This is the next point release of Velociraptor. This release introduces a number of new features as well as bug fixes and performance enhancements. Thanks everyone for reporting issues through the issue board and Discord!

This release adds a lot of Linux features and is required to follow the Tutorial we will present at Linux.Conf.Au 2020 https://linux.conf.au/schedule/presentation/80/ Slides are available at https://www.velocidex.com/docs/presentations/linux.conf.au.2020/ if you can't make it in person.

New Features

• Add S3 upload functionality.
• Added grok function and syslog watcher.
• Autogenerate VQL references.
• Parse auditd logs.
• Added unzip and csv commands. Velociraptor will now assist in extracting and querying results exported in zip files.
• Added more Linux artifacts

As always file issues on the bug tracker or ask questions on our mailing list velociraptor-discuss@googlegroups.com . You can also chat with us directly on discord https://www.velocidex.com/discord