downtechs
Loading...
python tools tutorials




Python Registry Parser

Reply A+ A-
http://down--tech.blogspot.com/2015/03/python-registry-parser.html
Python Registry Parser


Python Registry Parser 

The thought of this began as one to copy Microsoft's autoruns device to the degree conceivable with just logged off registry hives. At that point I began including additional non-autorun(ish) registry keys and afterward it transformed into all the more a Windows Registry parser; consequently the name change from autoreg-parse to python-regparse. I'm loathsome at naming scripts/instruments so this will need to suffice. 

He expounded on it here on my web journal: https://sysforensics.org/2015/03/python-registry-parser.html 

Reason 

  • He didn't prefer the yield of different instruments. 
  • He needed to figure out how to compose better Python code. 

Yield 

This was a sticky point I had with option instruments, and understanding this I considered every option and reached the determination in the event that I need an instrument that doesn't have muddled yield i'm going to need to make it custom client characterized yield, and afterward give a fallback layout document if a custom yield isn't characterized through the order line. This will probably turn some individuals off from utilizing this apparatus, however I think its the most ideal path forward. 

I recommend investigating for some yield samples: https://sysforensics.org/2015/03/python-registry-parser.html as its not as perplexing as it may sound. Actually for non-coders its simple. 

The most effective method to Install 

  • Introduce Python 2.79 
  • Introduce https://pypi.python.org/pypi/setuptools 
  • sudo pip introduce python-registry 
  • sudo pip introduce jinja2 
  • wget https://github.com/sysforensics/python-regparse/blob/expert/yapsy_mods/yapsy-master.zip 
  • Unfasten it 
  • compact disc yapsy-expert/bundle/ 
  • sudo python setup.py manufacture 
  • sudo python setup.py introduce 
  • wget https://github.com/sysforensics/python-regparse/document/master.zip 
  • Unfasten 
  • Put it where you need, and after that appreciate! 


I've tried/utilized on OSX, Windows and SIFT 3.0. On the off chance that pip doesn't work for you attempt easy_install. 

Need to Help? 

On the off chance that you are occupied with bailing please connect. Likewise, don't hesitate to contribute a few plugins. On the off chance that you can't code, however have a few thoughts please tell me also. That is more vital. Simply make an issue here on GitHub or on the off chance that you don't have a GitHub account you can give me an email. 

On account of: 

@williballenthin - http://www.williballenthin.com for composing python-registry, which is the thing that I am utilizing in the engine and for the thought of utilizing client characterized yield. 

@hiddenillusion - This illustration kicked me off on the thought. https://github.com/williballenthin/python-registry/blob/expert/examples/forensicating.py
, ,
tutorials 8470667268329237297

Post a Comment Default Comments Disqus Comments

emo-but-icon

Newer Post Older Post Home item
Home item

Find Us On Facebook

Follow Us On Twitter

Popular Posts

  • High Severity Vulnerability Found in PolarSSL Library
    High Severity Vulnerability Found in PolarSSL Library A vulnerability that can be exploited for denial-of-service (DoS) attacks ...
  • pwntools - CTF Toolkit
    pwntools - CTF Toolkit This is the CTF framework used by Gallopsled in every CTF. from pwn import * context(arch = 'i386...
  • Recommended Removals
    https://www.bark.com/en/company/bradford-removal-service/mdYK6/ http://blog.netanagent.com/gazumping-what-is-it-and-how-can-you-avoid-it/ ...

Random Posts