[转载]取证相关工具 puFLAG
信息来源:邪恶八进制信息安全团队([url]www.eviloctal.com[/url])FLAG was designed to simplify the process of log file analysis and forensic investigations. Often, when investigating a large case, a great deal of data needs to be analysed and correlated. Flag uses a database as a backend to assist in managing the large volumes of data. This allows flag to remain responsive and expedite data manipulation operations.
Since FLAG is web based, it is able to be deployed on a central server and shared with a number of users at the same time. Data is loaded into cases which keeps information separated. Flag also has a system for reporting the findings of the analysis by extensively using bookmarks.
[url]http://pyflag.sourceforge.net[/url]
页:
[1]