stephen-murcott / dfir_ntfs Goto Github PK
View Code? Open in Web Editor NEWThis project forked from msuhanov/dfir_ntfs
An NTFS/FAT parser for digital forensics & incident response
License: GNU General Public License v3.0
This project forked from msuhanov/dfir_ntfs
An NTFS/FAT parser for digital forensics & incident response
License: GNU General Public License v3.0
dfir_ntfs: an NTFS/FAT parser for digital forensics & incident response (Python 3 only.) 1. Project goals - Parse $MFT, $UsnJrnl:$J, $LogFile files, extract as much data as possible. - Parse volumes, volume images, and volume shadow copies. - Parse FAT12/16/32, exFAT volumes. 2. Installation # pip3 install https://github.com/msuhanov/dfir_ntfs/archive/1.1.18.tar.gz 3. Timestamps All timestamps reported by the tools are in UTC. (For FAT file systems, all timestamps are local or UTC, returned as is.) The MACE notation is used: - modified (M), - last accessed (A), - created (C), - $MFT entry modified (E). In the WSL set of timestamps (and FAT): - inode changed (CH). 4. License This project is made available under the terms of the GNU GPL, version 3. See the 'License' file. The first exception is the "nist-hacking-case.mft" file. This file is from the NIST Hacking Case, which is distributed by NIST. See the 'Use of NIST Information' section here: <https://www.nist.gov/disclaimer>. The second exception is boot code embedded in some test data. This code is not covered by the GNU GPL, version 3. (All exceptions are in the "test_data" directory, which is not installed.) --- (c) Maxim Suhanov
A declarative, efficient, and flexible JavaScript library for building user interfaces.
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. ๐๐๐
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google โค๏ธ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.