Plaso (log2timeline) vs Timesketch
GitHub Stats
2.0k
Stars
3.3k
412
Forks
649
321
Issues
203
2mo ago
Updated
3d ago
Apache-2.0
License
Apache-2.0
Python
Language
Python
About Plaso (log2timeline)
Plaso (log2timeline) is a super timeline creation engine that extracts timestamps from multiple forensic artifact sources into a single timeline. It supports a wide range of log and artifact formats, facilitating comprehensive forensic analysis. Written in Python, Plaso is widely used in digital forensics for its ability to correlate events from diverse data sources, providing a unified view of system activities over time.
About Timesketch
Google's collaborative forensic timeline analysis platform for organizing and annotating investigation events.
Platform Support
๐งlinux๐macos๐ชwindows
๐งlinux
Tags
Shared
timeline
Plaso (log2timeline) only
log-analysisartifactsuper-timeline
Timesketch only
forensicsdfircollaboration