Skip to content

Releases: kacos2000/WinEDB

WinEDB_Browser

23 Dec 19:20
@kacos2000 kacos2000
v.0.0.9.0
8e3b7c6
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
WinEDB_Browser

[Updates]

  • Added Search by ThumbnailCacheID:
  • Added separate CSV output per search store type (file, iehistory, MAPI, winrt etc)
  • Added ESE system tables to the CSV output:
  • Some minor bug fixes
  • Code re-organization & enhancements

MD5: 3BC69DB10DDF9CA6A80E264D9DB4747F
SHA256: 0872D47B37E33FAD4F018A6ED3334302C69442DBAA6583A9D2E73FF63243871D

Assets 3
Loading

WinEDB_Browser

16 Dec 22:56
@kacos2000 kacos2000
v.0.0.7.0
862b4ad
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
WinEDB_Browser

[Updates]

  • Code updates & enhancements

MD5: 02297AEE2B0B64210EB8083868435CAE
SHA256: 8D144514FB2E26B36198E95A5CE4ABFB089F20F80C81F6504B7B3F396C20C7A5

Assets 3
Loading

WinEDB_Browser

14 Dec 18:26
@kacos2000 kacos2000
v.0.0.5.0
6674ce2
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
WinEDB_Browser

[Updates]

  • Further speed improvements & code enhancements

  • Found & fixed a small stupid copy/paste error that resulted in some entries to appear in the wrong place in the Treeview

  • Added partial (there are more values or combinations) translation of [Int32] FileAttributes Enum to normal File Attribute names eg:

    image

MD5: C44ED175958071777C76BE3EC6B11759
SHA256: 596E5DFE1530B2889E202861D42F8DA4BCB8D70814BCB72A1B8F8CF6D5A7CD83

Assets 3
Loading

WinEDB_Browser

14 Dec 12:08
@kacos2000 kacos2000
v.0.0.3.0
dd9946e
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
WinEDB_Browser

[Updates]

  • Small speed improvement
  • small Code & GUI updates

MD5: 21BFA4837F6402E285E15CF0DF5B2606
SHA256: 64BCFD3F23C735DF87FE4E77EDAF7D39E5FF0417AA24E3E07944B4D890E8F398

Assets 3
Loading

WinEDB_Browser

12 Dec 23:00
@kacos2000 kacos2000
v.0.0.2.0
6028c9a
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
WinEDB_Browser Pre-release
Pre-release

[Initial Release]

  • Parses Windows.EDB using the Microsoft.Isam.Esent.Interop
  • Copies the source EDB to the default system TEMP directory, and processes that copy.
  • All non-empty tables are exported to '|' separated CSV files in your Desktop
  • The rest you have to see for yourself :)

NOTE: Windows.edb databases can grow over 4Gb so, if you plan on using such a dB, prepare to WAIT (possibly days)

  • The GUI info is by linking 3 tables:

    image

    • The initial tree is Created by using the 'Scope' and 'Parent' fields of the table: 'SystemIndex_GthrPth'
    • The files and other stuff are appended to the tree by linking the 'ScopeID' of the table 'SystemIndex_Gthr' to the previous tree nodes,
    • and finally, the Metadata is from linking the 'DocumentID' of the table 'SystemIndex_Gthr' to the 'WorkID' of the 'SystemIndex_PropertyStore' table. For each selected entry, only the non-empty fields are displayed. (there are hundreds of fields in 'SystemIndex_PropertyStore', thus the exponential time needed to parse large databases)

MD5: E641BFCE25EE6C6BCBC6D97B5EE71131
SHA256: 84F4C68CB2946C349F80A48DF8E5DE7E8D62409BEBA488E92AB783203D41F11A

Assets 3
Loading