Chapter 5

Integrating Python With Leading Forensic Platforms

Abstract

This chapter focuses on the integration of Python using the postprocessing approach. The integration is applied to WetStone’s US-LATT (USB-Live Acquisition and Triage Tool).

Keywords

WetStone; US-LATT; NIJ; memScanner.py; pfDiscover.py; Memory snapshot; Class; Object; Python dictionaries; Iteration; Regular expressions; argparse; Zeroization; Secure; USB; Secure partition; CSV; Email; Credit card; Social security number; URL; Strong password; Zip code; Phone number

Introduction

We examined the integration of Python with MPE + and EnCase in Chapters 3 and 4. In both of these cases, the integration was accomplished by launching Python scripts from within the forensic platform. ...

Get Integrating Python with Leading Computer Forensics Platforms now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Integrating Python with Leading Computer Forensics Platforms by Chet Hosmer

Integrating Python With Leading Forensic Platforms

Abstract

Keywords

Introduction

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly