Down to the smallest sector detail!
Project description
getblocks
NORMALIZATION
Clean data is mission-critical for collecting operating system artifacts, especially with user home directories.
APPLE, LINUX, & UNIX
if path[:1] == '/':
out = path.split('/')
try:
if out[1] == 'home':
out[2] = 'user'
path = '/'.join(out)
elif out[1] == 'Users':
if out[2] != 'Shared':
out[2] = 'user'
path = '/'.join(out)
except:
pass
MICROSOFT WINDOWS
elif path[1] == ':':
out = path.split('\\')
try:
if out[1] == 'Users' or out[1] == 'Documents and Settings':
if out[2] != 'Default' and out[2] != 'Public' and out[2] != 'All Users' and out[2] != 'Default User':
out[0] = 'C:'
out[2] = 'Administrator'
path = '\\'.join(out)
except:
pass
CAPTURED DATA
- ami
- path
- file
- size
- md5
- sha256
- b3
- md5path
- sha256path
- b3path
- md5dir
- sha256dir
- b3dir
- md5name
- sha256name
- b3name
- type
- entropy
- block
- location
REQUIREMENTS
curl https://sh.rustup.rs -sSf | sh -s -- -y
source "$HOME/.cargo/env"
INSTALLATION
pip install getblocks
DEVELOPMENT
python setup.py install --user
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
getblocks-2023.7.31.tar.gz
(8.2 kB
view hashes)
Built Distribution
Close
Hashes for getblocks-2023.7.31-py3-none-any.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 15d5e220dd5d544279f6f7f03c62aff542b2b54f401fdd70876f4a793087f7a0 |
|
MD5 | f41a4298aea6a51c85a1aae3eb14ab15 |
|
BLAKE2b-256 | ef4ceb711a83d6b4a08cfa722cab0c6ceac12ce62e93dbb1768733434a6d3a2f |