RVT v0.2.1 published
5 views
Skip to first unread message
Jose
Nov 14, 2009, 5:38:51 PM11/14/09
to revealer-newsletter
First of all, sorry for the lack of news and updates lately, but RVT
is developed with the free and spare time of the members of the team,
and I have not had a lot of that in the last months.
RVT v0.2.1 include new features and some little improvements:
* LNK files parsing
* Harlan Carvey, author of the well-known Windows Incident Response
blog (http://windowsir.blogspot.com/), has kindly provided us with
brilliant Perl code to parse Windows event files (EVT extension). Thus
RVT now integrates the script ‘evt’, which can output text versions of
the EVT files (script evt generate); it can also generate some stats
about each EVT (script evt report). We would like to sincerely thank
Harlan for his support and his useful code.
* f-strings: an forensics version of Binutils strings command
extended shell history
* little changes and corrections
* updated User Guide
Read The Revealer Toolkit website (http://code.google.com/p/
revealertoolkit/) for more information.
is developed with the free and spare time of the members of the team,
and I have not had a lot of that in the last months.
RVT v0.2.1 include new features and some little improvements:
* LNK files parsing
* Harlan Carvey, author of the well-known Windows Incident Response
blog (http://windowsir.blogspot.com/), has kindly provided us with
brilliant Perl code to parse Windows event files (EVT extension). Thus
RVT now integrates the script ‘evt’, which can output text versions of
the EVT files (script evt generate); it can also generate some stats
about each EVT (script evt report). We would like to sincerely thank
Harlan for his support and his useful code.
* f-strings: an forensics version of Binutils strings command
extended shell history
* little changes and corrections
* updated User Guide
Read The Revealer Toolkit website (http://code.google.com/p/
revealertoolkit/) for more information.
Reply all
Reply to author
Forward
0 new messages