def Process(self):
"""Copies a disk to the analysis account."""
for disk in self._FindDisksToCopy():
self.logger.info('Disk copy of {0:s} started...'.format(disk.name))
new_disk = az_forensics.CreateDiskCopy(
self.analysis_resource_group_name,
disk_name=disk.name,
region=self.analysis_region,
src_profile=self.remote_profile_name,
dst_profile=self.analysis_profile_name)
self.logger.info('Disk {0:s} successfully copied to {1:s}'.format(
disk.name, new_disk.name))
self.analysis_vm.AttachDisk(new_disk)
container = containers.ForensicsVM(name=self.analysis_vm.name,
evidence_disk=new_disk,
platform='azure')
self.state.StoreContainer(container)
def Process(self):
"""Copies a disk to the analysis project."""
for disk in self._FindDisksToCopy():
self.logger.info('Disk copy of {0:s} started...'.format(disk.name))
new_disk = gcp_forensics.CreateDiskCopy(
self.remote_project.project_id,
self.analysis_project.project_id,
None,
self.analysis_project.default_zone,
disk_name=disk.name)
self.logger.info('Disk {0:s} successfully copied to {1:s}'.format(
disk.name, new_disk.name))
new_disk.AddLabels(self._gcp_label)
self.analysis_vm.AttachDisk(new_disk)
container = containers.ForensicsVM(name=self.analysis_vm.name,
evidence_disk=new_disk,
platform='gcp')
self.state.StoreContainer(container)
def Process(self):
"""Copies a volume and attaches it to the analysis VM."""
for volume in self._FindVolumesToCopy():
print('Volume copy of {0:s} started...'.format(volume.volume_id))
new_volume = aws_forensics.CreateVolumeCopy(
self.remote_zone,
dst_zone=self.analysis_zone,
volume_id=volume.volume_id,
src_profile=self.remote_profile_name,
dst_profile=self.analysis_profile_name)
self.analysis_vm.AttachVolume(new_volume,
self._FindNextAvailableDeviceName())
print('Volume {0:s} successfully copied to {1:s}'.format(
volume.volume_id, new_volume.volume_id))
container = containers.ForensicsVM(name=self.analysis_vm.name,
evidence_disk=new_volume,
platform='aws')
self.state.StoreContainer(container)