system/base

autopsy - Autopsy Forensic Browser

Website: http://www.sleuthkit.org/sleuthkit/
License: ASL 2.0
Description:
Autopsy is a graphical interface to The Sleuth Kit and other open source digital forensics tools.
Autopsy 3 was a complete rewrite from Autopsy 2 to make it Java-based.
Autopsy 4 improves on Autopsy 3 by supporting collaboration on a single case by multiple users.

Although Autopsy is designed to be cross-platform (Windows, Linux, MacOSX), the current version
is fully functional and fully tested only on Windows. We have run it on XP, Vista, and Windows
7 with no problems.

Autopsy 4 is released under the Apache 2.0 license.
Some libraries Autopsy uses may have different, but similar, open source licenses.

Packages

autopsy-4.12.0-1.el6.src [773.1 MiB] Changelog by Lawrence R. Rogers (2019-08-13):
* Release 4.12.0-1
	Aded .desktop files in addition to the following:
	Collection
		Added ability to configure a USB drive to use new logical imager tool.
		Added logical imager tool that runs on a live Windows computer and saves results to a USB drive.
		Added ability to import logical imager results into Autopsy as a data source.
	Ingest Modules:
		Changed file type detection so that Tika does not rely only on extension.
		Email ingest module assigns thread IDs to messages
		Android ingest modules store thread ID from their databases.
	Content Viewers (lower right of UI):
		New “Text” viewer that consolidates previous Strings and “Indexed Text” viewers.
		New “Translation” panel was added to the new “Text” viewer.
		Added integration with Google and Bing translation (credentials required)
		Redesigned “Other Occurrences” viewer to have 4th column with details of selected item.
		Added Willi Ballentin’s “Registry Hive Viewer” panel to the “Application” viewer.
		Improved HTML viewer to use style sheets and better layout.
		Added ability to draw a box on a picture while tagging it.
	Result Table (upper right of UI)
		Added paging to all views for faster loading of large data sets.
		Improved speed of displaying results when a column was sorted.
	Reporting
		Portable cases can contain files marked as Interesting Items
		Portable cases can be compressed and chunked
		“Files - Text” report can use either tabs or commas as the delimiter
		“Files - Text” report better handles Unicode text.
		Added ability to create a CSV report for the contents of a table
		HTML report for tagged pictures includes a copy with the overlay box
	Communications:
		Added Account Summary view
		Added Contacts panel to show all contacts associated with an account.
		Added Media panel to show media attachments associated with an account
		Added filter to show accounts if they involved with the most recent messages.
		Messages can be grouped by thread.
	Auto Ingest
		New Test button was added to help diagnose permission and configuration issues.
	Documentation:
		Created new Triage Standard Operating Procedure (SOP) section to the User Docs

Listing created by Repoview-0.6.6-4.el7