python/plaso: Added (Forensic Super-Timeline).

Signed-off-by: Willy Sudiarto Raharjo <willysr@slackbuilds.org>
author: Barry J. Grundy <bgrundy@linuxleo.com> 2015-02-02 01:43:11 +0700
committer: Willy Sudiarto Raharjo <willysr@slackbuilds.org> 2015-02-02 01:43:11 +0700
commit: aca313c20e50f68dc594e9eb4b8a1158de0a60a9 (patch)
tree: efb24dd3a18c0ef2bad7c88afa47f317f4066a40 /python/plaso/README
parent: 0666ea5b41dbb4e06e62487b2457170e4b9eca7b (diff)
download: slackbuilds-aca313c20e50f68dc594e9eb4b8a1158de0a60a9.tar.gz
slackbuilds-aca313c20e50f68dc594e9eb4b8a1158de0a60a9.tar.xz
1 files changed, 13 insertions, 0 deletions
diff --git a/python/plaso/README b/python/plaso/README
new file mode 100644
index 0000000000..76c66b7012
--- /dev/null
+++ b/python/plaso/README
@@ -0,0 +1,13 @@
+plaso (Forensic Super-Timeline)
+
+Plaso is the Python based back-end engine used by tools such as log2timeline 
+for automatic creation of a super timelines. The goal of log2timeline (and 
+thus plaso) is to provide a single tool that can parse various log files and 
+forensic artifacts from computers and related systems, such as network equipment
+to produce a single correlated timeline. This timeline can then be easily 
+analysed by forensic investigators/analysts, speeding up investigations by 
+correlating the vast amount of information found on an average computer system.
+
+Please pay close attention to the build order for plaso and its requirements 
+(particularly dfvfs).  Read the README files and do NOT rely on automated 
+package tools.
author	Barry J. Grundy <bgrundy@linuxleo.com>	2015-02-02 01:43:11 +0700
committer	Willy Sudiarto Raharjo <willysr@slackbuilds.org>	2015-02-02 01:43:11 +0700
commit	aca313c20e50f68dc594e9eb4b8a1158de0a60a9 (patch)
tree	efb24dd3a18c0ef2bad7c88afa47f317f4066a40 /python/plaso/README
parent	0666ea5b41dbb4e06e62487b2457170e4b9eca7b (diff)
download	slackbuilds-aca313c20e50f68dc594e9eb4b8a1158de0a60a9.tar.gz slackbuilds-aca313c20e50f68dc594e9eb4b8a1158de0a60a9.tar.xz