Skip to content

Release dissect 3.7 (#33)
Compare
Choose a tag to compare
@pyrco pyrco released this 06 Jul 09:29
· 18 commits to main since this release
3.7
b165378
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

Highlights

  • Windows plugin additions and improvements:
    • at.exe jobs are now emitted by the tasks plugin.
    • Tasks from AD Group Policy Objects are now emitted by the tasks plugin.
      • Tasks within a ScheduledTask.xml file are not parsed when nested in a <ScheduledTask> element. This will be supported in the next release.
    • A new AppX debug information plugin appxdebugkeys is added.
    • The Windows defender plugin can now also emit exclusions.
    • amcache now returns the proper arp created install records.
    • A new shophos plugin supporting Sophos Home and Sophos Hitman has been added.
  • Linux plugin additions and improvements:
    • A new systemd journal plugin is added.
  • Loader additions and improvements:
    • The LogLoader can now handle IIS logs.
  • Misc improvements:
    • Cleaner handling of KeyboardInterrups and OSErrors in the various target tools.
    • Compatibility for TargetPath and FilesystemEntry with Python 3.11.4.
    • The LZO decompressor now handles bitstream compressed data properly.
    • target-info now handles time zones properly for older Windows versions.

Contributors

Thanks to our contributors for making this release possible:

@cobyge
@JSCU-CNI
@Zawadidone

Full Changelogs

dissect: 3.6 → 3.7
https://github.com/fox-it/dissect/releases/tag/3.7
dissect.cim: 3.6 → 3.7
https://github.com/fox-it/dissect.cim/releases/tag/3.7
dissect.clfs: 1.5 → 1.6
https://github.com/fox-it/dissect.clfs/releases/tag/1.6
dissect.cstruct: 3.7 → 3.8
https://github.com/fox-it/dissect.cstruct/releases/tag/3.8
dissect.esedb: 3.7 → 3.8
https://github.com/fox-it/dissect.esedb/releases/tag/3.8
dissect.etl: 3.5 → 3.6
https://github.com/fox-it/dissect.etl/releases/tag/3.6
dissect.eventlog: 3.5 → 3.6
https://github.com/fox-it/dissect.eventlog/releases/tag/3.6
dissect.evidence: 3.5 → 3.6
https://github.com/fox-it/dissect.evidence/releases/tag/3.6
dissect.executable: 1.3 → 1.4
https://github.com/fox-it/dissect.executable/releases/tag/1.4
dissect.extfs: 3.5 → 3.6
https://github.com/fox-it/dissect.extfs/releases/tag/3.6
dissect.fat: 3.5 → 3.6
https://github.com/fox-it/dissect.fat/releases/tag/3.6
dissect.ffs: 3.5 → 3.6
https://github.com/fox-it/dissect.ffs/releases/tag/3.6
dissect.hypervisor: 3.7 → 3.8
https://github.com/fox-it/dissect.hypervisor/releases/tag/3.8
dissect.ntfs: 3.5 → 3.6
https://github.com/fox-it/dissect.ntfs/releases/tag/3.6
dissect.ole: 3.5 → 3.6
https://github.com/fox-it/dissect.ole/releases/tag/3.6
dissect.regf: 3.5 → 3.6
https://github.com/fox-it/dissect.regf/releases/tag/3.6
dissect.shellitem: 3.5 → 3.6
https://github.com/fox-it/dissect.shellitem/releases/tag/3.6
dissect.sql: 3.5 → 3.6
https://github.com/fox-it/dissect.sql/releases/tag/3.6
dissect.squashfs: 1.2 → 1.3
https://github.com/fox-it/dissect.squashfs/releases/tag/1.3
dissect.target: 3.9 → 3.10
https://github.com/fox-it/dissect.target/releases/tag/3.10
dissect.thumbcache: 1.4 → 1.5
https://github.com/fox-it/dissect.thumbcache/releases/tag/1.5
dissect.util: 3.8 → 3.9
https://github.com/fox-it/dissect.util/releases/tag/3.9
dissect.vmfs: 3.5 → 3.6
https://github.com/fox-it/dissect.vmfs/releases/tag/3.6
dissect.volume: 3.5 → 3.6
https://github.com/fox-it/dissect.volume/releases/tag/3.6
dissect.xfs: 3.5 → 3.6
https://github.com/fox-it/dissect.xfs/releases/tag/3.6

Contributors

cobyge, Zawadidone, and JSCU-CNI
Assets 2
Loading