Difference between revisions of "Libregf"

From ForensicsWiki
Jump to: navigation, search
Line 9: Line 9:
  
 
The '''libregf''' package contains a library and applications to read the [[Windows_NT_Registry_File_(REGF) | Windows NT Registry File (REGF)]] format.
 
The '''libregf''' package contains a library and applications to read the [[Windows_NT_Registry_File_(REGF) | Windows NT Registry File (REGF)]] format.
 
== History ==
 
 
Libregf was created by [[Joachim Metz]] in 2009, while working for [http://en.hoffmannbv.nl/ Hoffmann Investigations].
 
  
 
== Tools ==  
 
== Tools ==  
Line 18: Line 14:
 
* '''regfinfo''', which shows information about REGF files.
 
* '''regfinfo''', which shows information about REGF files.
 
* '''regfmount''', which mounts the keys and values in a REGF file as directories and files.
 
* '''regfmount''', which mounts the keys and values in a REGF file as directories and files.
 +
 +
== History ==
 +
 +
Libregf was created by [[Joachim Metz]] in 2009, while working for [http://en.hoffmannbv.nl/ Hoffmann Investigations].
  
 
== Also See ==
 
== Also See ==
Line 25: Line 25:
 
== External Links ==
 
== External Links ==
  
* [http://libregf.sourceforge.net libregf project site]
+
* [http://code.google.com/p/libregf/ Project site]
 +
* [http://libregf.sourceforge.net Old project site]

Revision as of 02:04, 19 August 2012

libregf
Maintainer: Joachim Metz
OS: Linux, FreeBSD, NetBSD, OpenBSD, Mac OS X, Windows
Genre: Analysis
License: LGPL
Website: libregf.sourceforge.net

The libregf package contains a library and applications to read the Windows NT Registry File (REGF) format.

Tools

The libregf package contains the following tools:

  • regfinfo, which shows information about REGF files.
  • regfmount, which mounts the keys and values in a REGF file as directories and files.

History

Libregf was created by Joachim Metz in 2009, while working for Hoffmann Investigations.

Also See

External Links