Extracts files from .raw/.dd images using sleuthkit

Navigation

Verified details

These details have been verified by PyPI
Maintainers
Avatar for 5f.0 from gravatar.com 5f.0

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License: MIT License (MIT)
  • Author: 5f0
Classifiers

Project description

Description

Extracts files from .raw/.dd images by using sleuthkit

Installation

apt install sleuthkit
pip install fileextract

Usage

Create a config file with the following schema:

    {
    "logPath": "fileextract.log",                         // Path to log file
    "raws": [                                               // List of .raw images
        {
            "path": "path/to/raws/**",                      // Path to the .raw image 
            "offset": 0,                                    // Offset where the file system starts
            "files": [                                      // The files which shall be extracted
                "/data/app/user.db"
            ]
        }
    ]
}

Example

python -m fileextract -c config.json

################################################################################

fileextract by 5f0
Extracts files from .raw images by using sleuthkit

Current working directory: /path/to/fileextract

Datetime: 01/01/1970 10:11:12

################################################################################

 --> Target: path/to/raws/action_one.raw
    ---
     Create: path/to/raws/action_one.raw_files
    Extract: /data/app/user.db
    ---

 --> Target: path/to/raws/action_two.raw
    ---
     Create: path/to/raws/action_two.raw_files
    Extract: /data/app/user.db
    ---

################################################################################

Execution Time: 0.139446 sec

License

MIT

Project details

Verified details

These details have been verified by PyPI
Maintainers
Avatar for 5f.0 from gravatar.com 5f.0

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License: MIT License (MIT)
  • Author: 5f0
Classifiers

Release history Release notifications | RSS feed

This version

1.0.0

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

fileextract-1.0.0.tar.gz (4.1 kB view details)

Uploaded Source

Built Distribution

fileextract-1.0.0-py3-none-any.whl (5.3 kB view details)

Uploaded Python 3

File details

Details for the file fileextract-1.0.0.tar.gz.

File metadata

  • Download URL: fileextract-1.0.0.tar.gz
  • Upload date:
  • Size: 4.1 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/4.0.1 CPython/3.10.8

File hashes

Hashes for fileextract-1.0.0.tar.gz
Algorithm Hash digest
SHA256 73cdc3ae9469e11e4889bdf21e6af31400284cd86435603a4db3d5b68d23c7ac
MD5 eb10853c75d264d0ad5be447297fc21b
BLAKE2b-256 4e35609df940e57c8f9b8d2b0381768d33892a1c417419805a76c2752713bc90

See more details on using hashes here.

File details

Details for the file fileextract-1.0.0-py3-none-any.whl.

File metadata

  • Download URL: fileextract-1.0.0-py3-none-any.whl
  • Upload date:
  • Size: 5.3 kB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/4.0.1 CPython/3.10.8

File hashes

Hashes for fileextract-1.0.0-py3-none-any.whl
Algorithm Hash digest
SHA256 75da2d3aa4a134b3b4ec46aa5d7aa8db0f7e64751d438ff2224b6a04953fbb77
MD5 66b74355078332abc6342eee29d0b24a
BLAKE2b-256 51aabd846f096c4413df9f08664343cad662ed855ac965f9dfebcc6ebd770304

See more details on using hashes here.

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page