Reading Windows Registry from Linux

Since I’m involved in Live CD projects like Metadistros, I’ve been thinking about making easier to setup systems after they come up.

Many LiveCD systems are used onWindows installed machines, so why not to “steal” all this information from Windows registry to setup our Linux system? The idea is straight forward: e.g. take network configuration from Windows and boot a Live system which can connect directly to the Internet, without prompting users about IP confs.

Today I’ve been collecting base tools to do it:

dumphive: a tool written in Pascal to get a Windows registry binary hive file and dump it to a text file
Win32::Registry::File, a Perl library to access a text .reg file

To dump the hardware hive from my Thinkpad Windows XP partition:

$ dumphive /mnt/winxp/WINDOWS/system32/config/SYSTEM /tmp/system.reg

And to read SYSTEM\ControlSet001\Control (I don’t know what the hell is this) using Win32::Registry::File:

use Win32::Registry::File; $reg = new Win32::Registry::File(); $reg->open('/tmp/system.reg'); use Data::Dumper; print Dumper($reg->get(['SYSTEM\ControlSet001\Control']));

Now, the only thing left is to find the information we’re looking for among all those nightmare registry entries, and make it work on every Windows host.

Ho, ho, ho

About this entry

You’re currently reading “Reading Windows Registry from Linux,” an entry on Catarsis

Published:: 06.05.05 / 1am

Category:: Free Software

Daniel 01.09.06 / 8pm

Damn that’s good!
Is there any way besides “dumphive” to read the WinXP registry?

Thanks a lot,
Daniel

Héctor Blanco Alcaine 01.11.06 / 10am

dumphive is intended to retrieve info from a binary registry file.

There are some libraries that can be used when you access to a running registry on a Windows host, e.g. using Perl

I think there’s also some related stuff in libwine, but I didn’t go any further.

Please keep me informed if you find something else.

Alexey Filipov 01.22.06 / 8pm

I’m searching for any Perl library able to connect to running Windows box ad read the registry. COuld you point any?

So far all I found is Win32::TieRegistry which runs on Win32 only.

Natan 10.06.06 / 4pm

This is a great work. Looking forward to be able to write to the registry, too !

So we get control over windoz, at last… )

Chris Pimlott 04.08.07 / 2pm

Excellent tool, just what I was looking for. I’m especially grateful that you included a linux binary; saves a lot of trouble for those without a Pascal compilation environment already set up.

Héctor Blanco Alcaine 04.08.07 / 3pm

Chris,

I’m not Dumphive’s author. He is Markus Stephany

narayan agarwalla 09.10.09 / 10am

hi actually i want to check the windows registry of all the devices that is connected in the network and my product will be installed in the linux server so is there any way how to check the windows registry without using any dump file or the live cd…

Héctor Blanco Alcaine 09.10.09 / 8pm

narayan:

As mentioned in other comments, there are different libraries to handle remote registries (without using any dump file or live cd), but I never tried one of these.

narayan agarwalla 09.24.09 / 1pm

hi all
i need to check the windows registry remotely not from the same machine and i need to check the registry off all the devices that is connected to the network ,,,,is there any way how to do this …..

Catarsis

Reading Windows Registry from Linux

About this entry

9 Comments

Have your say

About

Recently

Monthly Archives