David McDonald
David McDonald
WIth networks that are tied to the pool's physical infrastructure, it's uncommon to make changes to these networks within Xen Orchestra (storage networks, VLANS, etc). However, the ability to create...
This adds support for decoding Apple Binary Plists. The only well documented version is `00`, and is therefore the only one supported here. I have tested this on both large...
Per @wader 's [comment](https://github.com/wader/fq/pull/427#issuecomment-1250217164) in the original PR, it would be nice to add an option for bplist decoding to display time values as timestamps instead of just CocoaDate floating...
This PR updates the windows.callbacks.Callbacks plugin to support callback types that were present in the original volatility framework but have not yet been added to volatility3. These callback types include:...
Hi, I just noticed that you added a flag for parsing execution on Windows 10/11 systems. Do you have any information you can share about how you came to that...
This adds a plugin 'ScheduledTasks' that can decode binary-encoded scheduled tasks from the Windows registry's SOFTWARE hive using a custom reader that extends the `io.BytesIO` class. Decoding operations are intended...
This adds a `Data` base type, which will provide the information (layer_name and offset) required to view variable amounts of data both before and after that offset, instead of handing...
The --filters parameter appears to break the JSONL renderer when a parent `TreeNode` does not match the filter criteria. This does not appear to be a problem in other renderers....
There are limitations with the current implementation of the `YaraScan` and `VadYaraScan` plugins that seriously impacts their usefulness in the CLI; namely, the inability to view user-defined amounts of context...
@atcuno and I have been discussing ways that we can enforce certain style requirements for new plugins, especially in light of some cleanup that has been done recently regarding confusing...