forensics

[0x00000000]> woa 1
Invalid word size. Use 1, 2, 4 or 8
[0x00000000]>

also it will be good to use wo+ and wo- instead of woa and wos imho. not to say we can pass the blocksize as 2nd argument or handle it as its done with wo2 wo4... like woa2 1 instead of having to pass an hexpair string

In this ticket we will keep track of existing translations of the documentation in languages other than English. If you have translated the documentation in a missing language, please do share the link here:

• Original/English
• Spanish/Español by Colectivo Disonancia (not fully updated)

For

First iteration would be to check if the four columns
message,datetime,timestamp,timestamp_descare missing.

If one of them is missing, give an error message.

We're trying to process a series of .pcap files captured over time and hoped we could use tcpflow for both extracting the payloads and keeping track of the sessions' states at the same time using the written DFXML.

From the man page I understood that using -R on the next file (n) should complete TCP flows. Unfortunately it is not really clear what this exactly means and if this should have ef

The project works with 8 modules < reference source/Module >

• Creating issue to accelerate/track test frame building of each module
• The test folder has a very basic example to start with.
• Feel free to make a pull request for the test cases

Add detection for below Redis vulnerability.
https://nvd.nist.gov/vuln/detail/CVE-2022-0543
https://thehackernews.com/2022/03/muhstik-botnet-targeting-redis-servers.html

This might not be trivial as it has to do with the way Redis loads the Lua interpreter on certain Linux distributions. We might be able to find exploitation evidence in redis logs of cache files.

If somebody has time, it would nice to have an https://intelx.io module for your project.
We have a SDK here with some code samples (including Go code): https://github.com/IntelligenceX/SDK