Skip to content
Snippets Groups Projects
Commit 0ecd5b74 authored by Kelly Kelly's avatar Kelly Kelly
Browse files

Modified the artifact catalog

parent a0bc4807
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
bindings/java/doxygen/artifact_catalog.dox
+ 23
14
View file @ 0ecd5b74
...@@ -151,6 +151,29 @@ Indicates that the some content of the file was a hit for a YARA rule match. ...@@ -151,6 +151,29 @@ Indicates that the some content of the file was a hit for a YARA rule match.
- TSK_RULE (The rule that was a hit for this file) - TSK_RULE (The rule that was a hit for this file)
- TSK_SET_NAME (Name of the rule set containing the matching rule YARA rule) - TSK_SET_NAME (Name of the rule set containing the matching rule YARA rule)
---
## TSK_METADATA_EXIF
EXIF metadata found in an image or audio file.
### REQUIRED ATTRIBUTES
- At least one of:
- TSK_DATETIME_CREATED (Creation date of the file, in seconds since 1970-01-01T00:00:00Z)
- TSK_DEVICE_MAKE (Device make, generally the manufacturer, e.g., Apple)
- TSK_DEVICE_MODEL (Device model, generally the product, e.g., iPhone)
- TSK_GEO_ALTITUDE (The camera's altitude when the image/audio was taken)
- TSK_GEO_LATITUDE (The camera's latitude when the image/audio was taken)
- TSK_GEO_LONGITUDE (The camera's longitude when the image/audio was taken)## TSK_METADATA_EXIF
EXIF metadata found in an image or audio file.
### REQUIRED ATTRIBUTES
- At least one of:
- TSK_DATETIME_CREATED (Creation date of the file, in seconds since 1970-01-01T00:00:00Z)
- TSK_DEVICE_MAKE (Device make, generally the manufacturer, e.g., Apple)
- TSK_DEVICE_MODEL (Device model, generally the product, e.g., iPhone)
- TSK_GEO_ALTITUDE (The camera's altitude when the image/audio was taken)
- TSK_GEO_LATITUDE (The camera's latitude when the image/audio was taken)
- TSK_GEO_LONGITUDE (The camera's longitude when the image/audio was taken)
<br><br> <br><br>
\section art_catalog_data Data Artifact Types \section art_catalog_data Data Artifact Types
...@@ -502,20 +525,6 @@ None ...@@ -502,20 +525,6 @@ None
- TSK_USER_ID (Last author of the document) - TSK_USER_ID (Last author of the document)
- TSK_VERSION (Version number of the program used to create the document) - TSK_VERSION (Version number of the program used to create the document)
---
## TSK_METADATA_EXIF
EXIF metadata found in an image or audio file.
### REQUIRED ATTRIBUTES
- At least one of:
- TSK_DATETIME_CREATED (Creation date of the file, in seconds since 1970-01-01T00:00:00Z)
- TSK_DEVICE_MAKE (Device make, generally the manufacturer, e.g., Apple)
- TSK_DEVICE_MODEL (Device model, generally the product, e.g., iPhone)
- TSK_GEO_ALTITUDE (The camera's altitude when the image/audio was taken)
- TSK_GEO_LATITUDE (The camera's latitude when the image/audio was taken)
- TSK_GEO_LONGITUDE (The camera's longitude when the image/audio was taken)
--- ---
## TSK_OS_INFO ## TSK_OS_INFO
Details about an operating system recovered from the data source. Details about an operating system recovered from the data source.
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment