License

Unless otherwise specified, the GPLv2 is valid for the scripts.

Downloads

All scripts you can download here .

e01-info

You have a bulk of EWF-Images and you need details of those? With GUI tools like X-Ways Forensics you need many, many klicks (and time) to do this. Therefore i wrote a little, simple (and quite stupid - no error handling) script to this for me. It use mmls and img_stat from the sleuthkit-tools to get the information. Usage: If the script starts with no parameter it scans the all subdirectories in the current directory für files endings with e01 or E01 and write the informations for the images in an file called img-info.txt in the current directory. If the images are located in an other directory you can give this directory as parameter.

fts-meta-xtract

… list all files in a given directory. The script writes the following infos of the file in an html file:<br>

getdriveinfo

… collect some data from harddisk and write it in a html file.

pyEWF

… is a quite old script, but it works fine for me. pyEWF is an Dialog-based frontend for ewfacquire (Part of the libewf-Tools).

rr2html

rr2html an little enhancement of the great RegRipper Tool (www.regripper.net) to make a nicer HTML output. If the parameter -html is given, a directory named after the current time i.e. 20100628_183815 will be created. In this directory will be created the output files.

Currently only 19 plugins are supported. From time to time i will add one or more plugins.

My first version used BASH and GAWK scripts to format the output. Now the HTML code is generated directly in the Plugins.

scripte.txt · Zuletzt geändert: 2010/08/02 12:55 von root
CC Attribution-Noncommercial-Share Alike 3.0 Unported
www.chimeric.de Valid CSS Driven by DokuWiki do yourself a favour and use a real browser - get firefox!! Recent changes RSS feed Valid XHTML 1.0