Monthly Archives: September 2013

SQLite3 support and inspection of free pages

The upcoming 1.0.0 version of the Profiler introduces support for SQLite3 databases. You’ll see that even viewing large tables is pleasantly fast. The SQL table control is available to the Python SDK as well: it can either be created via … Continue reading

Posted in Forensics, Profiler, SQLite3 | Tagged , | 2 Comments

News for version 0.9.9

The new 0.9.9 version of the Profiler is out with the following news: – added support for docked views in the main window – added scanning and rload (report load) hook notifications – partially exposed custom views to Python – … Continue reading

Posted in Profiler | Tagged | Comments Off on News for version 0.9.9

Creating undetected malware for OS X

We have discovered a way to defeat current anti-malware solutions. We will publicly disclose the full details of the issue in a few weeks. In the meantime, we’re more than happy to confidentially disclose the information with interested organizations (either … Continue reading

Posted in Security | Tagged , , , | Comments Off on Creating undetected malware for OS X

EML attachment detection and inspection

The upcoming 0.9.9 version of the Profiler includes some very useful SDK additions. Among these, the addEmbeddedObject method (to add embedded objects) and a new hook notification called ‘scanning’. The scanning notification should be used for long operations and/or to … Continue reading

Posted in Hooks, Profiler, Python, SDK | Tagged , , | Comments Off on EML attachment detection and inspection

Format quota calculator

In the upcoming 0.9.9 version of the Profiler it will be possible to create docked views even in the context of the main window. This feature combined with custom views is extremely useful if we want to create custom reports … Continue reading

Posted in Hooks, Profiler, Python | Tagged , | Comments Off on Format quota calculator

Custom Views

The upcoming 0.9.9 version of the Profiler will partially expose the use of custom views. These views are used internally by the Profiler to create complex graphical UIs using short XML strings. While at the moment extensions can use PySide … Continue reading

Posted in Profiler, Python | Tagged | Comments Off on Custom Views