Plaso (log2timeline)
User documentation
Developer documentation
Developers Guide
Style guide
Testing
How to write a parser or (parser) plugin
How to write an analysis plugin
How to write an output module
Packaging with Docker
Troubleshooting
Supported formats
API documentation
Plaso (log2timeline)
Developer documentation
View page source
Developer documentation
Developers Guide
Getting Started
But I don’t know how to use git
But I don’t know how to program in Python
Setting up and maintaining your development environment
Writing code
Design
Roadmap
Contributing Code
Before you submit your first code review
Core features changes
Tests
Style guide
Plaso specific style points
Event data attribute containers
Tests
Testing
Unit tests
End-to-end tests
Running end-to-end tests with Docker
How to write a parser or (parser) plugin
Introduction
Terminology
Before you start
Parser or (parser) plugin
Writing a parser
Test data
The parser
Registering a parser
The event data
The unit test
The timeliner configuration
The message formatter configuration
How to write an analysis plugin
Create file and class
Write minimal tests
Develop plugin
Expand tests
Register classes
Code review/submit
How to write an output module
Create file and class
Write minimal tests
Develop plugin
Expand tests
Register classes
Code review/submit
Packaging with Docker
Packaging