Revision as of 17:27, 4 March 2014

Autopsy uses Lucene SOLR for indexed keyword searching.

Regular Expressions

Autopsy allows you to find files using regular expressions. it uses the Java syntax: http://docs.oracle.com/javase/7/docs/api/java/util/regex/Pattern.html

Debugging

This section contains some tips for debugging SOLR issues. See also the Autopsy 3 Troubleshooting page for ideas.

Connect to the admin console using

* http://localhost:23232/solr/admin

You can see query results with a string like this (replace foo with the search term):

* http://localhost:23232/solr/coreCase/select?q=foo

You can get a debug query with this:

* http://localhost:23232/solr/coreCase/select?q=foo&wt=xml&debugQuery=true

You can do a regexp test query with this (replace foo with regexp):

* http://localhost:23232/solr/coreCase/terms?terms.regex=foo&terms=true&terms.limit=20000&terms.regex.flag=case_insensitive&terms.fl=content_ws&timeAllowed=90000&debugQuery=false

@@ Line 1: / Line 1: @@
 Autopsy uses [https://lucene.apache.org/solr/ Lucene SOLR] for indexed keyword searching.
+= Regular Expressions =
+Autopsy allows you to find files using regular expressions. it uses the Java syntax: http://docs.oracle.com/javase/7/docs/api/java/util/regex/Pattern.html
 = Debugging =
-This section contains some tips for debugging SOLR issues.
+This section contains some tips for debugging SOLR issues.   See also the [[Autopsy 3 Troubleshooting]] page for ideas.
 * Connect to the admin console using
   * http://localhost:23232/solr/admin

Difference between revisions of "Autopsy Keyword Search Module"

Revision as of 17:27, 4 March 2014

Regular Expressions

Debugging

Navigation menu

Views

Personal tools

Navigation

Search

Tools