forensics

Find out which ones require some work by doing this:

$ git grep 'eprintf' | grep Usage

In this ticket we will keep track of existing translations of the documentation in languages other than English. If you have translated the documentation in a missing language, please do share the link here:

• Original/English
• Spanish/Español by Colectivo Disonancia (not fully updated)

For

https://github.com/google/timesketch/blob/fce0f54e20d9385b264f2401079dbeb5ad773a38/timesketch/frontend/src/components/Common/UploadForm.vue#L124

Uploading a foobar.txt file that has CSV content would still get uploaded and errored out on the backend side, even if the Client JS should error out already.

Request Method: POST
Status Code: 500 

We're trying to process a series of .pcap files captured over time and hoped we could use tcpflow for both extracting the payloads and keeping track of the sessions' states at the same time using the written DFXML.

From the man page I understood that using -R on the next file (n) should complete TCP flows. Unfortunately it is not really clear what this exactly means and if this should have ef

The project works with 8 modules < reference source/Module >

• Creating issue to accelerate/track test frame building of each module
• The test folder has a very basic example to start with.
• Feel free to make a pull request for the test cases

Add detection for below Redis vulnerability.
https://nvd.nist.gov/vuln/detail/CVE-2022-0543
https://thehackernews.com/2022/03/muhstik-botnet-targeting-redis-servers.html

This might not be trivial as it has to do with the way Redis loads the Lua interpreter on certain Linux distributions. We might be able to find exploitation evidence in redis logs of cache files.

If somebody has time, it would nice to have an https://intelx.io module for your project.
We have a SDK here with some code samples (including Go code): https://github.com/IntelligenceX/SDK