A Python tool that thoroughly understands PostgreSQL. The purpose of this tool is to carve PostGreSQL rows from a flat, binary file. This includes Raw/DD forensic images.
These instructions will get you a copy of the project up and running on your local machine for development and testing purposes. See deployment for notes on how to deploy the project on a live system.
You will need three external modules to run PostGrok:
- XLSXWriter (pip install xlsxwriter)
- Six (pip install six)
- Vivisect (Download mirror from Willi Ballenthin's GitHub, and install. https://github.com/williballenthin/vivisect-vstruct)
After cloning this repository to your local machine, run "python setup.py", this will install PostGrok to your system so you can exectue from anywhere on your systemm.
Licensed under the Apache License, Version 2.0 (the "License"); See LICENSE.md file for details.
Andrew Rector Email: andrew.rector@mandiant.com Twitter: @andy_rektor