libyal/winreg-kb

Stars
157
Rank 238,399 (Top 5 %)
Language
Python
License
Apache License 2.0
Created about 10 years ago
Updated 7 months ago

libyal/winreg-kb

libyal

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Windows Registry Knowledge Base

winreg-kb is a project to build a Windows Registry Knowledge Base.

winregrc is a Python module part of winreg-kb to allow reuse of Windows
Registry Resources.

For more information see:
* Project documentation: https://winreg-kb.readthedocs.io/en/latest

libfvde

Library and tools to access FileVault Drive Encryption (FVDE) encrypted volumes

libesedb

Library and tools to access the Extensible Storage Engine (ESE) Database File (EDB) format.

libfsapfs

Library and tools to access the Apple File System (APFS)

libpff

Library and tools to access the Personal Folder File (PFF) and the Offline Folder File (OFF) format

libewf

Libewf is a library to access the Expert Witness Compression Format (EWF)

libbde

Library and tools to access the BitLocker Drive Encryption (BDE) encrypted volumes

libyal

Yet another library library (and tools)

liblnk

Library and tools to access the Windows Shortcut File (LNK) format

libevtx

Library and tools to access the Windows XML Event Log (EVTX) format

libfsntfs

Library and tools to access the Windows New Technology File System (NTFS)

libvmdk

Library and tools to access the VMware Virtual Disk (VMDK) format

dtformats

Collection of data formats

libfsrefs

Library and tools to access the Resilient File System (ReFS)

libvhdi

Library and tools to access the Virtual Hard Disk (VHD) image format

libvshadow

Library and tools to access the Volume Shadow Snapshot (VSS) format

libregf

Library and tools to access the Windows NT Registry File (REGF) format

libscca

Library and tools to access the Windows Prefetch File (SCCA) format.

libfwsi

Library to access the Windows Shell Item format

libolecf

Library and tools to access the OLE 2 Compound File (OLECF) format

libevt

Library and tools to access the Windows Event Log (EVT) format

libfwnt

Library for Windows NT data types

libqcow

Library and tools to access the QEMU Copy-On-Write (QCOW) image format

esedb-kb

Extensible Storage Engine (ESE) Database File Knowledge Base

libexe

Library and tools to access the executable (EXE) format

libluksde

Library and tools to access LUKS Disk Encryption encrypted volumes

libmdmp

Library and tools to access the Windows Minidump (MDMP) format

libfshfs

Library and tools to access the Mac OS Hierarchical File System (HFS)

libnsfdb

Library and tools to access the Notes Storage Facility (NSF) database file format

libvslvm

Library and tools to access the Linux Logical Volume Manager (LVM) volume system format

assorted

Assorted documentation, scripts and tools

libsigscan

Library for binary signature scanning.

libfsclfs

Library and tools to access the Common Log File System (CLFS)

libodraw

Library and tools to access to optical disc (split) RAW image files (bin/cue, iso/cue)

libmodi

Library and tools to access the Mac OS disk image formats

libfsext

Library and tools to access the Extended File System

libmsiecf

Library and tools to access the Microsoft Internet Explorer (MSIE) Cache File (index.dat) files

winevt-kb

Windows Event Log Knowledge Base

libfwevt

Library for Windows XML Event Log (EVTX) data types

libwtcdb

Library and tools to access the Windows (Vista/7) Explorer thumbnail cache database format (thumbcache.db)

libhibr

Library and tools to access the Windows Hibernation File (hiberfil.sys) format

libagdb

Library and tools to access the Windows SuperFetch database format

libvsmbr

Library and tools to access the Master Boot Record (MBR) volume system format

reviveit

ReviveIT (revit) is a proof of concept file recovery tool (carver)

libfole

Library for Object Linking and Embedding (OLE) data types

libcfile

Library for cross-platform C file functions

libfsxfs

Library and tools to access the SGI X File System (XFS)

libewf-legacy

Legacy version of libewf

libcaes

Library to support cross-platform AES encryption

libcthreads

Library for cross-platform C threads functions

libcdata

Library for cross-platform C generic data functions

documentation

libhmac

Library to support various Hash-based Message Authentication Codes (HMAC)

libsmraw

Library and tools to access the (split) RAW image format

libvsgpt

Library and tools to access the GUID Partition Table (GPT) volume system format

libbfio

Library to provide basic file input/output abstraction

libfmos

Library for Mac OS data types

dtfabric

Tooling for data type and structure management

libuna

Library to support Unicode and ASCII (byte string) conversions

libcnotify

Library for cross-platform C notification functions

libfplist

Library for plist format

libclocale

Library for cross-platform C locale functions

libcerror

Library for cross-platform C error functions

libftxf

Library for Transactional NTFS (TxF) data types

libbfoverlay

Library to provide basic file overlay support

libfguid

Library for GUID/UUID format

libcsplit

Library for cross-platform C split string functions

libcreg

Library and tools to access the Windows 9x/Me Registry File (CREG) format

libfdata

Library to provide generic file data functions

libfcrypto

Library for encryption formats

libfmapi

Library for Messaging API (MAPI) data types

libmapidb

Library to access the Exchange MAPI database format

vstools

Visual Studio tools for the libyal projects

libfusn

Library for Update Sequence Number (USN) Journal data types

libfdatetime

Library for date and time formats

libsmdev

Library to access to storage media devices

testdata

Test data for libyal projects

libcpath

Library for cross-platform C path functions

libgzipf

Library and tools to access the GZIP file format

olecf-kb

OLE Compound File (OLECF) Knowledge Base

libnk2

Library and tools to access the Microsoft Outlook Nickfile (NK2) format

libfcache

Library to provide generic file data cache functions

libcdatetime

Library for cross-platform C date and time functions

libwrc

Library to access the Windows Resource Compiler (WRC) format

libfsfat

Library and tools to access the File Allocation Table (FAT) file system

libcsystem

Library for cross-platform C system functions

libfwps

Library for Windows Property Store data types

libphdi

Library and tools to access the Parallels Hard Disk image format

libcdirectory

Library for cross-platform C directory functions

libftxr

Library for Transactional Registry (TxR) data types

legacy

Legacy releases

ideabucket

libcstring

Library for cross-platform C string functions

libtableau

Library to read metadata from the Tableau(TM) forensic bridges (write blockers) based on tableau-parm

libfvalue

Library for generic file value functions

winsps-kb

Windows Serialized Property Store Knowledge Base

libvsapm

Library and tools to access the Apple Partition Map (APM) volume system format

libovf

Library and tools to access the Open Virtualization Format (OVF)

plist-kb

Property list (plist) Knowledge Base

winshl-kb

Windows Shell Knowledge Base