-
Notifications
You must be signed in to change notification settings - Fork 2
case
This category comprises functions aimed at facilitating CSI Case Management.
Takes the case name as an argument and creates a zip file of the specified case folder, including all subfolders containing files. Additionally, it generates an MD5 hash for each file and stores them in a file named "<zip_file_name>.md5," archiving it in the zip file.
Zip file naming format: <case_name>-<YYYYmmdd>-<HHMM>
Takes the case name and utilizes the above function. Additionally, it deletes the case folder.
from csilibs.case import closeCase, archiveCase
closeCase('osintCase')
# Utilizes the above function and deletes the case Folder
archiveCase('osintCase')Takes the case archive file path to check its integrity by comparing it with the MD5 file located inside the archive.
from csilibs.case import arcIntegrityCheck
arcIntegrityCheck('/home/csi/Cases/Archive/osintCase-20240103-1310.zip')Takes the case archive file path to reconstruct the case folder by importing it. If the case folder exists, it creates one with a prefix number to avoid overriding the current case folder. This function also checks the integrity of each file.
from csilibs.case import importCase
importCase('/home/csi/Cases/Archive/osintCase-20240103-1310.zip')Contact @PakCyberbot in case of any confusion!