reglookup timeline

Reglookup-timeline Command

Reglookup-timeline Command

reglookup-timeline

utility to analysis for Windows NT-based registry

Maintainer: Debian Security Tools



Section: utils

Install reglookup-timeline

  • Debian apt-get install reglookup Click to copy
  • Ubuntu apt-get install reglookup Click to copy
  • Kali Linux apt-get install reglookup Click to copy
  • Raspbian apt-get install reglookup Click to copy

reglookup

utility to analysis for Windows NT-based registry

RegLookup is a system to direct analysis of Windows NT-based registry files providing command line tools, a C API, and a Python module for accessing registry data structures. The project has a focus on providing tools for digital forensics investigations (though is useful for many purposes), and includes algorithms for retrieving deleted data structures from registry hives. Currently the program allows one to read an entire registry and output it in a (mostly) standardized, quoted format. It also provides features for filtering of results based on registry path and data type. The package provides the following commands: reglookup, reglookup-recover and reglookup-timeline.

Installation of latest reglookup-timeline command is available for Debian, Ubuntu, Kali and Raspbian. You can copy the command for your OS from above and paste it into your terminal. Once you run the command it will download the 2022 latest package from the repository and install it in your computer/server.