... Simson, I do not know of such an MS Registry decoder, but I suspect that, if anyone knew of such a decoder, it would likely be a participant on the Windows...
Hi Simson, I use RegLookup frequently. http://projects.sentinelchicken.org/reglookup/ ______________________________ John Lehr Evidence Technician San Luis...
Hello Simson, reglookup - part of pyflag registry-tools - part of the samba project (regshell, regpatch, regdiff and regtree) Both are available via Ubuntu...
Is anyone aware of an open source Microsoft Registry decoder in C or C++? I have one in perl, but it's not quite what I want. I want a library that will allow...
Any chance that this might be some sort of FLASH-specific filesystem? For example: http://developer.axis.com/old/software/jffs/ http://sourceware.org/jffs2/ ...
My guess is that the LAME indicates that you have an audio file that was compressed with LAME (http://lame.sourceforge.net/). My guess would be that the drive...
Hi everyone, I've got a 2gb SD card with data that I cannot read. No familiar partition table is visible. The first sector look like this: 00000000 00 00 00...
Whoops. My previous posting was in error. We already have a metadata extractor for ODF; its called "odf_extractor" I have added it to the 0.5.10 version. ...
docx_extractor.py is in Python and will run on any Python platform. We didn't make it handle OpenOffice documents, but that's a good idea. I'll add it this...
On Tue, 24 Nov 2009 21:59:39 -0800, Simson Garfinkel wrote ... Hi Simson, Seems like a very cool app! Quick question - not having access to a Linux system at...
Hi. The program that extracts metadata from Microsoft Office XML files is is called docx_extractor.py. I just added this tool to the "python" directory of the...
Caine 1.5 is online! http://www.caine-live.net/ The Changelog is in home page. New tools, new manual, new web site, new graphics, new kernel. Thanks :-) ... ...
Hello Friends, I am really new to Forensic field. I am doing Master of Engineering in Information Systems Security. I like this IT Security Field. Since, I am...
Today was born Caine 1.0, new tools, new mounting policies (safer), new patch....enjoy it! http://www.caine-live.net/ bye ... Dott. Nanni Bassetti Consulente...
Hi, folks ! What ssdeep hashset do you use to sort/filter a forensic image ? NSRL doesn't have it, yeah ? []s -- Tony Rodrigues, CISSP, CFCP Forense...
I use libextractor for traditional MS Office files and custom-written tools for the XML-based file formats. You may also find this interesting: Garfinkel, S.,...
If you are into Perl programing, look at Harlan Carvey's Perl mod File::MSWord and see: http://windowsir.blogspot.com/2006/09/metadata-and-ediscovery.html you...
Payne Consulting's Metadata Assistant for versions of Office prior to 2007. Make sure that you have Office 2003 installed not Office 2007 and don't convert...
Hi all, Please forgive the cross-posting. I am trying to find any information on MS office metadata, and how to extract it. Is there a spec available for...
Hi farmerdude I am looking for a feature in web server that is it possible to IDENTIFY about status of data. I mean that weather it is system/browser...
Although I normally don't top post, I suspect that is probably more practical in your case. Not sure if the accessibility software properly skips to the...
Jacques, Thank you for the honest response and warnings. I realize there are some real issues with trying to hunt this down, however, since I have been...
Having problems with message search?
Fill out this form to ensure your group is one of the first to be migrated to the new message search system.
