Andrew Rathbun

> Thank you can close this. Coming back a year later I see: > > Someone made a robust provider with events, etc., dumper using your "EtwManifestParsing" no less, w/data...

Also, provide E01s of each simulation. Hosted on MediaFire.

https://github.com/EricZimmerman/KapeFiles/tree/master/Targets/Antivirus Use this as a guide for which AV products to generate datasets with.

> No worries. I think it is likely more of a module only tool as well. BrowsingHistoryView never works as a Target/Module tool. It only runs successfully as a Module...

> > > that tool is not ideal at all. look at sum data with it. its all wrong. > > if we need a parser for windowsindexsearch, i will...

@EricZimmerman if you want, I can provide my personal 1GB Windows.ebd file for testing purposes.

[Windows.zip](https://github.com/EricZimmerman/KapeFiles/files/7272633/Windows.zip) Actually, here's the LoneWolf2018 Windows.ebd file.

If there's any way Maps can be implemented like your other tools, that would be awesome 👍

From what I've seen, it looks pretty similar to SQLite DBs with multiple tables. However, I don't know what we'd use to write queries since it doesn't speak SQL and...

Try playing a song in PowerAmp first and see if it'll show up in the scrobbler app as an option. That's what I had to do to make it work...