acquire 3.15.dev2__tar.gz → 3.15.dev4__tar.gz

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (63) hide show
  1. {acquire-3.15.dev2/acquire.egg-info → acquire-3.15.dev4}/PKG-INFO +2 -2
  2. {acquire-3.15.dev2 → acquire-3.15.dev4}/acquire/acquire.py +9 -0
  3. {acquire-3.15.dev2 → acquire-3.15.dev4}/acquire/version.py +2 -2
  4. {acquire-3.15.dev2 → acquire-3.15.dev4/acquire.egg-info}/PKG-INFO +2 -2
  5. {acquire-3.15.dev2 → acquire-3.15.dev4}/acquire.egg-info/requires.txt +1 -1
  6. {acquire-3.15.dev2 → acquire-3.15.dev4}/pyproject.toml +1 -1
  7. {acquire-3.15.dev2 → acquire-3.15.dev4}/COPYRIGHT +0 -0
  8. {acquire-3.15.dev2 → acquire-3.15.dev4}/LICENSE +0 -0
  9. {acquire-3.15.dev2 → acquire-3.15.dev4}/MANIFEST.in +0 -0
  10. {acquire-3.15.dev2 → acquire-3.15.dev4}/README.md +0 -0
  11. {acquire-3.15.dev2 → acquire-3.15.dev4}/acquire/__init__.py +0 -0
  12. {acquire-3.15.dev2 → acquire-3.15.dev4}/acquire/collector.py +0 -0
  13. {acquire-3.15.dev2 → acquire-3.15.dev4}/acquire/crypt.py +0 -0
  14. {acquire-3.15.dev2 → acquire-3.15.dev4}/acquire/dynamic/__init__.py +0 -0
  15. {acquire-3.15.dev2 → acquire-3.15.dev4}/acquire/dynamic/windows/__init__.py +0 -0
  16. {acquire-3.15.dev2 → acquire-3.15.dev4}/acquire/dynamic/windows/collect.py +0 -0
  17. {acquire-3.15.dev2 → acquire-3.15.dev4}/acquire/dynamic/windows/exceptions.py +0 -0
  18. {acquire-3.15.dev2 → acquire-3.15.dev4}/acquire/dynamic/windows/handles.py +0 -0
  19. {acquire-3.15.dev2 → acquire-3.15.dev4}/acquire/dynamic/windows/named_objects.py +0 -0
  20. {acquire-3.15.dev2 → acquire-3.15.dev4}/acquire/dynamic/windows/ntdll.py +0 -0
  21. {acquire-3.15.dev2 → acquire-3.15.dev4}/acquire/dynamic/windows/types.py +0 -0
  22. {acquire-3.15.dev2 → acquire-3.15.dev4}/acquire/esxi.py +0 -0
  23. {acquire-3.15.dev2 → acquire-3.15.dev4}/acquire/gui/__init__.py +0 -0
  24. {acquire-3.15.dev2 → acquire-3.15.dev4}/acquire/gui/base.py +0 -0
  25. {acquire-3.15.dev2 → acquire-3.15.dev4}/acquire/gui/win32.py +0 -0
  26. {acquire-3.15.dev2 → acquire-3.15.dev4}/acquire/hashes.py +0 -0
  27. {acquire-3.15.dev2 → acquire-3.15.dev4}/acquire/log.py +0 -0
  28. {acquire-3.15.dev2 → acquire-3.15.dev4}/acquire/outputs/__init__.py +0 -0
  29. {acquire-3.15.dev2 → acquire-3.15.dev4}/acquire/outputs/base.py +0 -0
  30. {acquire-3.15.dev2 → acquire-3.15.dev4}/acquire/outputs/dir.py +0 -0
  31. {acquire-3.15.dev2 → acquire-3.15.dev4}/acquire/outputs/tar.py +0 -0
  32. {acquire-3.15.dev2 → acquire-3.15.dev4}/acquire/outputs/zip.py +0 -0
  33. {acquire-3.15.dev2 → acquire-3.15.dev4}/acquire/tools/__init__.py +0 -0
  34. {acquire-3.15.dev2 → acquire-3.15.dev4}/acquire/tools/decrypter.py +0 -0
  35. {acquire-3.15.dev2 → acquire-3.15.dev4}/acquire/uploaders/__init__.py +0 -0
  36. {acquire-3.15.dev2 → acquire-3.15.dev4}/acquire/uploaders/minio.py +0 -0
  37. {acquire-3.15.dev2 → acquire-3.15.dev4}/acquire/uploaders/plugin.py +0 -0
  38. {acquire-3.15.dev2 → acquire-3.15.dev4}/acquire/uploaders/plugin_registry.py +0 -0
  39. {acquire-3.15.dev2 → acquire-3.15.dev4}/acquire/utils.py +0 -0
  40. {acquire-3.15.dev2 → acquire-3.15.dev4}/acquire/volatilestream.py +0 -0
  41. {acquire-3.15.dev2 → acquire-3.15.dev4}/acquire.egg-info/SOURCES.txt +0 -0
  42. {acquire-3.15.dev2 → acquire-3.15.dev4}/acquire.egg-info/dependency_links.txt +0 -0
  43. {acquire-3.15.dev2 → acquire-3.15.dev4}/acquire.egg-info/entry_points.txt +0 -0
  44. {acquire-3.15.dev2 → acquire-3.15.dev4}/acquire.egg-info/top_level.txt +0 -0
  45. {acquire-3.15.dev2 → acquire-3.15.dev4}/setup.cfg +0 -0
  46. {acquire-3.15.dev2 → acquire-3.15.dev4}/tests/__init__.py +0 -0
  47. {acquire-3.15.dev2 → acquire-3.15.dev4}/tests/conftest.py +0 -0
  48. {acquire-3.15.dev2 → acquire-3.15.dev4}/tests/docs/Makefile +0 -0
  49. {acquire-3.15.dev2 → acquire-3.15.dev4}/tests/docs/conf.py +0 -0
  50. {acquire-3.15.dev2 → acquire-3.15.dev4}/tests/docs/index.rst +0 -0
  51. {acquire-3.15.dev2 → acquire-3.15.dev4}/tests/test_acquire_command.py +0 -0
  52. {acquire-3.15.dev2 → acquire-3.15.dev4}/tests/test_acquire_modules.py +0 -0
  53. {acquire-3.15.dev2 → acquire-3.15.dev4}/tests/test_collector.py +0 -0
  54. {acquire-3.15.dev2 → acquire-3.15.dev4}/tests/test_decryptor_funcs.py +0 -0
  55. {acquire-3.15.dev2 → acquire-3.15.dev4}/tests/test_esxi_memory.py +0 -0
  56. {acquire-3.15.dev2 → acquire-3.15.dev4}/tests/test_file_sorting.py +0 -0
  57. {acquire-3.15.dev2 → acquire-3.15.dev4}/tests/test_minio_uploader.py +0 -0
  58. {acquire-3.15.dev2 → acquire-3.15.dev4}/tests/test_misc_users.py +0 -0
  59. {acquire-3.15.dev2 → acquire-3.15.dev4}/tests/test_outputs_dir.py +0 -0
  60. {acquire-3.15.dev2 → acquire-3.15.dev4}/tests/test_outputs_tar.py +0 -0
  61. {acquire-3.15.dev2 → acquire-3.15.dev4}/tests/test_plugin.py +0 -0
  62. {acquire-3.15.dev2 → acquire-3.15.dev4}/tests/test_utils.py +0 -0
  63. {acquire-3.15.dev2 → acquire-3.15.dev4}/tox.ini +0 -0
{acquire-3.15.dev2/acquire.egg-info → acquire-3.15.dev4}/PKG-INFO RENAMED
@@ -1,6 +1,6 @@
1
1
  Metadata-Version: 2.1
2
2
  Name: acquire
3
- Version: 3.15.dev2
3
+ Version: 3.15.dev4
4
4
  Summary: A tool to quickly gather forensic artifacts from disk images or a live system into a lightweight container
5
5
  Author-email: Dissect Team <dissect@fox-it.com>
6
6
  License: Affero General Public License v3
@@ -22,7 +22,7 @@ Requires-Python: ~=3.9
22
22
  Description-Content-Type: text/markdown
23
23
  License-File: LICENSE
24
24
  License-File: COPYRIGHT
25
- Requires-Dist: dissect.cstruct<5,>=4.dev
25
+ Requires-Dist: dissect.cstruct<5,>=4
26
26
  Requires-Dist: dissect.target<4,>=3.7
27
27
  Provides-Extra: full
28
28
  Requires-Dist: minio; extra == "full"
{acquire-3.15.dev2 → acquire-3.15.dev4}/acquire/acquire.py RENAMED
@@ -1064,6 +1064,15 @@ class QuarantinedFiles(Module):
1064
1064
  ]
1065
1065
 
1066
1066
 
1067
+ @register_module("--edr")
1068
+ class EDR(Module):
1069
+ DESC = "various Endpoint Detection and Response (EDR) logs"
1070
+ SPEC = [
1071
+ # Carbon Black
1072
+ ("dir", "sysvol/ProgramData/CarbonBlack/Logs"),
1073
+ ]
1074
+
1075
+
1067
1076
  @register_module("--history")
1068
1077
  class History(Module):
1069
1078
  DESC = "browser history from IE, Edge, Firefox, and Chrome"
{acquire-3.15.dev2 → acquire-3.15.dev4}/acquire/version.py RENAMED
@@ -12,5 +12,5 @@ __version__: str
12
12
  __version_tuple__: VERSION_TUPLE
13
13
  version_tuple: VERSION_TUPLE
14
14
 
15
- __version__ = version = '3.15.dev2'
16
- __version_tuple__ = version_tuple = (3, 15, 'dev2')
15
+ __version__ = version = '3.15.dev4'
16
+ __version_tuple__ = version_tuple = (3, 15, 'dev4')
{acquire-3.15.dev2 → acquire-3.15.dev4/acquire.egg-info}/PKG-INFO RENAMED
@@ -1,6 +1,6 @@
1
1
  Metadata-Version: 2.1
2
2
  Name: acquire
3
- Version: 3.15.dev2
3
+ Version: 3.15.dev4
4
4
  Summary: A tool to quickly gather forensic artifacts from disk images or a live system into a lightweight container
5
5
  Author-email: Dissect Team <dissect@fox-it.com>
6
6
  License: Affero General Public License v3
@@ -22,7 +22,7 @@ Requires-Python: ~=3.9
22
22
  Description-Content-Type: text/markdown
23
23
  License-File: LICENSE
24
24
  License-File: COPYRIGHT
25
- Requires-Dist: dissect.cstruct<5,>=4.dev
25
+ Requires-Dist: dissect.cstruct<5,>=4
26
26
  Requires-Dist: dissect.target<4,>=3.7
27
27
  Provides-Extra: full
28
28
  Requires-Dist: minio; extra == "full"
{acquire-3.15.dev2 → acquire-3.15.dev4}/acquire.egg-info/requires.txt RENAMED
@@ -1,4 +1,4 @@
1
- dissect.cstruct<5,>=4.dev
1
+ dissect.cstruct<5,>=4
2
2
  dissect.target<4,>=3.7
3
3
 
4
4
  [dev]
{acquire-3.15.dev2 → acquire-3.15.dev4}/pyproject.toml RENAMED
@@ -25,7 +25,7 @@ classifiers = [
25
25
  "Topic :: Utilities",
26
26
  ]
27
27
  dependencies = [
28
- "dissect.cstruct>=4.dev,<5",
28
+ "dissect.cstruct>=4,<5",
29
29
  "dissect.target>=3.7,<4",
30
30
  ]
31
31
  dynamic = ["version"]
{acquire-3.15.dev2 → acquire-3.15.dev4}/COPYRIGHT RENAMED
File without changes
{acquire-3.15.dev2 → acquire-3.15.dev4}/LICENSE RENAMED
File without changes
{acquire-3.15.dev2 → acquire-3.15.dev4}/MANIFEST.in RENAMED
File without changes
{acquire-3.15.dev2 → acquire-3.15.dev4}/README.md RENAMED
File without changes
{acquire-3.15.dev2 → acquire-3.15.dev4}/acquire/esxi.py RENAMED
File without changes
{acquire-3.15.dev2 → acquire-3.15.dev4}/acquire/log.py RENAMED
File without changes
{acquire-3.15.dev2 → acquire-3.15.dev4}/setup.cfg RENAMED
File without changes
{acquire-3.15.dev2 → acquire-3.15.dev4}/tox.ini RENAMED
File without changes