[sleuthkit-announce] Sleuth Kit 4.0.0b1 Released
Brought to you by:
carrier
Menu
▾
▴
[sleuthkit-announce] Sleuth Kit 4.0.0b1 Released
|
From: Brian C. <ca...@sl...> - 2012-05-30 14:15:14
|
A way overdue Sleuth Kit 4.0.0b1 (b1 is for beta 1) release is on the site. It has a lot of new features, including: • Framework with first set of basic modules (hash calculation, hash lookup, entropy calculation, RegRipper, ZIP file extraction, extraction via name signatures, etc.) -- Windows-only • Multithreaded support • C++ wrapper classes • JNI bindings and data model classes • All non-set times are displayed as 0 instead of 1970. • Support for libewf v2 • Only first file in split or E01 needs to be specified. • EnCase Hashset support in hash tools. • New table schema for loaddb database that supports more data types (carved, local files, etc.). • ... I'm really excited about the new framework (http://sleuthkit.org/sleuthkit/framework.php), but we still need some more modules for it. We're going to have some workshops at the open source conference in Oct (www.osdfcon.org) to help developers make modules for it. New version can be downloaded here: http://sleuthkit.org/sleuthkit/download.php thanks, brian |
