Cyber-investigation Analysis Standard Expression (CASE)
Read the CASE Wiki tab to learn everything you need to know about the Cyber-investigation Analysis Standard Expression (CASE) ontology. For learning about the Unified Cyber Ontology, CASE's parent, see UCO.
CASE-Mappings
Current partial mappings (eventually these will be split into fully-completed and partially-completed): - BulkExtractor - Cellebrite - NSRL - Sleuthkit
I have a question!
Before you post a Github issue or send an email ensure you've done this checklist:
-
Determined scope of your task. It is not necessary for most parties to understand all aspects of the ontology, mapping methods, and supporting tools.
-
Familiarize yourself with the labels and search the Issues tab. Typically, only light-blue and red labels should be used by non-admin Github users while the others should be used by CASE Github admins. All but the red
Project
labels are found in everycasework
repository.