Open Source Forensic Tools
| Tool Name | ntreg |
|---|---|
| Description | ntreg is a file system driver for linux, which understands the NT registry file format. With it, you can take registry files from NT, e.g., SAM, SECURITY, etc., and mount them on linux. Currently, it's read-only, though I may add read-write capability in the future. |
| Operating System | Unix |
| Link | ntreg |