Register
What are the commands to run both memory and mft to a log2timeline using plaso as well
169k views
1 vote
What are the commands to run both memory and mft to a log2timeline using plaso as well

User Robert Redmond
by
8.2k points

1 Answer

2 votes

Final answer:

To run memory and MFT to a log2timeline using plaso, you can use the log2timeline.py and py-mysql.py commands.

Step-by-step explanation:

To run both the memory and MFT to a log2timeline using plaso, you can use the following commands:

  • log2timeline.py -z timezone logfile
  • py-mysql.py -h hostname -D database -t table -u username -p password logfile

The first command, log2timeline.py, is used to generate the timesketch data using the timezone and logfile. The second command, py-mysql.py, is used to export the log timeline database to MySQL using the provided parameters. Make sure to replace the placeholders with the correct values.

User Norayr Sargsyan
by
8.0k points
Ask a Question
Welcome to QAmmunity.org, where you can ask questions and receive answers from other members of our community.

9.4m questions

12.1m answers

Other Questions

“What does it mean when we “rework” copyrighted material?”
The book shows how to add and subtract binary and decimal numbers. However, other numbering systems are also very popular when dealing with computers. The octal (base 8) numbering system is one of these.
Please help me ! All you do is just put it it all in your own words ! Please this is for my reported card!i don't know how to put it in my own words because my English is not that good!
describe an advance in technology that makes life more enjoyable. what discoveries contribute to this technology?
What is an example of a dedicated computer system?
Link Copied!