program designed for Mac users to free convert almost all HD videos and SD videos to QuickTime accepted formats on Mac with first rate quality.The input file formats covered by this powerful...
23.11 MB  
Security Tools  -  RT Credential Toolkit 1.0
RT Credential Toolkit is a free and open source software that provides a set of tools to write and make use of credentials for authorization purposes. RT is a role based language that allows for easy delegation of authority. Here are...
1.95 MB  
Security Tools  -  Darkjumper 5.8 Developed by : mywisdom & gunslinger_ This tool will try to find every website that host at the same server at your target Then check for every vulnerability of each website that host at the same server
30.72 KB  
Security Tools  -  PassNuds 0.2 Beta
This program will store your departments passwords is a hierarchical manner, with different users having different access to available passwords. Early days at the moment so the password file isn't encrypted and some facilities not working yet..
20.48 KB  
Security Tools  -  Pam PKCS#11 0.6.2
Pam PKCS#11 is a fully featured pam authentication module allowing login with smart cards and full verification of the card data - using certificate chains, certificate revocation lists, LDAP, Active Directory, Kerberos. To be able to...
1.01 MB  
Security Tools  -  SelfControl 1.3
Is email a distraction? SelfControl is an OS X application which blocks access to incoming and/or outgoing mail servers and websites for a predetermined period of time. For example, you could block access to your email, facebook, and twitter for...
2.49 MB