Down to the smallest sector detail!
Project description
getblocks
NORMALIZATION
Clean data is mission-critical for collecting operating system artifacts, especially with user home directories.
APPLE, LINUX, & UNIX
if path[:1] == '/':
out = path.split('/')
try:
if out[1] == 'home':
out[2] = 'user'
path = '/'.join(out)
elif out[1] == 'Users':
if out[2] != 'Shared':
out[2] = 'user'
path = '/'.join(out)
except:
pass
MICROSOFT WINDOWS
elif path[1] == ':':
out = path.split('\\')
try:
if out[1] == 'Users' or out[1] == 'Documents and Settings':
if out[2] != 'Default' and out[2] != 'Public' and out[2] != 'All Users' and out[2] != 'Default User':
out[0] = 'C:'
out[2] = 'Administrator'
path = '\\'.join(out)
except:
pass
CAPTURED DATA
- ami
- path
- file
- size
- md5
- sha256
- b3
- md5path
- sha256path
- b3path
- md5dir
- sha256dir
- b3dir
- md5name
- sha256name
- b3name
- type
- entropy
- block
- location
REQUIREMENTS
curl https://sh.rustup.rs -sSf | sh -s -- -y
source "$HOME/.cargo/env"
INSTALLATION
pip install getblocks
DEVELOPMENT
python setup.py install --user
META INFORMATION
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
getblocks-2024.4.14.tar.gz
(8.2 kB
view hashes)
Built Distribution
Close
Hashes for getblocks-2024.4.14-py3-none-any.whl
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | cba8afb859aa9922672ed6ca59f0f34132b4aa92e4d5e5e46564ce9275360cff |
|
| MD5 | aadbe3a9d40884ef4a7c4f8bb0505b7b |
|
| BLAKE2b-256 | 75572d7fed766716d972d29bccd55072c6584cfb236bd51d5d7a15a6320a2bc2 |
