hivex
A Windows Registry hive extraction library that provides C API access for reading and writing registry binary files with XML export capabilities.
hivex
A Windows Registry hive extraction library that provides C API access for reading and writing registry binary files with XML export capabilities.
hivex Description
Hivex is a Windows Registry hive extraction library that enables reading and writing of Windows Registry 'hive' binary files. The library provides a C API for programmatic access to registry data and includes a separate program for exporting hive contents as XML format. Written in C with bindings available for OCaml, Perl, Python, and Ruby, Hivex operates as a self-contained library that does not rely on the textual .REG format for output. The library focuses on careful handling of error cases, corrupt registry files, malicious registry files, and endianness issues. Hivex is derived from multiple sources including the NTREG registry reader/writer library and dumphive, a BSD-licensed Pascal program. The library is distributed under the LGPL v2.1 license and provides forensic investigators and system administrators with tools for analyzing Windows Registry data structures.
hivex FAQ
Common questions about hivex including features, pricing, alternatives, and user reviews.
hivex is A Windows Registry hive extraction library that provides C API access for reading and writing registry binary files with XML export capabilities. It is a Security Operations solution designed to help security teams with Registry, XML, Windows.
