Comments (1)
Hi @denizciftci-sec,
in general the Plaso format version needs to be the same on both sides. So the format version of your ´.plaso´ file and the version supported in Timesketch. Using the same Plaso version as in Timesketch for processing your evidence should ensure compatibility.
You can get the Plaso version used by your deployed Timesketch instance by executing tsctl info
on your server/in the container.
The last line in the error message of your screenshot above mentions the latest supported version of Plaso format as 20221023
.
from timesketch.
Related Issues (20)
- Error 500 due to missing etc/timesketch/features.yml file HOT 1
- deploy_timesketch.ps1 does not updated correct variables in timesketch.conf file (opensearch)
- Add CRNG to deploy_windows.ps1 script for generating random keys/passwords HOT 6
- v-calendar dependency issue
- Update the Sketch is archived page HOT 1
- Update Timesketch API client "run_analyzers" "ignore_previous" handling
- Allow Timesketch to have sketch-specific Sigma rules HOT 1
- API returns 200 for non existing endpoints HOT 1
- Error after indexing a timeline HOT 3
- Finding the version of a plaso file that is supported with timesketch HOT 2
- 500 server error while crerating new blank HOT 5
- The results of uploading CSV files between timesketch_importer CLI and GUI are different HOT 1
- Timeout with API Client for retrieving sketch information after upgrading both Timesketch server and API Client HOT 1
- Timesketch LLM connectors
- Surface user management via API client
- Timesketch form validation bug
- Error when importing sigma rule with single quote
- Timesketch API client: Search object indices list bug
- Is there a way to return to sketch list from inside a sketch? HOT 2
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from timesketch.