Modifying Windows registry from within Linux
up vote
4
down vote
favorite
I have a windows dd image that I have locally mounted.
I need to apply a series of registry tweaks from a known .reg file, within this Linux environment. I can't seem to find any tool that satisfies this.
I have found regpatch and hivexsh but they don't seem to do what I need, or I'm using them terribly wrong. Are there any working examples of performing such a task?
windows linux windows-registry
asked Mar 18 '13 at 20:37
Ryan
12613
add a comment |
up vote
4
down vote
favorite
I have a windows dd image that I have locally mounted.
I need to apply a series of registry tweaks from a known .reg file, within this Linux environment. I can't seem to find any tool that satisfies this.
I have found regpatch and hivexsh but they don't seem to do what I need, or I'm using them terribly wrong. Are there any working examples of performing such a task?
windows linux windows-registry
asked Mar 18 '13 at 20:37
Ryan
12613
Not sure if this would work but you could try booting the dd image in a virtual machine and then applying the fixes from within the actual windows environment. You might need to take an image of the changed machine at the end. Again, not at all sure if this is possible but it might be worth a try.
– terdon
Mar 18 '13 at 20:44
add a comment |
up vote
4
down vote
favorite
up vote
4
down vote
favorite
I have a windows dd image that I have locally mounted.
I need to apply a series of registry tweaks from a known .reg file, within this Linux environment. I can't seem to find any tool that satisfies this.
I have found regpatch and hivexsh but they don't seem to do what I need, or I'm using them terribly wrong. Are there any working examples of performing such a task?
windows linux windows-registry
asked Mar 18 '13 at 20:37
Ryan
12613
I have a windows dd image that I have locally mounted.
I need to apply a series of registry tweaks from a known .reg file, within this Linux environment. I can't seem to find any tool that satisfies this.
I have found regpatch and hivexsh but they don't seem to do what I need, or I'm using them terribly wrong. Are there any working examples of performing such a task?
windows linux windows-registry
windows linux windows-registry
asked Mar 18 '13 at 20:37
Ryan
12613
asked Mar 18 '13 at 20:37
Ryan
12613
asked Mar 18 '13 at 20:37
Ryan
12613
asked Mar 18 '13 at 20:37
Ryan
12613
asked Mar 18 '13 at 20:37
Ryan
12613
12613
Not sure if this would work but you could try booting the dd image in a virtual machine and then applying the fixes from within the actual windows environment. You might need to take an image of the changed machine at the end. Again, not at all sure if this is possible but it might be worth a try.
– terdon
Mar 18 '13 at 20:44
add a comment |
Not sure if this would work but you could try booting the dd image in a virtual machine and then applying the fixes from within the actual windows environment. You might need to take an image of the changed machine at the end. Again, not at all sure if this is possible but it might be worth a try.
– terdon
Mar 18 '13 at 20:44
Not sure if this would work but you could try booting the dd image in a virtual machine and then applying the fixes from within the actual windows environment. You might need to take an image of the changed machine at the end. Again, not at all sure if this is possible but it might be worth a try.
– terdon
Mar 18 '13 at 20:44
Not sure if this would work but you could try booting the dd image in a virtual machine and then applying the fixes from within the actual windows environment. You might need to take an image of the changed machine at the end. Again, not at all sure if this is possible but it might be worth a try.
– terdon
Mar 18 '13 at 20:44
add a comment |
3 Answers
3
active
oldest
votes
up vote
4
down vote
I think what you are looking for is chntpw (it's the same as mentioned in Ben's question, btw). It comes as package (Ubuntu sudo apt-get install chntpw) with modern distros and allows listing or editing the registry, given the hive file of a Windows installation. Hive files are ntuser.dat in the profile directories of user as well as the files under %SystemRoot%system32config such as software.
From the man chntpw page:
-e Registry editor with limited capabilities.
Caution: keep in mind that the format isn't officially documented by Microsoft and therefore any third-party editing tools could potentially damage the hives they load and manipulate. Take a backup!
As for applying a .reg file I don't think you'll get around parsing it yourself. It is basically just an INI/INF file with a special first line and sections named after the keys and values that have been escaped according to the type of the value. @ is a special value name for the default key. The rest is self-evident from looking at the file.
Python comes with built-in capabilities to parse INI files, so it provides a good starting point.
answered Mar 18 '13 at 20:54
0xC0000022L
3,29243767
add a comment |
up vote
1
down vote
I’d start having a sniff around http://www.pogostick.net/~pnh/ntpasswd/ as I’m aware it may have some basic tools to get you there.
answered Mar 18 '13 at 20:53
Ben Lavender
55326
add a comment |
up vote
0
down vote
If you need a GUI tool, you can use RegeditEx. It is written in Java, so Java Runtime Environment should be installed.
answered Nov 18 at 11:42
Sauron
11
Please read how to recommend software in answers, particularly the bits in bold; then edit your answer to follow the guidelines there. Thanks!
– bertieb
Nov 18 at 12:17
add a comment |
3 Answers
3
active
oldest
votes
3 Answers
3
active
oldest
votes
active
oldest
votes
active
oldest
votes
up vote
4
down vote
I think what you are looking for is chntpw (it's the same as mentioned in Ben's question, btw). It comes as package (Ubuntu sudo apt-get install chntpw) with modern distros and allows listing or editing the registry, given the hive file of a Windows installation. Hive files are ntuser.dat in the profile directories of user as well as the files under %SystemRoot%system32config such as software.
From the man chntpw page:
-e Registry editor with limited capabilities.
Caution: keep in mind that the format isn't officially documented by Microsoft and therefore any third-party editing tools could potentially damage the hives they load and manipulate. Take a backup!
As for applying a .reg file I don't think you'll get around parsing it yourself. It is basically just an INI/INF file with a special first line and sections named after the keys and values that have been escaped according to the type of the value. @ is a special value name for the default key. The rest is self-evident from looking at the file.
Python comes with built-in capabilities to parse INI files, so it provides a good starting point.
answered Mar 18 '13 at 20:54
0xC0000022L
3,29243767
add a comment |
up vote
4
down vote
I think what you are looking for is chntpw (it's the same as mentioned in Ben's question, btw). It comes as package (Ubuntu sudo apt-get install chntpw) with modern distros and allows listing or editing the registry, given the hive file of a Windows installation. Hive files are ntuser.dat in the profile directories of user as well as the files under %SystemRoot%system32config such as software.
From the man chntpw page:
-e Registry editor with limited capabilities.
Caution: keep in mind that the format isn't officially documented by Microsoft and therefore any third-party editing tools could potentially damage the hives they load and manipulate. Take a backup!
As for applying a .reg file I don't think you'll get around parsing it yourself. It is basically just an INI/INF file with a special first line and sections named after the keys and values that have been escaped according to the type of the value. @ is a special value name for the default key. The rest is self-evident from looking at the file.
Python comes with built-in capabilities to parse INI files, so it provides a good starting point.
answered Mar 18 '13 at 20:54
0xC0000022L
3,29243767
add a comment |
up vote
4
down vote
up vote
4
down vote
I think what you are looking for is chntpw (it's the same as mentioned in Ben's question, btw). It comes as package (Ubuntu sudo apt-get install chntpw) with modern distros and allows listing or editing the registry, given the hive file of a Windows installation. Hive files are ntuser.dat in the profile directories of user as well as the files under %SystemRoot%system32config such as software.
From the man chntpw page:
-e Registry editor with limited capabilities.
Caution: keep in mind that the format isn't officially documented by Microsoft and therefore any third-party editing tools could potentially damage the hives they load and manipulate. Take a backup!
As for applying a .reg file I don't think you'll get around parsing it yourself. It is basically just an INI/INF file with a special first line and sections named after the keys and values that have been escaped according to the type of the value. @ is a special value name for the default key. The rest is self-evident from looking at the file.
Python comes with built-in capabilities to parse INI files, so it provides a good starting point.
answered Mar 18 '13 at 20:54
0xC0000022L
3,29243767
I think what you are looking for is chntpw (it's the same as mentioned in Ben's question, btw). It comes as package (Ubuntu sudo apt-get install chntpw) with modern distros and allows listing or editing the registry, given the hive file of a Windows installation. Hive files are ntuser.dat in the profile directories of user as well as the files under %SystemRoot%system32config such as software.
From the man chntpw page:
-e Registry editor with limited capabilities.
Caution: keep in mind that the format isn't officially documented by Microsoft and therefore any third-party editing tools could potentially damage the hives they load and manipulate. Take a backup!
As for applying a .reg file I don't think you'll get around parsing it yourself. It is basically just an INI/INF file with a special first line and sections named after the keys and values that have been escaped according to the type of the value. @ is a special value name for the default key. The rest is self-evident from looking at the file.
Python comes with built-in capabilities to parse INI files, so it provides a good starting point.
answered Mar 18 '13 at 20:54
0xC0000022L
3,29243767
edited Mar 18 '13 at 21:38
answered Mar 18 '13 at 20:54
0xC0000022L
3,29243767
answered Mar 18 '13 at 20:54
0xC0000022L
3,29243767
answered Mar 18 '13 at 20:54
0xC0000022L
3,29243767
3,29243767
add a comment |
add a comment |
up vote
1
down vote
I’d start having a sniff around http://www.pogostick.net/~pnh/ntpasswd/ as I’m aware it may have some basic tools to get you there.
answered Mar 18 '13 at 20:53
Ben Lavender
55326
add a comment |
up vote
1
down vote
I’d start having a sniff around http://www.pogostick.net/~pnh/ntpasswd/ as I’m aware it may have some basic tools to get you there.
answered Mar 18 '13 at 20:53
Ben Lavender
55326
add a comment |
up vote
1
down vote
up vote
1
down vote
I’d start having a sniff around http://www.pogostick.net/~pnh/ntpasswd/ as I’m aware it may have some basic tools to get you there.
answered Mar 18 '13 at 20:53
Ben Lavender
55326
I’d start having a sniff around http://www.pogostick.net/~pnh/ntpasswd/ as I’m aware it may have some basic tools to get you there.
answered Mar 18 '13 at 20:53
Ben Lavender
55326
answered Mar 18 '13 at 20:53
Ben Lavender
55326
answered Mar 18 '13 at 20:53
Ben Lavender
55326
answered Mar 18 '13 at 20:53
Ben Lavender
55326
55326
add a comment |
add a comment |
up vote
0
down vote
If you need a GUI tool, you can use RegeditEx. It is written in Java, so Java Runtime Environment should be installed.
answered Nov 18 at 11:42
Sauron
11
Please read how to recommend software in answers, particularly the bits in bold; then edit your answer to follow the guidelines there. Thanks!
– bertieb
Nov 18 at 12:17
add a comment |
up vote
0
down vote
If you need a GUI tool, you can use RegeditEx. It is written in Java, so Java Runtime Environment should be installed.
answered Nov 18 at 11:42
Sauron
11
Please read how to recommend software in answers, particularly the bits in bold; then edit your answer to follow the guidelines there. Thanks!
– bertieb
Nov 18 at 12:17
add a comment |
up vote
0
down vote
up vote
0
down vote
If you need a GUI tool, you can use RegeditEx. It is written in Java, so Java Runtime Environment should be installed.
answered Nov 18 at 11:42
Sauron
11
If you need a GUI tool, you can use RegeditEx. It is written in Java, so Java Runtime Environment should be installed.
answered Nov 18 at 11:42
Sauron
11
answered Nov 18 at 11:42
Sauron
11
answered Nov 18 at 11:42
Sauron
11
answered Nov 18 at 11:42
Sauron
11
11
Please read how to recommend software in answers, particularly the bits in bold; then edit your answer to follow the guidelines there. Thanks!
– bertieb
Nov 18 at 12:17
add a comment |
Please read how to recommend software in answers, particularly the bits in bold; then edit your answer to follow the guidelines there. Thanks!
– bertieb
Nov 18 at 12:17
Please read how to recommend software in answers, particularly the bits in bold; then edit your answer to follow the guidelines there. Thanks!
– bertieb
Nov 18 at 12:17
Please read how to recommend software in answers, particularly the bits in bold; then edit your answer to follow the guidelines there. Thanks!
– bertieb
Nov 18 at 12:17
add a comment |
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsuperuser.com%2fquestions%2f567945%2fmodifying-windows-registry-from-within-linux%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Not sure if this would work but you could try booting the dd image in a virtual machine and then applying the fixes from within the actual windows environment. You might need to take an image of the changed machine at the end. Again, not at all sure if this is possible but it might be worth a try.
– terdon
Mar 18 '13 at 20:44