Consequently, this requires the user to run this tool with administrative privileges. Since the Windows operating system locks down the active hives from other processes reading them, yaru can resort to raw NTFS disk reads to read any of the desired hives. The Windows version of yaru has the ability to take a snapshot of any of the active hives and examine the internal structure of the hive. The registry parsing engine is written in standard C/C++ and has no dependencies on the Windows registry API functions. Inspired by the desire to look into the Windows registry metadata, so as to better forensically analyze the registry hives, yaru was designed with a portable and extensible architecture in mind so that it could be compiled to run on various operating systems. Yet Another Registry Utility 1.83 (圆4) Portable | 3.2 Mb yaru is a platform independent Windows registry viewer.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |