Key | Value |
---|---|
MD5 | 9DE8EF91055C0B7D197C0171AAE1EADD |
PackageArch | aarch64 |
PackageDescription | Hive files are the undocumented binary files that Windows uses to store the Windows Registry on disk. Hivex is a library that can read and write to these files. 'hivexsh' is a shell you can use to interactively navigate a hive binary file. 'hivexregedit' (in perl-hivex) lets you export and merge to the textual regedit format. 'hivexml' can be used to convert a hive file to a more useful XML format. In order to get access to the hive files themselves, you can copy them from a Windows machine. They are usually found in %systemroot%\system32\config. For virtual machines we recommend using libguestfs or guestfish to copy out these files. libguestfs also provides a useful high-level tool called 'virt-win-reg' (based on hivex technology) which can be used to query specific registry keys in an existing Windows VM. For OCaml bindings, see 'ocaml-hivex-devel'. For Perl bindings, see 'perl-hivex'. For Python 3 bindings, see 'python3-hivex'. For Ruby bindings, see 'ruby-hivex'. |
PackageMaintainer | tv <tv> |
PackageName | hivex |
PackageRelease | 11.mga8 |
PackageVersion | 1.3.19 |
SHA-1 | 1A6A519C1C3A75DD1EAEA651A8D67969123D88ED |
SHA-256 | 7126711E6630AFBE887E2A069E6F9F7AA4443B7897D0C6D11DD64EA1631FCF0D |
hashlookup:children-total | 31 |
hashlookup:trust | 50 |
The searched file hash includes 31 children files known and seen by metalookup. A sample is included below:
Key | Value |
---|---|
FileName | ./usr/share/locale/fr/LC_MESSAGES/hivex.mo |
FileSize | 4620 |
MD5 | 6D4F4E3F4FFA08556E3D0C6A7E9C6284 |
SHA-1 | 0DDA67BCF6BA61BB2A27CFB908E1162FC0888C5D |
SHA-256 | 66B260B90D14F1492176D5E39A2005B298C11E92117E844B7368DDF0F891D58B |
SSDEEP | 96:ueGIkW+hG+KmJVdY1Uw0iqIozpzBIMV11tWlAVspUgIh3U92:VGlW0x1SOcFMP/Wlosq02 |
TLSH | T10591B6EED7C427ABEBC21176B74D9102D6148E588E5AE35419DCC346328C8BC48EA9DC |
tar:gname | root |
tar:uname | root |
Key | Value |
---|---|
FileName | ./usr/share/locale/mr/LC_MESSAGES/hivex.mo |
FileSize | 5896 |
MD5 | FF0A61BE1307BC08BFF12BEC569E0F6F |
SHA-1 | 0DDA7E277D2EE821A792FAE12D956D0FCF2E3A3D |
SHA-256 | 413318F32835ED7571D9F44BAB27718BEE22CC0D21D1BA6BAE8DFA6D301964F5 |
SSDEEP | 96:udbyIkW+hG+KmJVdY1Uw0iqIdJSHApGvE6oBsdGw9vbyYve4i+Nlj+749X74eLiN:WylW0x1SOc+TEx62ejkwABcgIBGj |
TLSH | T125C1324CF37DF756CEFD78B927484E3685B811B4CBE642510898F2977C80CB801AE5AA |
tar:gname | root |
tar:uname | root |
Key | Value |
---|---|
FileName | ./usr/share/locale/pt/LC_MESSAGES/hivex.mo |
FileSize | 4367 |
MD5 | 1AF95C490C60FFE8EFC80AE8C064E926 |
SHA-1 | 0E900A39EB27755761351184EAD36742C2144593 |
SHA-256 | 9695129AE0CF6E25996D25755C174038025A7B2B4D46F6FA8D20ACDCF7846F46 |
SSDEEP | 96:ujz3IkW+hG+KmJVdY1Uw0iqIeh8GXKzfFmMsPHoLAHLCKgl9y:ez3lW0x1SOcefKzfFDKHoLEMy |
TLSH | T13591F86A83403B57DBE713F6AB4EC20296450A989E62C1C21B8CD153B5C8AAC55FF0FC |
tar:gname | root |
tar:uname | root |
Key | Value |
---|---|
FileName | ./usr/share/locale/ja/LC_MESSAGES/hivex.mo |
FileSize | 4998 |
MD5 | CB070B91ADBEBDB486CD2CD5002CB082 |
SHA-1 | 1723271CFFA7F631CEF43FDEBDA600669347A680 |
SHA-256 | 0E1FF4772C8385DC2C6BF5A9E04544F371D1E2BB418218D80F4C7C36CC93C3C7 |
SSDEEP | 96:uDLVIkW+hG+KmJVdY1Uw0iqIGiX6sG+78C12jdDMiBy6zFu:WVlW0x1SOcFNGlQ2jdIZ |
TLSH | T1FBA1942DD7C13AABCAE300B14A5D328176684C8DFE537332015EC0127990AAEE45E9FD |
tar:gname | root |
tar:uname | root |
Key | Value |
---|---|
FileName | ./usr/share/man/man1/hivexsh.1.xz |
FileSize | 5360 |
MD5 | A5AAFD7D9AA6ACFA3F6C374F0E1ABF39 |
SHA-1 | 24F04B66BCE98F5E78F97A056EC5AD6FEF23C048 |
SHA-256 | B55B494218065ECFD7C2944FA815DF500C5FD73B3D40857C6F80243AA380EF97 |
SSDEEP | 96:RNlfERXUMk/nSL0wtLHnfAGpUg69/VPhXKKPV3ao+sWYoHXKu431EdzuuF2fXoop:RNFEVUMQ5CnfAGig6FVRKK9cTNXKu5uD |
TLSH | T120B18DD9221CE4B8A1F587610AE26727FB4319E28D42CD1766D621D337314C4D3C99E8 |
Key | Value |
---|---|
FileName | ./usr/share/locale/hu/LC_MESSAGES/hivex.mo |
FileSize | 4359 |
MD5 | 0037133C30C349524C56A90292F9CA58 |
SHA-1 | 29C603BCE19A7E4671A175EDD7031D225A33E762 |
SHA-256 | D03BCA6725A7008722DEDFC149F3BB8245FD444C96E502BA3D8694107D8DA4A7 |
SSDEEP | 96:uBsaIkW+hG+KmJVdY1Uw0iqI9XgAR81BBK4ErOoPezE6tJ+sYp8n:lalW0x1SOc9QPTBK48fYEcop8n |
TLSH | T11091E82947013B4BEBF703F6D35C9610518A06589F73BA72155D828731C09AD59FF0EE |
tar:gname | root |
tar:uname | root |
Key | Value |
---|---|
FileName | ./usr/share/man/man1/hivexml.1.xz |
FileSize | 2752 |
MD5 | F288174FBC8212EA721E963800072F2B |
SHA-1 | 3CADFB95924405FA5EC5CCA44F3B771F01CA7F41 |
SHA-256 | 04D30894B44AF6E5657F5E2F6A53CF8FA0418E4613582269A2FB9F585E765202 |
SSDEEP | 48:5dNHF5zNEpPguUuEWk/nS8Uj4kgJwtXrLHnoIAuhXYaWNY3ifC553VK7weWmVEo5:5dNlfERXUMk/nSL0wtLHnfAuhXYVWJXM |
TLSH | T1E5515EC516BC945912F14B3506D96707F56602E588CE4E1BB5EE24CA10EA55CEACCEC0 |
Key | Value |
---|---|
FileName | ./usr/share/doc/packages/hivex/README |
FileSize | 3186 |
MD5 | 32790F9B1CE0B21AB5FBEB97652D7345 |
RDS:package_id | 293685 |
SHA-1 | 3EA80DB40548E7E6B8E4D515D57B055BCFE050BD |
SHA-256 | 67221A953E2A6BF04CC63D63D28C8E19A62E06165222DF0A4933255381BDC96A |
SSDEEP | 48:t2lyXyvv18eGFxqqsfS2P/tL3hITBjvDoSox5vDrzGhN3/emvkdao8yXTfE6K+zv:oyXWKfBsfptLGvDKxYXPemByDM6K+zv |
TLSH | T11161C9366E69837367E0C6B0550EC2B2CB22D47E9A2F5592B57C404A7313EA065FC3F0 |
insert-timestamp | 1678963978.8035011 |
source | RDS.db |
Key | Value |
---|---|
FileName | ./usr/lib/.build-id/37/b163b412909ce056464db2f4a2c9518a222ac7 |
FileSize | 27 |
MD5 | 0F9A618F6434327C0CA5D3DEDFE667EC |
SHA-1 | 575172390BBB6E3DF11D633CBD419EB1B9B54E79 |
SHA-256 | 4ED5866F126E369E0C192CD2E1165BFF6FC63895046751AA669DB0DA2007AA37 |
SSDEEP | 3:gCDNfTAKJ:X1TAKJ |
TLSH |
Key | Value |
---|---|
CRC32 | EB688BD6 |
FileName | ./usr/share/licenses/ocaml-hivex/LICENSE |
FileSize | 26650 |
MD5 | F23A23B996E90732D119709C8ACA08DB |
OpSystemCode | 362 |
ProductCode | 183705 |
RDS:package_id | 263813 |
SHA-1 | 5A02CDEBBDCDF259EF79A175339B33608E4BC345 |
SHA-256 | AA9BAA29E495877229E89F517D381672586F7233CCFCC7C0DEFA30FFBAAF3C65 |
SSDEEP | 384:U456OuAbnn0UReX6wFDVxnFw7xqsvzt+z/k8E9HinIhFkspcM9bc7ups0CZuQa:U45trLeDnFMz1ReScmc7GshZuQa |
SpecialCode | |
TLSH | T1BBC2853EB70103B206C206906A4FA4DEE32BD07932675964749DC15D23AB93543FFBEA |
db | nsrl_modern_rds |
insert-timestamp | 1654960987.863141 |
source | modern.db |