{
    "info": {
        "author": "Airbus CERT",
        "author_email": "cert@airbus.com",
        "bugtrack_url": null,
        "classifiers": [
            "Environment :: Console",
            "Intended Audience :: Information Technology",
            "License :: OSI Approved :: Apache Software License",
            "Operating System :: OS Independent",
            "Programming Language :: Python",
            "Programming Language :: Python :: 3",
            "Programming Language :: Python :: 3 :: Only",
            "Topic :: Utilities"
        ],
        "description": "RegRip**py** is a framework for reading and extracting useful forensics data from Windows registry hives. It is an alternative to [RegRipper](https://github.com/keydet89/RegRipper2.8) developed in modern Python 3. It makes use of William Ballenthin's [python-registry](https://github.com/williballenthin/python-registry) to access the raw registry hives.\n\nThe goal of this project is to provide a framework for quickly and easily developing your own plugins in an incident response scenario.\n\nBy default, the script will look for the various hives by reading the `REG_SYSTEM`, `REG_SOFTWARE`, `REG_SAM`, `REG_NTUSER` and `REG_USRCLASS` environment variables. This allows the analyst to simply `export` these in their current shell session and not have to worry about specifying them every time they invoke the script.\nAlternatively, you can use the `--root` switch to specify the path to the root of the `C:` drive. RegRippy will automatically look into the right places depending on which hive each plugin needs.\n\nAll plugins should also support both a human-readable and machine-readable output (the [Bodyfile](https://wiki.sleuthkit.org/index.php?title=Body_file) format), allowing easy piping to `mactime` or other tools.\n\n\n",
        "description_content_type": "text/markdown",
        "docs_url": null,
        "download_url": "",
        "downloads": {
            "last_day": -1,
            "last_month": -1,
            "last_week": -1
        },
        "home_page": "https://github.com/airbus-cert/regrippy",
        "keywords": "",
        "license": "",
        "maintainer": "",
        "maintainer_email": "",
        "name": "regrippy",
        "package_url": "https://pypi.org/project/regrippy/",
        "platform": "",
        "project_url": "https://pypi.org/project/regrippy/",
        "project_urls": {
            "Homepage": "https://github.com/airbus-cert/regrippy"
        },
        "release_url": "https://pypi.org/project/regrippy/1.0.1/",
        "requires_dist": [
            "wheel",
            "python-registry"
        ],
        "requires_python": ">=3.6",
        "summary": "A modern Python-3-based alternative to RegRipper",
        "version": "1.0.1"
    },
    "last_serial": 5133973,
    "releases": {
        "1.0.1": [
            {
                "comment_text": "",
                "digests": {
                    "md5": "6d5b3ecbab700cf2434a6eb9e8b618d4",
                    "sha256": "b1eff7b02c7709642e259ab09b96b4e8a651671981e5c6a37ed841557c3d2d42"
                },
                "downloads": -1,
                "filename": "regrippy-1.0.1-py3-none-any.whl",
                "has_sig": false,
                "md5_digest": "6d5b3ecbab700cf2434a6eb9e8b618d4",
                "packagetype": "bdist_wheel",
                "python_version": "py3",
                "requires_python": ">=3.6",
                "size": 25028,
                "upload_time": "2019-04-12T13:24:50",
                "url": "https://files.pythonhosted.org/packages/7c/1c/18e20f64c0483e81a7f9b6440d89287f5274aa54bbd76699e987c5b0e3a9/regrippy-1.0.1-py3-none-any.whl"
            },
            {
                "comment_text": "",
                "digests": {
                    "md5": "4856d9dbc008bd51e8f1a74e79660e8b",
                    "sha256": "a16f332faa66c0305f1ac761072b97ba0ff400e56643c4034637816d0510dee3"
                },
                "downloads": -1,
                "filename": "regrippy-1.0.1.tar.gz",
                "has_sig": false,
                "md5_digest": "4856d9dbc008bd51e8f1a74e79660e8b",
                "packagetype": "sdist",
                "python_version": "source",
                "requires_python": ">=3.6",
                "size": 15523,
                "upload_time": "2019-04-12T13:24:52",
                "url": "https://files.pythonhosted.org/packages/99/c0/411d7d22811b2bace744ed6cbc0b13c5e1d989128e89910382a83f011b18/regrippy-1.0.1.tar.gz"
            }
        ]
    },
    "urls": [
        {
            "comment_text": "",
            "digests": {
                "md5": "6d5b3ecbab700cf2434a6eb9e8b618d4",
                "sha256": "b1eff7b02c7709642e259ab09b96b4e8a651671981e5c6a37ed841557c3d2d42"
            },
            "downloads": -1,
            "filename": "regrippy-1.0.1-py3-none-any.whl",
            "has_sig": false,
            "md5_digest": "6d5b3ecbab700cf2434a6eb9e8b618d4",
            "packagetype": "bdist_wheel",
            "python_version": "py3",
            "requires_python": ">=3.6",
            "size": 25028,
            "upload_time": "2019-04-12T13:24:50",
            "url": "https://files.pythonhosted.org/packages/7c/1c/18e20f64c0483e81a7f9b6440d89287f5274aa54bbd76699e987c5b0e3a9/regrippy-1.0.1-py3-none-any.whl"
        },
        {
            "comment_text": "",
            "digests": {
                "md5": "4856d9dbc008bd51e8f1a74e79660e8b",
                "sha256": "a16f332faa66c0305f1ac761072b97ba0ff400e56643c4034637816d0510dee3"
            },
            "downloads": -1,
            "filename": "regrippy-1.0.1.tar.gz",
            "has_sig": false,
            "md5_digest": "4856d9dbc008bd51e8f1a74e79660e8b",
            "packagetype": "sdist",
            "python_version": "source",
            "requires_python": ">=3.6",
            "size": 15523,
            "upload_time": "2019-04-12T13:24:52",
            "url": "https://files.pythonhosted.org/packages/99/c0/411d7d22811b2bace744ed6cbc0b13c5e1d989128e89910382a83f011b18/regrippy-1.0.1.tar.gz"
        }
    ]
}