Clean data is mission-critical for collecting operating system artifacts, especially with user home directories.
if path[:1] == '/':
out = path.split('/')
try:
if out[1] == 'home':
out[2] = 'user'
path = '/'.join(out)
elif out[1] == 'Users':
if out[2] != 'Shared':
out[2] = 'user'
path = '/'.join(out)
except:
pass
elif path[1] == ':':
out = path.split('\\')
try:
if out[1] == 'Users' or out[1] == 'Documents and Settings':
if out[2] != 'Default' and out[2] != 'Public' and out[2] != 'All Users' and out[2] != 'Default User':
out[0] = 'C:'
out[2] = 'Administrator'
path = '\\'.join(out)
except:
pass
- ami
- path
- file
- size
- md5
- sha256
- sha3
- md5path
- sha256path
- sha3path
- md5dir
- sha256dir
- sha3dir
- md5name
- sha256name
- sha3name
- type
pip install getmeta
python setup.py install --user
pip install pyinstaller
pyinstaller getmeta.py --onefile