What is the pricing for timeliner?

timeliner is a free Security Operations tool. This makes it accessible for organizations of all sizes, from startups to enterprises. Visit https://github.com/airbus-cert/timeliner/ for download and installation instructions.

What are alternatives to timeliner?

Popular alternatives to timeliner include: 1. Aurora Incident Response - Incident Response Documentation tool for tracking findings and tasks. (Free) 2. libsmdev - A library and set of tools for accessing and analyzing storage media devices and partitions for forensic analysis and investigation. (Free) 3. PSRecon - A PowerShell-based incident response and live forensic data acquisition tool for Windows hosts. (Free) 4. dfvfs - A digital forensics tool that provides read-only access to file-system objects from various storage media types and file formats. (Free) 5. RTIR - Request Tracker for Incident Response (RTIR) is a tool for incident response teams to manage incident reports, correlate data, and facilitate communication. (Free) Compare these tools and more at https://cybersectools.com/categories/security-operations

Who should use timeliner?

timeliner is for security teams and organizations that need Evidence Collection, Memory Forensics. It's particularly suitable for small to medium-sized teams looking for cost-effective solutions. Other Security Operations tools can be found at https://cybersectools.com/categories/security-operations

What is the pricing for timeliner?

timeliner is a free Security Operations tool. This makes it accessible for organizations of all sizes, from startups to enterprises. Visit https://github.com/airbus-cert/timeliner/ for download and installation instructions.

What are alternatives to timeliner?

Popular alternatives to timeliner include: 1. Aurora Incident Response - Incident Response Documentation tool for tracking findings and tasks. (Free) 2. libsmdev - A library and set of tools for accessing and analyzing storage media devices and partitions for forensic analysis and investigation. (Free) 3. PSRecon - A PowerShell-based incident response and live forensic data acquisition tool for Windows hosts. (Free) 4. dfvfs - A digital forensics tool that provides read-only access to file-system objects from various storage media types and file formats. (Free) 5. RTIR - Request Tracker for Incident Response (RTIR) is a tool for incident response teams to manage incident reports, correlate data, and facilitate communication. (Free) Compare these tools and more at https://cybersectools.com/categories/security-operations

Who should use timeliner?

timeliner is for security teams and organizations that need Evidence Collection, Memory Forensics. It's particularly suitable for small to medium-sized teams looking for cost-effective solutions. Other Security Operations tools can be found at https://cybersectools.com/categories/security-operations

timeliner

Timeliner is a digital forensics tool that rewrites mactime with an advanced expression engine for complex timeline filtering using BPF syntax.

Security Operations Open Source

Evidence Collection Memory Forensics

Visit website

Compare

timeliner

Timeliner is a digital forensics tool that rewrites mactime with an advanced expression engine for complex timeline filtering using BPF syntax.

Security Operations•Digital Forensics and Incident Response

Open Source

Evidence Collection Memory Forensics

40stars

GitHub Stars

05 Aug

Last commit

Visit Website

Updated 16 Mar 26

Compare

Explore Security Operations 48 Alternatives Compare Stacks Market Map Explore All Tools

MCPThe entire cybersecurity market, one prompt awayTry MCP Access

timeliner Description

Timeliner is a digital forensics tool that serves as a rewrite of the traditional mactime utility, designed for timeline analysis of file system events. The tool incorporates a real expression engine that enables users to parse and apply complex filtering logic to forensic timeline data. This expression engine supports BPF (Berkeley Packet Filter) syntax, allowing investigators to create sophisticated queries for filtering events based on multiple criteria including time ranges, file paths, weekdays, and specific dates. Key capabilities include advanced filtering options that go beyond basic timeline analysis, enabling forensic analysts to narrow down large datasets to relevant events. The tool processes file system metadata to create chronological timelines of file activity, which is essential for incident response and forensic investigations. Currently in alpha development stage, timeliner aims to modernize timeline analysis workflows by providing more flexible query capabilities compared to traditional tools. The expression engine represents the primary differentiating feature, offering investigators enhanced control over data filtering and analysis processes.

timeliner Description

timeliner FAQ

Common questions about timeliner including features, pricing, alternatives, and user reviews.

timeliner is Timeliner is a digital forensics tool that rewrites mactime with an advanced expression engine for complex timeline filtering using BPF syntax.. It is a Security Operations solution designed to help security teams with Evidence Collection, Memory Forensics.

Have more questions? Browse our categories or search for specific tools.

timeliner

timeliner

timeliner Description

timeliner Description

timeliner FAQ

FEATURED

ALTERNATIVES

POPULAR

TRENDING CATEGORIES

Stay Updated with Mandos Brief