dfvfs issues

Add storage media snapshot support

Add storage media snapshot support for: - [ ] QCOW - [ ] PHDI - [ ] VMDK

enhancement

storage media

Add traditional HFS support

1

Add (traditional) HFS support to libfshfs and make corresponding changes to dfVFS This is more nice to have than must have by now * [x] ~~add traditional HFS test image...

joachimmetz

enhancement

file system

blocked

Enhance NTFS attribute support for TSK back-end

Currently TSK NTFS attributes are exposed as basic TSKAttributes, make changes to expose NTFS attributes similar to fsntfs back-end: * $FILE_NAME * $OBJECT_ID * $SECURITY_DESCRIPTOR * $STANDARD_INFORMATION

joachimmetz

enhancement

file system

Migrate from construct to dtFabric

Current version of construct breaks backwards compatibility but a lot of distros still providing the old version. Also https://github.com/log2timeline/dfvfs/pull/300. Instead use dtFabric * [x] ~~Initial changes https://codereview.appspot.com/342830043/~~ * [ ]...

joachimmetz

enhancement

dependency

Improve archive file support

3

Add Improve archive file support for: - [ ] [7z](https://github.com/log2timeline/dfvfs/issues/23) - [ ] AD1 - [ ] ARC - [ ] ARJ - [ ] CAB - [ ] CPIO...

joachimmetz

enhancement

idea

Add FileIO profiler to track IO CPU times

joachimmetz

enhancement

idea

gzip file with trailing 0-byte values raises dfvfs.lib.errors.FileFormatError: Unsupported signature: 0x0000

2

``` Traceback (most recent call last): File "tools/log2timeline.py", line 94, in if not Main(): File "tools/log2timeline.py", line 69, in Main tool.ExtractEventsFromSources() File "plaso/cli/log2timeline_tool.py", line 404, in ExtractEventsFromSources is_archive = self._IsArchiveFile(self._source_path_specs[0])...

joachimmetz

allow OS file IO bypass for storage media image format back-ends

1

To prevent running out of file handles, allow storage media image format that support segment files to bypass the OS file IO (file-like objects) and directly use the back-ends so...

joachimmetz

enhancement

Consolidate CLI volume scanning code

Consolidate CLI volume scanning code in examples, plaso and several other CLI tools into dfVFS * [x] ~~Move code from recursive_hasher example into dfVFS helpers~~ * ~~https://github.com/log2timeline/dfvfs/pull/340~~ * ~~update wiki~~...

joachimmetz

enhancement

cleanup

clean up

- [x] ~~[remove "The default is" in docstrings where not needed](https://codereview.appspot.com/277510043/)~~ - [x] ~~[Changes to docstrings and source to match style guide](https://codereview.appspot.com/282110043/)~~ - [x] ~~use path spec factory in tests...

joachimmetz

enhancement

cleanup

dfvfs
dfvfs copied to clipboard

Metadata

Add storage media snapshot support

Add traditional HFS support

Enhance NTFS attribute support for TSK back-end

Migrate from construct to dtFabric

Improve archive file support

Add FileIO profiler to track IO CPU times

gzip file with trailing 0-byte values raises dfvfs.lib.errors.FileFormatError: Unsupported signature: 0x0000

allow OS file IO bypass for storage media image format back-ends

Consolidate CLI volume scanning code

clean up

← Metadata

Owner

Metadata

dfvfs dfvfs copied to clipboard

Metadata

← Metadata

Owner

Metadata

dfvfs
dfvfs copied to clipboard