SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for plaso-20220724-1.el7.x86_64.rpm :
Sun Jul 24 14:00:00 2022 Lawrence R. Rogers 20220724-1

* Release 20220724-1
Version from 20220724
Updated dependencies

Thu Apr 28 14:00:00 2022 Lawrence R. Rogers 20220428-1

* Release 20220428-1
Version from 20220428
Updated dependencies

Sat Jan 29 13:00:00 2022 Lawrence R. Rogers 20220129-1

* Release 20220129-1
Version from 20220129

Mon Jan 24 13:00:00 2022 Lawrence R. Rogers 20211229-3

* Release 20211229-3
Version from 20211229
Removed the maximum version of pyparsing

Sat Dec 11 13:00:00 2021 Lawrence R. Rogers 20211024-2

* Release 20211024-2
Version from 20211024
Release 2 build Plaso in a virtual environment for CentOS/RHEL. The Fedora version is unchanged.

Sun Oct 24 14:00:00 2021 Lawrence R. Rogers 20211024-1

* Release 20211024-1
Version from 20211024

Sun Jun 6 14:00:00 2021 Lawrence R. Rogers 20210606-1

* Release 20210606-1
Version from 20210606

Thu Jun 3 14:00:00 2021 Lawrence R. Rogers 20210412-2

* Release 20210412-2
Version from 20210412
Removed restriction on elasticsearch7

Mon Apr 12 14:00:00 2021 Lawrence R. Rogers 20210412-1

* Release 20210412-1
Version from 20210412

Sat Feb 13 13:00:00 2021 Lawrence R. Rogers 20210213-1

* Release 20210213-1
Version from 20210213
Updated dependencies

Sat Feb 13 13:00:00 2021 Lawrence R. Rogers 20201228-2

* Release 20201228-2
Removed elasticsearch 7.11 patch
Specified that elasticsearch version must be less than 7.10

Mon Dec 28 13:00:00 2020 Lawrence R. Rogers 20201228-1

* Release 20201228-1
Version from 20201228
Updated dependencies

Wed Oct 7 14:00:00 2020 Lawrence R. Rogers 20201007-1

* Release 20201007-1
Version from 20201007
Updated dependencies

Fri Jul 17 14:00:00 2020 Lawrence R. Rogers 20200717-1

* Release 20200717-1
Version from 20200717

Tue Jun 30 14:00:00 2020 Lawrence R. Rogers 20200630-1

* Release 20200630-1
Version from 20200630

Thu Apr 30 14:00:00 2020 Lawrence R. Rogers 20200430-1

* Release 20200430-1
Version from 20200430

Thu Feb 27 13:00:00 2020 Lawrence R. Rogers 20200227-1

* Release 20200227-1
Version from 20200227

Tue Jan 21 13:00:00 2020 Lawrence R. Rogers 20200121-1

* Release 20200121-1
Version from 20200121

Tue Dec 3 13:00:00 2019 Lawrence R. Rogers 20191203-1

* Release 20191203-1
Version from 20191203

Mon Sep 16 14:00:00 2019 Lawrence R. Rogers 20190916-1

* Release 20190916-1
Version from 20190916

Mon Jul 8 14:00:00 2019 Lawrence R. Rogers 20190708-1

* Release 20190708-1
Version from 20190708

Fri May 31 14:00:00 2019 Lawrence R. Rogers 20190531-1

* Release 20190531-1
Version from 20190531

Fri May 31 14:00:00 2019 Lawrence R. Rogers 20190531-1

* Release 20190531-1
Version from 20190531

Sun May 19 14:00:00 2019 Lawrence R. Rogers 20190429-1

* Release 20190429-1
Version from 20190429

Fri May 17 14:00:00 2019 Lawrence R. Rogers 20190331-3

* Release 20190331-3
CentOS/RHEL 7 is no longer implemented as a virtual environment.

Mon May 6 14:00:00 2019 Lawrence R. Rogers 20190331-2

* Release 20190331-2
This is the Python 3 version of plaso for Fedora 26-30 and
Python 2 in a virtual environment for CentOS/RHEL 7 and Fedora 24-25.

Sun Mar 31 14:00:00 2019 Lawrence R. Rogers 20190331-1

* Release 20190331-1
Version 20190331
Log output from tools will be output to a file by default, and not just printed to the terminal.
There’s a new --troubles option, which provides some debugging and troubleshooting information
A lot of bug fixes and improvements in the Artifact filter support
Elasticsearch5 support has been removed, as this version is now at end-of-life
Efilter support has also been removed

Sat Feb 2 13:00:00 2019 Lawrence R. Rogers 20190131-1

* Release 20190131-1
Version 20190331
Added missing lzma dependency.

Tue Jan 29 13:00:00 2019 Lawrence R. Rogers 20181219-5

* Release 20181219-5
Version 20181219
Built for Python 2 and 3.
Uses the python2/python3 names for dependencies.

Fri Jan 25 13:00:00 2019 Lawrence R. Rogers 20181219-4

* Release 20181219-4
Changed dependencies for pytsk3, dfvfs, dtfabric, and dfwinreg.

Thu Jan 10 13:00:00 2019 Lawrence R. Rogers 20181219-3

* Release 20181219-3
For CentOS/RHEL 7, Python 2.7.13 from centos-release-scl-rh is now required.
To that end, all of the invocation of programs now uses SCL.

Tue Jan 8 13:00:00 2019 Lawrence R. Rogers 20181219-2

* Release 20181219-2
Added an update-plaso script to update the modules loaded via pip (Fedora 24, 25 and CentOS/RHEL 7).
Changed the name of the Virtual Envronment folder to remove the version of plaso.

Wed Dec 19 13:00:00 2018 Lawrence R. Rogers 20181219-1

* Release 20181219-1
Version 20181219.
For Fedora 26 and beyond, this is a traditional app.
For Fedora 25 and 25 and CentOS/RHEL 7, the installed programs use a Python Virtual Environment.

Sun Sep 30 14:00:00 2018 Lawrence R. Rogers 20180930-1

* Release 20180930-1
Version 20180930.

Sat Aug 18 14:00:00 2018 Lawrence R. Rogers 20180818-1

* Release 20180818-1
Version 20180818.

Tue Jul 3 14:00:00 2018 Lawrence R. Rogers 20180703-1

* Release 20180703-1
Version 20180703.

Sat Jun 30 14:00:00 2018 Lawrence R. Rogers 20180630-1

* Release 20180630-1
Version 20180630.

Fri May 25 14:00:00 2018 Lawrence R. Rogers 20180524-1

* Release 20180524-1
Version 20180524.

Sat Jan 27 13:00:00 2018 Lawrence R. Rogers 20180127-1

* Release 20180127-1
Version 20180127.

Sat Nov 18 13:00:00 2017 Lawrence R. Rogers 20171118-1

* Release 20171118-1
Version 20171118.

Sat Sep 30 14:00:00 2017 Lawrence R. Rogers 20170930-1

* Release 20170930-1
Version 20170930.

Mon Sep 19 14:00:00 2016 Lawrence R. Rogers 1.5.1-1

* Release 1.5.1-1
Version 1.5.1

Mon Sep 19 14:00:00 2016 Lawrence R. Rogers 1.5.0-1

* Release 1.5.0-1
Version 1.5.0
See this blog post: http://blog.kiddaland.net/2016/09/what-flies-there-what-fares-there-or.html

Tue Jul 26 14:00:00 2016 Lawrence R. Rogers 1.4.0-4

* Release 1.4.0-4
This is the real plaso 1.4.0.

Sun Feb 7 13:00:00 2016 Lawrence R. Rogers 1.4-3

* Release 1.4-3
Added missing dependencies of xlsxwriter.

Fri Feb 5 13:00:00 2016 Lawrence R. Rogers 1.4-2

* Release 1.4-2
Added missing dependencies of dfwinreg and libscca-python.

Sat Jan 23 13:00:00 2016 Lawrence R. Rogers 1.4-1

* Release 1.4-1
Version 1.4 - see http://blog.kiddaland.net/2016/01/sprinkling-morning-dew-and-summer.html for details.

Mon Sep 21 14:00:00 2015 Lawrence R. Rogers 1.3.0-2

* Release 1.3.0-2
Added the artifacts and requests dependencies.

Wed Jul 22 14:00:00 2015 Lawrence R. Rogers 1.3.0-1

* Release 1.3.0-1
Version 1.3.0 - see http://blog.kiddaland.net/2015/07/bringing-end-to-sorrow-new-plaso-release.html for details.

Wed Dec 24 13:00:00 2014 Lawrence R. Rogers 1.2.0-2

* Release 1.2.0-2
Patch to bring up to date to the development release dated 2014-12-24.

Sat Dec 20 13:00:00 2014 Lawrence R. Rogers 1.2.0-1
Version 1.2.0 - see http://blog.kiddaland.net/2014/12/hey-kids-i-heard-on-news-that-airline.html for details.

Tue Sep 23 14:00:00 2014 Lawrence R. Rogers 1.1.0-2
Added correct ipython dependencies

Fri Jun 6 14:00:00 2014 Lawrence R. Rogers 1.1.0-1
See http://blog.kiddaland.net/2014/06/what-is-one-to-say-about-june-time-of.html for the list of changes

Thu May 22 14:00:00 2014 Lawrence R. Rogers 1.0.2-1
See http://blog.kiddaland.net/2013/10/halloween-brings-with-it-riding-witches.html for more details.

New Shiny Parsers
Java IDX.
LS Quarantine.
MacKeeper cache.
OLECF (think .doc and so many other OLE compound files on any given Windows system).
OpenXML.
Pcap files.
Plist parser (generic and a plugin interface for new parsers).
Apple Safari history parser.
SkyDrive log files.
Skype text conversations.
Windows Firewall.
Windows Job files (think at jobs).
Windows Prefetch files (supports all versions of Windows).
Windows Recycle bin (INFO2 and $I/$R).
Xchat Scroll back files.
Zeitgeist parser (Linux).
Several new Windows Registry plugins.
New Output Modules
MySQL db output for 4n6time (still an experimental feature and mostly applicable in 4n6time).
Dynamic. The new default output module for psort. In short this is a simple CSV file that has
configurable fields to make output more flexible. See additional information here.
Pstorage - The ability to output again into another instance of a plaso storage.
This is mainly if you want to keep events fully sorted and filtered out for a new instance.
New Features
There are plenty of new features, some of which are listed here:
New front-end called plasm that as of now takes care of tagging/categorization of your output data.
New script included called \"image_export\" that can be used to export files out of an image file (including within VSS)
either by supplying it with a list of paths or file extensions.
A PoC tool called \"plaso_extract_search_history.py\" (not included in the build files) that can read over a plaso storage
file and extract all search history from it (this will be incorporated into the tool in the next version).
The ability to define \"time slices\" in psort. That is if you have a specific pivot point into the data set (as in a time)
you can define it and get all the surrounding events that occurred on the timeline for X minutes before and after
(X is configurable but defaults to 5 minutes).
The ability to include surrounding events for filter hits. That is to create a time slice for every filter hit. Let\'s say
you want to filter the timeline for every time a particular web site was visited and at the same time you would like
to X number of events that led up to that web site visit and the next X subsequent events as well, now that can be easily done.
Psort now removes duplicate entries.
You can now bypass the storage mechanism and directly output to file. Before that you had to first store all events into a plaso storage
file (still default and still recommended). However the option of bypassing the storage mechanism and directly storing the data
into whatever available output module has been added.
A new front-end called preg added that can be used to directly parse registry files and present the output in a different manner than is
done in the main front-end log2timeline/psort (and even works on live machines).
Back-end Changes
A timestamp index was added to the backend storage (pstorage) making date based filtering considerably faster.
Registry plugin infrastructure received a healthy code refactor.
A new text based assistant added (using pyparsing).
A new binary assistant added.
TSK updated to 4.1.x (used to be dependent on 3.x).
Protobufs updated to version 2.5 (used to be 2.4).
Quite a few re-factors on various pieces of the codebase.

Thu Feb 13 13:00:00 2014 Lawrence R. Rogers 1.0.1alpha-1
Initial version


  
ICM