Notifications

Clear all

Windows Registry analysis using Linux?

General (Technical, Procedural, Software, Hardware etc.)

Last Post by thefuf 16 years ago

3 Posts

3 Users

0 Reactions

1,501 Views

RSS

dennis123123

(@dennis123123)

New Member

Joined: 17 years ago

Posts: 3

Topic starter 03/05/2009 4:33 pm

Does anyone know of a Linux application which can read Windows Registry files (for forensic analysis!)?

I've found kregedit, but the site states it as being discontinued (

I was wondering what the 'professionals' that use open source forensic tools use for this purpose?

Quote

keydet89

(@keydet89)

Famed Member

Joined: 21 years ago

Posts: 3568

03/05/2009 4:39 pm

RegRipper can be run in Linux, with wine installed. The tools are written in Perl and the associated rip.pl can be run in Linux (slight mod required for current version available).

ReplyQuote

thefuf

(@thefuf)

Reputable Member

Joined: 17 years ago

Posts: 262

03/05/2009 4:59 pm

reglookup - http//projects.sentinelchicken.org/reglookup/download/

ReplyQuote

Podcast: Well-Being In Digital Forensics And Policing: Insights From Hannah Bailey

Hannah Bailey shares her journey from frontline policin...

By Zoe , 20 hours ago
RE: Android Forensics

Hi, Try decompressing the file using zlib in python. ...

By Dexter4n6 , 2 days ago
Interview: Neal Ysart, Co-Founder, The Coalition of Cyber Investigators

Neal Ysart shares how The Coalition of Cyber Investigat...

By Zoe , 2 days ago

8 Forums
15.7 K Topics
92.3 K Posts
250 Online
41.1 K Members

Forum Icons: Forum contains no unread posts Forum contains unread posts

Topic Icons: Not Replied Replied Active Hot Sticky Unapproved Solved Private Closed