winreg module implemented. winvol var implemented. mount python module implement…

…ed. FAT volume listing implemented. NTFS volume listing improved.

winreg module implemented. winvol var implemented. mount python module implement…
…ed. FAT volume listing implemented. NTFS volume listing improved.
Imanol-Mikel Barba Sabariego
1 parent 521d9059
Showing 20 changed files with 448 additions and 137 deletions
.idea/workspace.xml
README.md
__pycache__/mount.cpython-34.pyc
__pycache__/runcmd.cpython-34.pyc
__pycache__/tomb.cpython-34.pyc
__pycache__/winver.cpython-34.pyc
digger.py
modules/__pycache__/info.cpython-34.pyc
modules/__pycache__/mft.cpython-34.pyc
modules/__pycache__/winreg.cpython-34.pyc
modules/info.py
modules/winreg.py
mount.py
scripts/list_fat.sh
tomb.py
vars/__pycache__/ntfsvol.cpython-34.pyc
vars/__pycache__/winvol.cpython-34.pyc
vars/ntfsvol.py
vars/winvol.py
winver.py
@@ -2,12 +2,17 @@
 <project version="4">
   <component name="ChangeListManager">
     <list default="true" id="33419617-7da8-422e-9ac6-68e0b317ebf8" name="Default" comment="">
-      <change type="NEW" beforePath="" afterPath="$PROJECT_DIR$/modules/info.py" />
-      <change type="NEW" beforePath="" afterPath="$PROJECT_DIR$/modules/winreg.py" />
+      <change type="NEW" beforePath="" afterPath="$PROJECT_DIR$/README.md" />
+      <change type="NEW" beforePath="" afterPath="$PROJECT_DIR$/mount.py" />
+      <change type="NEW" beforePath="" afterPath="$PROJECT_DIR$/scripts/list_fat.sh" />
+      <change type="NEW" beforePath="" afterPath="$PROJECT_DIR$/vars/winvol.py" />
+      <change type="NEW" beforePath="" afterPath="$PROJECT_DIR$/winver.py" />
       <change type="MODIFICATION" beforePath="$PROJECT_DIR$/.idea/workspace.xml" afterPath="$PROJECT_DIR$/.idea/workspace.xml" />
       <change type="MODIFICATION" beforePath="$PROJECT_DIR$/digger.py" afterPath="$PROJECT_DIR$/digger.py" />
-      <change type="MODIFICATION" beforePath="$PROJECT_DIR$/modules/mft.py" afterPath="$PROJECT_DIR$/modules/mft.py" />
+      <change type="MODIFICATION" beforePath="$PROJECT_DIR$/modules/info.py" afterPath="$PROJECT_DIR$/modules/info.py" />
+      <change type="MODIFICATION" beforePath="$PROJECT_DIR$/modules/winreg.py" afterPath="$PROJECT_DIR$/modules/winreg.py" />
       <change type="MODIFICATION" beforePath="$PROJECT_DIR$/tomb.py" afterPath="$PROJECT_DIR$/tomb.py" />
+      <change type="MODIFICATION" beforePath="$PROJECT_DIR$/vars/ntfsvol.py" afterPath="$PROJECT_DIR$/vars/ntfsvol.py" />
     </list>
     <ignored path="gravedigger.iws" />
     <ignored path=".idea/workspace.xml" />
@@ -32,112 +37,114 @@
   </component>
   <component name="FileEditorManager">
     <leaf>
-      <file leaf-file-name="digger.py" pinned="false" current-in-tab="true">
-        <entry file="file://$PROJECT_DIR$/digger.py">
+      <file leaf-file-name="winreg.py" pinned="false" current-in-tab="true">
+        <entry file="file://$PROJECT_DIR$/modules/winreg.py">
           <provider selected="true" editor-type-id="text-editor">
-            <state relative-caret-position="446">
-              <caret line="75" column="13" selection-start-line="75" selection-start-column="13" selection-end-line="75" selection-end-column="13" />
+            <state relative-caret-position="485">
+              <caret line="56" column="49" selection-start-line="56" selection-start-column="49" selection-end-line="56" selection-end-column="49" />
               <folding>
-                <element signature="e#25#38#0" expanded="true" />
+                <element signature="e#0#25#0" expanded="true" />
               </folding>
             </state>
           </provider>
         </entry>
       </file>
-      <file leaf-file-name="runcmd.py" pinned="false" current-in-tab="false">
-        <entry file="file://$PROJECT_DIR$/runcmd.py">
+      <file leaf-file-name="winvol.py" pinned="false" current-in-tab="false">
+        <entry file="file://$PROJECT_DIR$/vars/winvol.py">
           <provider selected="true" editor-type-id="text-editor">
-            <state relative-caret-position="76">
-              <caret line="4" column="22" selection-start-line="4" selection-start-column="22" selection-end-line="4" selection-end-column="22" />
+            <state relative-caret-position="222">
+              <caret line="42" column="33" selection-start-line="42" selection-start-column="22" selection-end-line="42" selection-end-column="33" />
+              <folding>
+                <element signature="e#0#31#0" expanded="true" />
+              </folding>
+            </state>
+          </provider>
+        </entry>
+      </file>
+      <file leaf-file-name="README.md" pinned="false" current-in-tab="false">
+        <entry file="file://$PROJECT_DIR$/README.md">
+          <provider selected="true" editor-type-id="text-editor">
+            <state relative-caret-position="133">
+              <caret line="7" column="9" selection-start-line="7" selection-start-column="9" selection-end-line="7" selection-end-column="9" />
               <folding />
             </state>
           </provider>
         </entry>
       </file>
-      <file leaf-file-name="module.py" pinned="false" current-in-tab="false">
-        <entry file="file://$PROJECT_DIR$/module.py">
+      <file leaf-file-name="list_fat.sh" pinned="false" current-in-tab="false">
+        <entry file="file://$PROJECT_DIR$/scripts/list_fat.sh">
           <provider selected="true" editor-type-id="text-editor">
-            <state relative-caret-position="152">
-              <caret line="8" column="21" selection-start-line="8" selection-start-column="21" selection-end-line="8" selection-end-column="21" />
+            <state relative-caret-position="133">
+              <caret line="7" column="18" selection-start-line="7" selection-start-column="18" selection-end-line="7" selection-end-column="18" />
               <folding />
             </state>
           </provider>
         </entry>
       </file>
-      <file leaf-file-name="ntfsvol.py" pinned="false" current-in-tab="false">
-        <entry file="file://$PROJECT_DIR$/vars/ntfsvol.py">
+      <file leaf-file-name="mount.py" pinned="false" current-in-tab="false">
+        <entry file="file://$PROJECT_DIR$/mount.py">
           <provider selected="true" editor-type-id="text-editor">
-            <state relative-caret-position="608">
-              <caret line="32" column="29" selection-start-line="32" selection-start-column="29" selection-end-line="32" selection-end-column="29" />
+            <state relative-caret-position="190">
+              <caret line="10" column="18" selection-start-line="10" selection-start-column="18" selection-end-line="10" selection-end-column="18" />
               <folding>
-                <element signature="e#0#31#0" expanded="true" />
+                <element signature="e#0#11#0" expanded="true" />
               </folding>
             </state>
           </provider>
         </entry>
       </file>
-      <file leaf-file-name="list_ntfs.sh" pinned="false" current-in-tab="false">
-        <entry file="file://$PROJECT_DIR$/scripts/list_ntfs.sh">
+      <file leaf-file-name="runcmd.py" pinned="false" current-in-tab="false">
+        <entry file="file://$PROJECT_DIR$/runcmd.py">
           <provider selected="true" editor-type-id="text-editor">
             <state relative-caret-position="38">
-              <caret line="2" column="83" selection-start-line="2" selection-start-column="83" selection-end-line="2" selection-end-column="83" />
+              <caret line="2" column="20" selection-start-line="2" selection-start-column="20" selection-end-line="2" selection-end-column="20" />
               <folding />
             </state>
           </provider>
         </entry>
       </file>
-      <file leaf-file-name="mft.py" pinned="false" current-in-tab="false">
-        <entry file="file://$PROJECT_DIR$/modules/mft.py">
+      <file leaf-file-name="module.py" pinned="false" current-in-tab="false">
+        <entry file="file://$PROJECT_DIR$/module.py">
           <provider selected="true" editor-type-id="text-editor">
-            <state relative-caret-position="0">
-              <caret line="0" column="0" selection-start-line="0" selection-start-column="0" selection-end-line="25" selection-end-column="0" />
-              <folding>
-                <element signature="e#0#25#0" expanded="true" />
-              </folding>
+            <state relative-caret-position="76">
+              <caret line="4" column="0" selection-start-line="4" selection-start-column="0" selection-end-line="4" selection-end-column="0" />
+              <folding />
             </state>
           </provider>
         </entry>
       </file>
-      <file leaf-file-name="winreg.py" pinned="false" current-in-tab="false">
-        <entry file="file://$PROJECT_DIR$/modules/winreg.py">
+      <file leaf-file-name="digger.py" pinned="false" current-in-tab="false">
+        <entry file="file://$PROJECT_DIR$/digger.py">
           <provider selected="true" editor-type-id="text-editor">
-            <state relative-caret-position="323">
-              <caret line="17" column="12" selection-start-line="17" selection-start-column="12" selection-end-line="18" selection-end-column="10" />
+            <state relative-caret-position="276">
+              <caret line="71" column="41" selection-start-line="71" selection-start-column="41" selection-end-line="71" selection-end-column="41" />
               <folding>
-                <element signature="e#0#25#0" expanded="true" />
+                <element signature="e#25#38#0" expanded="true" />
               </folding>
             </state>
           </provider>
         </entry>
       </file>
-      <file leaf-file-name="info.py" pinned="false" current-in-tab="false">
-        <entry file="file://$PROJECT_DIR$/modules/info.py">
+      <file leaf-file-name="winver.py" pinned="false" current-in-tab="false">
+        <entry file="file://$PROJECT_DIR$/winver.py">
           <provider selected="true" editor-type-id="text-editor">
-            <state relative-caret-position="266">
-              <caret line="14" column="22" selection-start-line="14" selection-start-column="22" selection-end-line="14" selection-end-column="22" />
+            <state relative-caret-position="447">
+              <caret line="69" column="17" selection-start-line="69" selection-start-column="17" selection-end-line="69" selection-end-column="17" />
               <folding>
-                <element signature="e#0#25#0" expanded="true" />
+                <element signature="e#0#9#0" expanded="true" />
               </folding>
             </state>
           </provider>
         </entry>
       </file>
-      <file leaf-file-name="tomb.py" pinned="false" current-in-tab="false">
-        <entry file="file://$PROJECT_DIR$/tomb.py">
-          <provider selected="true" editor-type-id="text-editor">
-            <state relative-caret-position="114">
-              <caret line="6" column="27" selection-start-line="6" selection-start-column="27" selection-end-line="6" selection-end-column="27" />
-              <folding />
-            </state>
-          </provider>
-        </entry>
-      </file>
-      <file leaf-file-name="modulevar.py" pinned="false" current-in-tab="false">
-        <entry file="file://$PROJECT_DIR$/modulevar.py">
+      <file leaf-file-name="ntfsvol.py" pinned="false" current-in-tab="false">
+        <entry file="file://$PROJECT_DIR$/vars/ntfsvol.py">
           <provider selected="true" editor-type-id="text-editor">
-            <state relative-caret-position="114">
-              <caret line="6" column="21" selection-start-line="6" selection-start-column="21" selection-end-line="6" selection-end-column="21" />
-              <folding />
+            <state relative-caret-position="295">
+              <caret line="21" column="56" selection-start-line="21" selection-start-column="56" selection-end-line="21" selection-end-column="56" />
+              <folding>
+                <element signature="e#0#31#0" expanded="true" />
+              </folding>
             </state>
           </provider>
         </entry>
@@ -163,14 +170,20 @@
         <option value="$PROJECT_DIR$/modulevar.py" />
         <option value="$PROJECT_DIR$/module.py" />
         <option value="$PROJECT_DIR$/scripts/digger.sh" />
-        <option value="$PROJECT_DIR$/runcmd.py" />
-        <option value="$PROJECT_DIR$/vars/ntfsvol.py" />
-        <option value="$PROJECT_DIR$/scripts/list_ntfs.sh" />
         <option value="$PROJECT_DIR$/tomb.py" />
+        <option value="$PROJECT_DIR$/scripts/list_ntfs.sh" />
         <option value="$PROJECT_DIR$/modules/mft.py" />
         <option value="$PROJECT_DIR$/modules/info.py" />
-        <option value="$PROJECT_DIR$/modules/winreg.py" />
+        <option value="$PROJECT_DIR$/modules/mount.py" />
+        <option value="$PROJECT_DIR$/scripts/list_fat.sh" />
         <option value="$PROJECT_DIR$/digger.py" />
+        <option value="$PROJECT_DIR$/runcmd.py" />
+        <option value="$PROJECT_DIR$/mount.py" />
+        <option value="$PROJECT_DIR$/README.md" />
+        <option value="$PROJECT_DIR$/vars/ntfsvol.py" />
+        <option value="$PROJECT_DIR$/vars/winvol.py" />
+        <option value="$PROJECT_DIR$/winver.py" />
+        <option value="$PROJECT_DIR$/modules/winreg.py" />
       </list>
     </option>
   </component>
@@ -181,10 +194,10 @@
     <sorting>DEFINITION_ORDER</sorting>
   </component>
   <component name="ProjectFrameBounds">
-    <option name="x" value="2113" />
-    <option name="y" value="215" />
+    <option name="x" value="1915" />
+    <option name="y" value="31" />
     <option name="width" value="1930" />
-    <option name="height" value="1173" />
+    <option name="height" value="1174" />
   </component>
   <component name="ProjectLevelVcsManager" settingsEditedManually="false">
     <OptionsSetting value="true" id="Add" />
@@ -255,6 +268,20 @@
               <option name="myItemType" value="com.intellij.ide.projectView.impl.nodes.PsiDirectoryNode" />
             </PATH_ELEMENT>
             <PATH_ELEMENT>
+              <option name="myItemId" value="scripts" />
+              <option name="myItemType" value="com.intellij.ide.projectView.impl.nodes.PsiDirectoryNode" />
+            </PATH_ELEMENT>
+          </PATH>
+          <PATH>
+            <PATH_ELEMENT>
+              <option name="myItemId" value="gravedigger" />
+              <option name="myItemType" value="com.intellij.ide.projectView.impl.nodes.ProjectViewProjectNode" />
+            </PATH_ELEMENT>
+            <PATH_ELEMENT>
+              <option name="myItemId" value="gravedigger" />
+              <option name="myItemType" value="com.intellij.ide.projectView.impl.nodes.PsiDirectoryNode" />
+            </PATH_ELEMENT>
+            <PATH_ELEMENT>
               <option name="myItemId" value="modules" />
               <option name="myItemType" value="com.intellij.ide.projectView.impl.nodes.PsiDirectoryNode" />
             </PATH_ELEMENT>
@@ -267,6 +294,9 @@
     <property name="WebServerToolWindowFactoryState" value="false" />
   </component>
   <component name="RecentsManager">
+    <key name="CopyFile.RECENT_KEYS">
+      <recent name="$PROJECT_DIR$/vars" />
+    </key>
     <key name="MoveFile.RECENT_KEYS">
       <recent name="$PROJECT_DIR$" />
       <recent name="$PROJECT_DIR$/scripts" />
@@ -519,27 +549,27 @@
     <servers />
   </component>
   <component name="ToolWindowManager">
-    <frame x="2113" y="215" width="1930" height="1173" extended-state="0" />
+    <frame x="1915" y="31" width="1930" height="1174" extended-state="6" />
     <editor active="true" />
     <layout>
-      <window_info id="Project" active="false" anchor="left" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="true" show_stripe_button="true" weight="0.25" sideWeight="0.5" order="0" side_tool="false" content_ui="combo" />
-      <window_info id="TODO" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.33" sideWeight="0.5" order="6" side_tool="false" content_ui="tabs" />
-      <window_info id="Event Log" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.33" sideWeight="0.5" order="-1" side_tool="true" content_ui="tabs" />
-      <window_info id="Database" active="false" anchor="right" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.33" sideWeight="0.5" order="-1" side_tool="false" content_ui="tabs" />
-      <window_info id="Python Console" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.33" sideWeight="0.5" order="-1" side_tool="false" content_ui="tabs" />
-      <window_info id="Version Control" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.33" sideWeight="0.5" order="-1" side_tool="false" content_ui="tabs" />
-      <window_info id="Run" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="true" show_stripe_button="true" weight="0.33023256" sideWeight="0.5" order="2" side_tool="false" content_ui="tabs" />
-      <window_info id="Structure" active="false" anchor="left" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.25" sideWeight="0.5" order="1" side_tool="false" content_ui="tabs" />
-      <window_info id="Terminal" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.33" sideWeight="0.5" order="-1" side_tool="false" content_ui="tabs" />
-      <window_info id="Favorites" active="false" anchor="left" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.33" sideWeight="0.5" order="-1" side_tool="true" content_ui="tabs" />
-      <window_info id="Debug" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.4" sideWeight="0.5" order="3" side_tool="false" content_ui="tabs" />
-      <window_info id="Cvs" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.25" sideWeight="0.5" order="4" side_tool="false" content_ui="tabs" />
-      <window_info id="Hierarchy" active="false" anchor="right" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.25" sideWeight="0.5" order="2" side_tool="false" content_ui="combo" />
-      <window_info id="Message" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.33" sideWeight="0.5" order="0" side_tool="false" content_ui="tabs" />
-      <window_info id="Commander" active="false" anchor="right" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.4" sideWeight="0.5" order="0" side_tool="false" content_ui="tabs" />
-      <window_info id="Find" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.33" sideWeight="0.5" order="1" side_tool="false" content_ui="tabs" />
-      <window_info id="Inspection" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.4" sideWeight="0.5" order="5" side_tool="false" content_ui="tabs" />
-      <window_info id="Ant Build" active="false" anchor="right" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.25" sideWeight="0.5" order="1" side_tool="false" content_ui="tabs" />
+      <window_info id="Project" active="false" anchor="left" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="true" show_stripe_button="true" weight="0.25" sideWeight="0.5" order="1" side_tool="false" content_ui="combo" />
+      <window_info id="TODO" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.33" sideWeight="0.5" order="10" side_tool="false" content_ui="tabs" />
+      <window_info id="Event Log" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.33" sideWeight="0.5" order="0" side_tool="true" content_ui="tabs" />
+      <window_info id="Database" active="false" anchor="right" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.33" sideWeight="0.5" order="0" side_tool="false" content_ui="tabs" />
+      <window_info id="Python Console" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.33" sideWeight="0.5" order="1" side_tool="false" content_ui="tabs" />
+      <window_info id="Version Control" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.33" sideWeight="0.5" order="2" side_tool="false" content_ui="tabs" />
+      <window_info id="Run" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="true" show_stripe_button="true" weight="0.32992566" sideWeight="0.5" order="6" side_tool="false" content_ui="tabs" />
+      <window_info id="Structure" active="false" anchor="left" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.25" sideWeight="0.5" order="2" side_tool="false" content_ui="tabs" />
+      <window_info id="Terminal" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.33" sideWeight="0.5" order="3" side_tool="false" content_ui="tabs" />
+      <window_info id="Favorites" active="false" anchor="left" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.33" sideWeight="0.5" order="0" side_tool="true" content_ui="tabs" />
+      <window_info id="Debug" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.4" sideWeight="0.5" order="7" side_tool="false" content_ui="tabs" />
+      <window_info id="Cvs" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.25" sideWeight="0.5" order="8" side_tool="false" content_ui="tabs" />
+      <window_info id="Hierarchy" active="false" anchor="right" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.25" sideWeight="0.5" order="3" side_tool="false" content_ui="combo" />
+      <window_info id="Message" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.33" sideWeight="0.5" order="4" side_tool="false" content_ui="tabs" />
+      <window_info id="Commander" active="false" anchor="right" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.4" sideWeight="0.5" order="1" side_tool="false" content_ui="tabs" />
+      <window_info id="Find" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.33" sideWeight="0.5" order="5" side_tool="false" content_ui="tabs" />
+      <window_info id="Inspection" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.4" sideWeight="0.5" order="9" side_tool="false" content_ui="tabs" />
+      <window_info id="Ant Build" active="false" anchor="right" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.25" sideWeight="0.5" order="2" side_tool="false" content_ui="tabs" />
     </layout>
   </component>
   <component name="Vcs.Log.UiProperties">
@@ -582,92 +612,138 @@
         </state>
       </provider>
     </entry>
-    <entry file="file://$PROJECT_DIR$/runcmd.py">
+    <entry file="file://$PROJECT_DIR$/modules/mft.py">
       <provider selected="true" editor-type-id="text-editor">
-        <state relative-caret-position="76">
-          <caret line="4" column="22" selection-start-line="4" selection-start-column="22" selection-end-line="4" selection-end-column="22" />
+        <state relative-caret-position="399">
+          <caret line="21" column="37" selection-start-line="21" selection-start-column="37" selection-end-line="21" selection-end-column="37" />
+          <folding>
+            <element signature="e#0#25#0" expanded="true" />
+          </folding>
+        </state>
+      </provider>
+    </entry>
+    <entry file="file://$PROJECT_DIR$/tomb.py">
+      <provider selected="true" editor-type-id="text-editor">
+        <state relative-caret-position="228">
+          <caret line="12" column="15" selection-start-line="12" selection-start-column="15" selection-end-line="12" selection-end-column="15" />
           <folding />
         </state>
       </provider>
     </entry>
-    <entry file="file://$PROJECT_DIR$/module.py">
+    <entry file="file://$PROJECT_DIR$/modulevar.py">
       <provider selected="true" editor-type-id="text-editor">
-        <state relative-caret-position="152">
-          <caret line="8" column="21" selection-start-line="8" selection-start-column="21" selection-end-line="8" selection-end-column="21" />
+        <state relative-caret-position="114">
+          <caret line="6" column="21" selection-start-line="6" selection-start-column="21" selection-end-line="6" selection-end-column="21" />
           <folding />
         </state>
       </provider>
     </entry>
-    <entry file="file://$PROJECT_DIR$/vars/ntfsvol.py">
+    <entry file="file://$PROJECT_DIR$/modules/info.py">
       <provider selected="true" editor-type-id="text-editor">
-        <state relative-caret-position="608">
-          <caret line="32" column="29" selection-start-line="32" selection-start-column="29" selection-end-line="32" selection-end-column="29" />
+        <state relative-caret-position="228">
+          <caret line="12" column="3" selection-start-line="12" selection-start-column="3" selection-end-line="12" selection-end-column="3" />
           <folding>
-            <element signature="e#0#31#0" expanded="true" />
+            <element signature="e#0#25#0" expanded="true" />
           </folding>
         </state>
       </provider>
     </entry>
     <entry file="file://$PROJECT_DIR$/scripts/list_ntfs.sh">
       <provider selected="true" editor-type-id="text-editor">
-        <state relative-caret-position="38">
-          <caret line="2" column="83" selection-start-line="2" selection-start-column="83" selection-end-line="2" selection-end-column="83" />
+        <state relative-caret-position="0">
+          <caret line="0" column="0" selection-start-line="0" selection-start-column="0" selection-end-line="9" selection-end-column="4" />
           <folding />
         </state>
       </provider>
     </entry>
-    <entry file="file://$PROJECT_DIR$/modules/info.py">
+    <entry file="file://$PROJECT_DIR$/scripts/list_fat.sh">
+      <provider selected="true" editor-type-id="text-editor">
+        <state relative-caret-position="133">
+          <caret line="7" column="18" selection-start-line="7" selection-start-column="18" selection-end-line="7" selection-end-column="18" />
+          <folding />
+        </state>
+      </provider>
+    </entry>
+    <entry file="file://$PROJECT_DIR$/module.py">
+      <provider selected="true" editor-type-id="text-editor">
+        <state relative-caret-position="76">
+          <caret line="4" column="0" selection-start-line="4" selection-start-column="0" selection-end-line="4" selection-end-column="0" />
+          <folding />
+        </state>
+      </provider>
+    </entry>
+    <entry file="file://$PROJECT_DIR$/digger.py">
       <provider selected="true" editor-type-id="text-editor">
-        <state relative-caret-position="266">
-          <caret line="14" column="22" selection-start-line="14" selection-start-column="22" selection-end-line="14" selection-end-column="22" />
+        <state relative-caret-position="276">
+          <caret line="71" column="41" selection-start-line="71" selection-start-column="41" selection-end-line="71" selection-end-column="41" />
           <folding>
-            <element signature="e#0#25#0" expanded="true" />
+            <element signature="e#25#38#0" expanded="true" />
           </folding>
         </state>
       </provider>
     </entry>
-    <entry file="file://$PROJECT_DIR$/tomb.py">
+    <entry file="file://$PROJECT_DIR$/runcmd.py">
       <provider selected="true" editor-type-id="text-editor">
-        <state relative-caret-position="114">
-          <caret line="6" column="27" selection-start-line="6" selection-start-column="27" selection-end-line="6" selection-end-column="27" />
+        <state relative-caret-position="38">
+          <caret line="2" column="20" selection-start-line="2" selection-start-column="20" selection-end-line="2" selection-end-column="20" />
           <folding />
         </state>
       </provider>
     </entry>
-    <entry file="file://$PROJECT_DIR$/modulevar.py">
+    <entry file="file://$PROJECT_DIR$/mount.py">
       <provider selected="true" editor-type-id="text-editor">
-        <state relative-caret-position="114">
-          <caret line="6" column="21" selection-start-line="6" selection-start-column="21" selection-end-line="6" selection-end-column="21" />
+        <state relative-caret-position="190">
+          <caret line="10" column="18" selection-start-line="10" selection-start-column="18" selection-end-line="10" selection-end-column="18" />
+          <folding>
+            <element signature="e#0#11#0" expanded="true" />
+          </folding>
+        </state>
+      </provider>
+    </entry>
+    <entry file="file://$PROJECT_DIR$/README.md">
+      <provider selected="true" editor-type-id="text-editor">
+        <state relative-caret-position="133">
+          <caret line="7" column="9" selection-start-line="7" selection-start-column="9" selection-end-line="7" selection-end-column="9" />
           <folding />
         </state>
       </provider>
     </entry>
-    <entry file="file://$PROJECT_DIR$/modules/mft.py">
+    <entry file="file://$PROJECT_DIR$/vars/ntfsvol.py">
       <provider selected="true" editor-type-id="text-editor">
-        <state relative-caret-position="0">
-          <caret line="0" column="0" selection-start-line="0" selection-start-column="0" selection-end-line="25" selection-end-column="0" />
+        <state relative-caret-position="295">
+          <caret line="21" column="56" selection-start-line="21" selection-start-column="56" selection-end-line="21" selection-end-column="56" />
           <folding>
-            <element signature="e#0#25#0" expanded="true" />
+            <element signature="e#0#31#0" expanded="true" />
           </folding>
         </state>
       </provider>
     </entry>
-    <entry file="file://$PROJECT_DIR$/modules/winreg.py">
+    <entry file="file://$PROJECT_DIR$/vars/winvol.py">
       <provider selected="true" editor-type-id="text-editor">
-        <state relative-caret-position="323">
-          <caret line="17" column="12" selection-start-line="17" selection-start-column="12" selection-end-line="18" selection-end-column="10" />
+        <state relative-caret-position="222">
+          <caret line="42" column="33" selection-start-line="42" selection-start-column="22" selection-end-line="42" selection-end-column="33" />
           <folding>
-            <element signature="e#0#25#0" expanded="true" />
+            <element signature="e#0#31#0" expanded="true" />
           </folding>
         </state>
       </provider>
     </entry>
-    <entry file="file://$PROJECT_DIR$/digger.py">
+    <entry file="file://$PROJECT_DIR$/winver.py">
       <provider selected="true" editor-type-id="text-editor">
-        <state relative-caret-position="446">
-          <caret line="75" column="13" selection-start-line="75" selection-start-column="13" selection-end-line="75" selection-end-column="13" />
+        <state relative-caret-position="447">
+          <caret line="69" column="17" selection-start-line="69" selection-start-column="17" selection-end-line="69" selection-end-column="17" />
           <folding>
-            <element signature="e#25#38#0" expanded="true" />
+            <element signature="e#0#9#0" expanded="true" />
+          </folding>
+        </state>
+      </provider>
+    </entry>
+    <entry file="file://$PROJECT_DIR$/modules/winreg.py">
+      <provider selected="true" editor-type-id="text-editor">
+        <state relative-caret-position="485">
+          <caret line="56" column="49" selection-start-line="56" selection-start-column="49" selection-end-line="56" selection-end-column="49" />
+          <folding>
+            <element signature="e#0#25#0" expanded="true" />
           </folding>
         </state>
       </provider>
+REQUIRED PACKAGES
+------------------
+
+* python3
+* python3-dialog
+* sleuthkit
+* pev
+* ntfs-3g
 \ No newline at end of file
@@ -7,6 +7,7 @@ import os
 import sys
 import subprocess as sp
 import tomb
+import traceback
  
 sys.path.append('modules')
 sys.path.append('vars')
@@ -31,9 +32,12 @@ def getModules():
     return choiceList
  
 def prepareModule(moduleName):
-    module = __import__(moduleName).getInstance()
-    module.getVars()
-    return module
+    try:
+        module = __import__(moduleName).getInstance()
+        module.getVars()
+        return module
+    except Exception as e:
+        raise Exception("[" + moduleName + "] " + str(e))
  
 locale.setlocale(locale.LC_ALL, '')
 d = Dialog(dialog="dialog",autowidgetsize=True)
@@ -42,7 +46,7 @@ d.set_background_title(&quot;Gravedigger&quot;)
 moduleList = getModules()
 code,value = d.inputbox("Input computer's name")
 if code == d.OK:
-    tomb.__MACHINE_NAME__ = value
+    tomb._MACHINE_NAME= value
     d.set_background_title("Gravedigger - " + value)
     code, tags = d.checklist("Select modules to execute",
                          choices=moduleList + [("all","Execute all modules",False)],
@@ -65,6 +69,7 @@ if code == d.OK:
                     module.run()
                 except Exception as e:
                     print("Exception raised while running " + module.name + ": " + str(e))
+                    traceback.print_exc()
  
             code, tag = d.menu("All modules finished execution",choices=[("Poweroff","Shutdown the computer"),
                                                                          ("Reboot","Reboot the computer"),
@@ -78,5 +83,6 @@ if code == d.OK:
  
         except Exception as e:
             print("Exception raised while preparing module: " + str(e))
+            traceback.print_exc()
  
  
@@ -17,4 +17,5 @@ class INFOModule(Module):
     def run(self):
         path = tomb.getPath() + self.name + "/"
         os.mkdir(path)
+        #TODO
         #getinfo
 from module import Module
-from runcmd import runProcess
 import tomb
 import os
+import winver
+from runcmd import runProcess
+from mount import mount,umount
  
 def getInstance():
     return RegistryModule()
@@ -11,13 +13,49 @@ class RegistryModule(Module):
     def __init__(self):
         self.name = "winreg"
         self.description = "Extracts Windows Registry files"
-        self.requiredVars = ["ntfsvol"]
+        self.requiredVars = ["winvol"]
         self.vars = {}
  
     def run(self):
         path = tomb.getPath() + self.name + "/"
         os.mkdir(path)
-        for vol in self.vars['ntfsvol'].value:
-            pass
-            #runstuff
+        for vol in self.vars['winvol'].value:
+            mntpoint = "/mnt/"
+            mntid = mount("/dev/" + vol)
+            mntpoint += mntid
+            files = []
+            windir = winver.getWindowsDirectory(mntpoint)
+            if windir == None:
+                raise Exception("No Windows installation present")
+            version = winver.getWindowsVersion(mntpoint)
+            profiles = winver.getUserProfiles(mntpoint)
+            if version <= winver._WIN_ME:
+                #9x
+                files = [windir + "USER.DAT",windir + "SYSTEM.DAT"]
+                if(len(profiles) > 0):
+                    for profile in profiles:
+                        if(os.path.isfile(profile + "USER.DAT")):
+                            files += [profile + "USER.DAT"]
+                if version == winver._WIN_ME:
+                    #ME
+                    files += [windir + "CLASSES.DAT"]
+
+            elif version > winver._WIN_ME:
+                    #NT
+                    files += [windir + "/System32/config/SAM" ]
+                    files += [windir + "/System32/config/SECURITY"]
+                    files += [windir + "/System32/config/SOFTWARE"]
+                    files += [windir + "/System32/config/SYSTEM"]
+                    files += [windir + "/System32/config/DEFAULT"]
+                    for profile in profiles:
+                        files += [profile + "/NTUSER.DAT"]
+                        if version > winver._WIN_NT and version < winver._WIN_VISTA:
+                            #2k XP 2k3
+                            files += [profile + "/Local Settings/Application Data/Microsoft/Windows/UsrClass.dat"]
+                        else:
+                            #Vista+
+                            files += [profile + "/AppData/Local/Microsoft/Windows/UsrClass.dat"]
  
+            print(files)
+            runProcess(["tar","-czvf",path + "winreg_" + vol + ".tar.gz"] + files)
+            umount(mntid)
+import uuid
+import os
+from runcmd import runProcess
+
+def mount(device):
+    mountID = str(uuid.uuid4())
+    os.mkdir("/mnt/" + mountID)
+    output, code = runProcess(["mount","-o","ro",device,"/mnt/" + mountID])
+    if code != 0:
+        raise Exception("Unable to mount " + device)
+    return mountID
+
+
+def umount(mountID):
+    output, code = runProcess(["umount","/mnt/" + mountID])
+    if code != 0:
+        raise Exception("Unable to umount " + mountID)
+    os.rmdir("/mnt/" + mountID)
 \ No newline at end of file
+#!/bin/bash
+
+# Outputs, separated by newlines, the list of FAT volumes present on this computer
+
+for disk in $(cat /proc/partitions  | awk -F " " '{print $NF}' | tail -n+3); do
+    HEADER=$(dd if="/dev/$disk" bs=1 skip=82 count=5 2> /dev/null)
+    if [[ $HEADER == "FAT32" ]]; then
+        echo $disk
+    else
+        HEADER=$(dd if="/dev/$disk" bs=1 skip=54 count=5 2> /dev/null)
+        if [[ $HEADER == "FAT16" || $HEADER == "FAT12" ]]; then
+            echo $disk
+        fi
+    fi
+done
 \ No newline at end of file
 import os
  
-__ROOT_PATH__ = "/bones/"
-__MACHINE_NAME__ = "JOHN_DOE"
+_ROOT_PATH = "/bones/"
+_MACHINE_NAME = "JOHN_DOE"
  
 def __getTomb__():
-    return __MACHINE_NAME__
+    return _MACHINE_NAME
  
 def getPath():
-    path = __ROOT_PATH__ + __getTomb__() + "/"
+    path = _ROOT_PATH + __getTomb__() + "/"
     if not os.path.exists(path):
         os.makedirs(path)
     return path
 \ No newline at end of file
@@ -15,18 +15,23 @@ class NTFSVol(Modulevar):
  
     def getNTFSVolumes(self):
         result = runProcess("scripts/list_ntfs.sh")
-        volumes = result[0].decode("utf-8").splitlines()
-        print(volumes)
-        choices = []
-        for vol in volumes:
-            choices.append((vol,"",False))
-        return choices
+        resultlst =result[0].decode("utf-8").splitlines()
+        volumes = []
+        for res in resultlst:
+            output,code = runProcess(["ntfslabel","/dev/" + res])
+            volumes.append((res,output.decode("utf-8")))
+        return volumes
  
     def query(self):
         d = Dialog(dialog="dialog", autowidgetsize=True)
         d.set_background_title("[" + self.parentModule + "] Setting variable: ntfsvol")
-        volumeList = self.getNTFSVolumes()
-        code, vols = d.checklist("Select NTFS volumes to extract the MFT",
+        volumes = self.getNTFSVolumes()
+        if(len(volumes) == 0):
+            raise Exception("[" + self.name + "] No Windows Volumes found")
+        volumeList = []
+        for vol in volumes:
+            volumeList.append((vol[0],vol[1], False))
+        code, vols = d.checklist("Select NTFS volumes",
                                  choices=volumeList,
                                  title="Module selection")
         if code == d.OK:
+from modulevar import Modulevar
+from dialog import Dialog
+from runcmd import runProcess
+import winver
+from mount import mount,umount
+
+def getInstance(modname):
+    return WinVol(modname)
+
+class WinVol(Modulevar):
+
+    def __init__(self,modname):
+        self.name = "winvol"
+        self.parentModule = modname
+        self.description = "Windows Volume"
+        self.value = None
+
+    def getNTFSVolumes(self):
+        result = runProcess("scripts/list_ntfs.sh")
+        resultlst =result[0].decode("utf-8").splitlines()
+        volumes = []
+        for res in resultlst:
+            output,code = runProcess(["ntfslabel","/dev/" + res])
+            volumes.append((res,output.decode("utf-8")))
+        return volumes
+
+    def getFATVolumes(self):
+        result = runProcess("scripts/list_fat.sh")
+        resultlst =result[0].decode("utf-8").splitlines()
+        volumes = []
+        for res in resultlst:
+            output,code = runProcess(["dosfslabel","/dev/" + res])
+            volumes.append((res,output.decode("utf-8")))
+        return volumes
+
+    def getWindowsVolumes(self):
+        volumes = self.getNTFSVolumes() + self.getFATVolumes()
+        winvols = []
+        for volume in volumes:
+            mntpoint = "/mnt/"
+            mntid = mount("/dev/" + volume[0])
+            mntpoint += mntid
+            if(winver.getWindowsDirectory(mntpoint) != None):
+                winvols.append(volume)
+            umount(mntid)
+        return winvols
+
+    def query(self):
+        d = Dialog(dialog="dialog", autowidgetsize=True)
+        d.set_background_title("[" + self.parentModule + "] Setting variable: winvol")
+        volumes = self.getWindowsVolumes()
+        if(len(volumes) == 0):
+            raise Exception("[" + self.name + "] No Windows Volumes found")
+        volumeList = []
+        for vol in volumes:
+            volumeList.append((vol[0],vol[1], False))
+        code, vols = d.checklist("Select Windows volumes",
+                                 choices=volumeList,
+                                 title="Module selection")
+        if code == d.OK:
+            self.value = vols
+        else:
+            raise Exception("[" + self.name + "] Operation Cancelled")
 \ No newline at end of file
+import os
+from runcmd import runProcess
+import re
+
+_WIN_9x     = 0
+_WIN_ME     = 1
+_WIN_NT     = 2
+_WIN_2k     = 3
+_WIN_XP     = 4
+_WIN_2k3    = 5
+_WIN_VISTA  = 6
+_WIN_2k8    = 6
+_WIN_7      = 7
+_WIN_2k8R2  = 7
+_WIN_8      = 8
+_WIN_2k12   = 8
+_WIN_81     = 9
+_WIN_2k12R2 = 9
+_WIN_10     = 10
+
+
+
+def getWindowsVersion(path):
+    if(os.path.isfile(getWindowsDirectory(path) + "/System32/ntdll.dll")):
+        output,code = runProcess(["pev","-p",getWindowsDirectory(path) + "/System32/ntdll.dll"])
+        version = output.decode("utf-8")
+        if re.match("(3|4)\.",version) != None:
+            return _WIN_NT
+        elif re.match("5\.0",version) != None:
+            return _WIN_2k
+        elif re.match("5\.1", version) != None:
+            return _WIN_XP
+        elif re.match("5\.2", version) != None:
+            return _WIN_2k3
+        elif re.match("6\.0", version) != None:
+            return _WIN_VISTA
+        elif re.match("6\.1", version) != None:
+            return _WIN_7
+        elif re.match("6\.2", version) != None:
+            return _WIN_8
+        elif re.match("6\.3", version) != None:
+            return _WIN_81
+        elif re.match("10\.", version) != None:
+            return _WIN_10
+    else:
+        if(os.path.isfile(getWindowsDirectory(path) + "/CLASSES.DAT")):
+            return _WIN_ME
+        return _WIN_9x
+
+def getWindowsDirectory(path):
+    result,code = runProcess(["find",path,"-xdev","-iname","explorer.exe","-print","-quit"])
+    if(result.decode("utf-8") == ""):
+        return None
+    matches = result.decode("utf-8").splitlines()
+    #WARNING: ONLY CONSIDERING FIRST MATCH
+    #TODO: Improve
+    return os.path.dirname(os.path.realpath(matches[0]))
+
+def getUserProfiles(path):
+    version = getWindowsVersion(path)
+    if version < _WIN_XP:
+        profilepath = getWindowsDirectory(path) + "/Profiles"
+        if (os.path.exists(profilepath)):
+            return [profilepath + prof for prof in os.listdir(profilepath)]
+        return []
+    elif version == _WIN_XP:
+        profilepath = path + "/Documents and Settings"
+        if (os.path.exists(profilepath)):
+            return [profilepath + prof for prof in os.listdir(profilepath)]
+        return []
+    else:
+        profiles = []
+        profilepath = path + "/Users"
+        print(profilepath)
+        if (os.path.exists(profilepath)):
+            for elem in os.listdir(profilepath):
+                if(os.path.isdir(profilepath + "/" + elem)):
+                    profiles.append(profilepath + "/" + elem)
+
+        return profiles
+    pass
 \ No newline at end of file