Two scripts here to help creating timeline on Linux live systems :
filetimeline.py: get a list of files in a folder with their change time, modification time and birth time using stat (which does not give the creation time even if the file system has it)mactime.py: convert this list of files into a csv timeline
Misc :
extract_chrome_history.py: extract history from a Chrome History SQlite fileios_unpack.py: unpack iOS backup folder from iTunes or libimobiledevice