[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-Disclosure] Re: Windows Registry Analzyer

To: full-disclosure@xxxxxxxxxxxxxxxx
Subject: [Full-Disclosure] Re: Windows Registry Analzyer
From: "Dave Korn" <davek_throwaway@xxxxxxxxxxx>
Date: Thu, 3 Mar 2005 19:39:45 -0000

"Eric Windisch" wrote in message news:1109872449.8117.25.camel@xxxxxxxxxxxx
> Perhaps this is just the Unix user in me, but I ask:
> How about just making a copy of the registry on boot (or at intervals)
> and compare it to the last copy?
>
> Note that the following example is untested, but should be mostly
> accurate.

  No, it would be completely useless.  In case you didn't realise, the
registry is not an ASCII text file, it's megabytes of unintelligible binary
gibberish.

    cheers,
      DaveK
-- 
Can't think of a witty .sigline today....



_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Follow-Ups:
- Re: [Full-Disclosure] Re: Windows Registry Analzyer
  - From: Michael Holstein
- Re: [Full-Disclosure] Re: Windows Registry Analzyer
  - From: Eric Windisch
- [Full-Disclosure] Re: Windows Registry Analzyer
  - From: Raoul Nakhmanson-Kulish

References:
- RE: [Full-Disclosure] Windows Registry Analzyer
  - From: Cassidy Macfarlane
- Re: [Full-Disclosure] Windows Registry Analzyer
  - From: Danny
- Re: [Full-Disclosure] Windows Registry Analzyer
  - From: Eric Windisch

Prev by Date: Re: [Full-Disclosure] Bios programming...
Next by Date: RE: [Full-Disclosure] Bios programming...
Previous by thread: Re: [Full-Disclosure] Windows Registry Analzyer
Next by thread: Re: [Full-Disclosure] Re: Windows Registry Analzyer
Index(es):
- Date
- Thread