Rebuild Elastic Block Storage (EBS) direct API blocks into a DD forensic image generated by Snap4n6 Serverless Imager.

Project description

Snap4n6 CLI

Rebuild Elastic Block Storage (EBS) direct API blocks into a DD forensic image generated by Snap4n6 Serverless Imager.

Permissions

s3:GetBucketLocation
s3:GetObject
s3:ListBucket
ssm:GetParameter

Installation

pip install snap4n6

Help

Snap4n6 v0.4.0

optional arguments:
  -h, --help       show this help message and exit

Required:
  --region REGION  us-east-2
  --snapid SNAPID  snap-0f3e60199f11889da

Optional:
  --ext4           Rebuild EXT4 File System

Command

Microsoft Windows Snapshots contain the NTFS File System necessary to rebuild a forensic image.

Linux Snapshots require the creation of Superblocks for the EXT4 File System using: mkfs.ext4

snap4n6 --region us-east-2 --snapid snap-0f3e60199f11889da --ext4

Output

Snap4n6 v0.4.0


Region:         us-east-2
Snapshot:       snap-0f3e60199f11889da
Ext4 Fs:        True

0+0 records in
0+0 records out
0 bytes (0 B) copied, 0.000209499 s, 0.0 kB/s
mke2fs 1.42.9 (28-Dec-2013)
snap-0f3e60199f11889da.dd is not a block special device.
Proceed anyway? (y,n) Discarding device blocks: done                            
Filesystem label=
OS type: Linux
Block size=4096 (log=2)
Fragment size=4096 (log=2)
Stride=0 blocks, Stripe width=0 blocks
65536 inodes, 262144 blocks
13107 blocks (5.00%) reserved for the super user
First data block=0
Maximum filesystem blocks=268435456
8 block groups
32768 blocks per group, 32768 fragments per group
8192 inodes per group
Superblock backups stored on blocks: 
        32768, 98304, 163840, 229376

Allocating group tables: done                            
Writing inode tables: done                            
Creating journal (8192 blocks): done
Writing superblocks and filesystem accounting information: done

  4%|██▌                       | 4/104 [00:05<02:07,  1.28s/it]

Local Development

$ python setup.py install --user

Project details

Release history Release notifications | RSS feed

0.4.2

Mar 19, 2023

0.4.1

Feb 3, 2023

This version

0.4.0

Mar 20, 2022

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

snap4n6-0.4.0.tar.gz (7.6 kB view details)

Uploaded Mar 20, 2022 Source

Built Distribution

snap4n6-0.4.0-py3-none-any.whl (8.4 kB view details)

Uploaded Mar 20, 2022 Python 3

File details

Details for the file snap4n6-0.4.0.tar.gz.

File metadata

Download URL: snap4n6-0.4.0.tar.gz
Upload date: Mar 20, 2022
Size: 7.6 kB
Tags: Source
Uploaded using Trusted Publishing? No
Uploaded via: twine/3.8.0 pkginfo/1.8.2 readme-renderer/34.0 requests/2.27.1 requests-toolbelt/0.9.1 urllib3/1.26.9 tqdm/4.63.0 importlib-metadata/4.11.3 keyring/23.5.0 rfc3986/2.0.0 colorama/0.4.4 CPython/3.9.11

File hashes

Hashes for snap4n6-0.4.0.tar.gz
Algorithm	Hash digest
SHA256	`a81c6f8cd047802563bab6220f3e9d21f7d68bb4c9dcd9c048fa783ba5f5c3c5`
MD5	`0d4c222b0ad81e314c34d7d49810bc8c`
BLAKE2b-256	`f9f16cbef52cd9f48bbb5d5366b498f01d1f0c1eff04b87260f9d257c9870d76`

See more details on using hashes here.

File details

Details for the file snap4n6-0.4.0-py3-none-any.whl.

File metadata

Download URL: snap4n6-0.4.0-py3-none-any.whl
Upload date: Mar 20, 2022
Size: 8.4 kB
Tags: Python 3
Uploaded using Trusted Publishing? No
Uploaded via: twine/3.8.0 pkginfo/1.8.2 readme-renderer/34.0 requests/2.27.1 requests-toolbelt/0.9.1 urllib3/1.26.9 tqdm/4.63.0 importlib-metadata/4.11.3 keyring/23.5.0 rfc3986/2.0.0 colorama/0.4.4 CPython/3.9.11

File hashes

Hashes for snap4n6-0.4.0-py3-none-any.whl
Algorithm	Hash digest
SHA256	`48fd87f4c1438a600f8ef10558e75d775da20db9cdaaea2122076234a0f46db3`
MD5	`1dac04dcc2be11980353a2f394a461bb`
BLAKE2b-256	`d5201bae4818780a744c0cf108f22c8d2b01185cf83f1b2f81612728cce9d25b`