BooLET 1.2 released

The new version of BooLET is released and available for download. BooLET is a log examination tool aimed at optimizing analysis of HTTP logs and finding anomalies in the raw logs in an automated manner, based upon a custom set of Yara rules (SQLi, XSS, directory traversal, shells and PHP shells, etc). The tool is able to generate reports and exports based on filters applied to the raw logs.

It is useful for forensic examiners and incident responders as it can be used for quick HTTP logs review and determination of the causes of incidents.

Here is a small demo:

Learn more about it at GitHub.

Digital Forensics

DISCLAIMER: THIS POST IS FOR INFORMATIONAL PURPOSES ONLY AND IS NOT TO BE CONSIDERED LEGAL ADVICE ON ANY SUBJECT MATTER. DIGITAL FORENSICS CORP. IS NOT A LAWFIRM AND DOES NOT PROVIDE LEGAL ADVICE OR SERVICES. By viewing posts, the reader understands there is no attorney-client relationship, the post should not be used as a substitute for legal advice from a licensed professional attorney, and readers are urged to consult their own legal counsel on any specific legal questions concerning a specific situation.