Use RegMon for real-time Reg watching and try this product for Snapshot
compares. I haven't used it but it looks to be fun and there is a
write-up in PCWorld about it.
---------------------------------------------------
Readme file of Regshot 1.61 2002/03/30
---------------------------------------------------
Please view whatsnew.txt for update info!
-----------------
Package includes:
-----------------
regshot.exe,language.ini,readme.txt,whatsnew.txt
-----------------
Introduction:
-----------------
RegShot is a small registry compare utility that allows you to quickly
take a snapshot
of your registry and then compare it with a second one - done after
doing system changes
or installing a new software product. The changes report can be produced
in text or HTML
format and contains a list of all modifications that have taken place
between snapshot1
and snapshot2.In addition, you can also specify folders (with sub
filders) to be scanned
for changes as well.In version 1.60+ you can save your whole registry in
a *.hiv file for
future use.
Note: Regshot is a FREEWARE!
http://regshot.yeah.net/
PCWorld Page -
http://www.pcworld.com/downloads/file_description/0,fid,19540,00.asp
-Todd
-----Original Message-----
From: full-disclosure-bounces@lists.netsys.com
[mailto:full-disclosure-bounces@lists.netsys.com] On Behalf
Of Frank Knobbe
Sent: Thursday, March 03, 2005 11:54 AM
To: Danny
Cc: Full-Disclosure (E-mail)
Subject: Re: [Full-Disclosure] Windows Registry Analzyer
On Thu, 2005-03-03 at 10:35 -0500, Danny wrote:
Anyone know of any free tools to analyze what changes have
been made
to a Windows 2000/XP registry?
There used to be a company/product called Intact, which
provided change monitoring of Registry settings as part of
its HIDS offerings. I'm not sure if they are still around or
got bought. Unfortunately it's not a free tool though.
Regards,
Frank
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
