libyal / esedb-kb Goto Github PK
View Code? Open in Web Editor NEWExtensible Storage Engine (ESE) Database File Knowledge Base
License: Apache License 2.0
Extensible Storage Engine (ESE) Database File Knowledge Base
License: Apache License 2.0
The name libyal was initially a pun on the naming theme of the various library projects. Now it serves the purpose of providing an overview of the available projects in a single location and as a home for scripts to help maintain the projects. For more information see: * Project documentation: https://github.com/libyal/libyal/wiki/Home * Overiew of available projects: https://github.com/libyal/libyal/wiki/Overview
Sorry if this is in the wrong place but it seemed like the best way to suggest a topic for investigation, here is what I have found so far:
I've read up on ESE parsing and am writing my own parser. My biggest challenge so far has been parsing the FILETIME format, which is supposedly a number of 100s of ns since 1601/01/01.
My tests for my parsing function test with the bytes input b'\x01\xcb\x17\x70\x1e\x9c\x88\x5a'
, which I can parse as being a time in 2010, and this all works as expected. The issue is that when I look at the timestamps in my own SRUM ESE database, I see values like b'\xbc\xbb\xbb\xbbqe\xe5@'
, which is orders of magnitude out from being a sensible datetime, even though Nirsoft's ESEDatabaseViewer manages to parse it as being a much more sensible time of 20/12/2019 13:18:00.
I really don't know where to go from here, particularly since it isn't anything obvious like an endianness issue.
Migrate asciidoc documentation to read the docs.
A declarative, efficient, and flexible JavaScript library for building user interfaces.
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. ๐๐๐
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google โค๏ธ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.