dissect.ntfs

Submodules

• dissect.ntfs.attr
• dissect.ntfs.c_ntfs
• dissect.ntfs.exceptions
• dissect.ntfs.index
• dissect.ntfs.mft
• dissect.ntfs.ntfs
• dissect.ntfs.secure
• dissect.ntfs.stream
• dissect.ntfs.usnjrnl
• dissect.ntfs.util

Re-Exports

Attribute	Parse and interact with MFT attributes.
AttributeHeader	Parse attribute headers.
AttributeRecord	Parse attribute records.
ATTRIBUTE_TYPE_CODE
NTFS_SIGNATURE
Index	Open an index with he given name on the given MFT record.
IndexEntry	Parse and interact with index entries.
Mft	Interact with the $MFT (Master File Table).
MftRecord	MFT record parsing and interaction.
NTFS	Implementation for Microsoft NTFS.
ACE	Parse an ACE from a file-like object.
ACL	Parse an ACL from a file-like object.
Secure	Lookup security descriptors from the $Secure file, or optionally just a file-like object of the $SDS.
SecurityDescriptor	Parse a security descriptor from a file-like object.
UsnJrnl	Parse the USN journal from a file-like object of the $UsnJrnl:$J stream.
UsnRecord	Parse a USN record from a file-like object and offset.