Difference between revisions of "Libregf"

From Forensics Wiki
Jump to: navigation, search
Line 18: Line 18:
 
* '''regfinfo''', which shows information about REGF files.
 
* '''regfinfo''', which shows information about REGF files.
 
* '''regfmount''', which mounts the keys and values in a REGF file as directories and files.
 
* '''regfmount''', which mounts the keys and values in a REGF file as directories and files.
 +
 +
== Also See ==
 +
* [[Windows NT Registry File (REGF)]]
 +
* [[Windows Registry]]
  
 
== External Links ==
 
== External Links ==
  
 
* [http://libregf.sourceforge.net libregf project site]
 
* [http://libregf.sourceforge.net libregf project site]

Revision as of 23:50, 17 July 2012

libregf
Maintainer: Joachim Metz
OS: Linux, FreeBSD, NetBSD, OpenBSD, Mac OS X, Windows
Genre: Analysis
License: LGPL
Website: libregf.sourceforge.net

The libregf package contains a library and applications to read the Windows NT Registry File (REGF) format.

Contents

History

Libregf was created by Joachim Metz in 2009, while working for Hoffmann Investigations.

Tools

The libregf package contains the following tools:

  • regfinfo, which shows information about REGF files.
  • regfmount, which mounts the keys and values in a REGF file as directories and files.

Also See

External Links