Eikonal Blog

2011.03.01

MS Windows Registry transversal by Cygwin

Filed under: cygwin, unix, windows — Tags: , , , — sandokan65 @ 12:08

This may be an old thing, but it is new to me. Today I accidentally discovered that from inside Cygwin (i.e.e the Bash shell) one can transverse the Windows Registry. For example, one can list the content of HKEY_CLASSES_ROOT hive by simply typing:

    ls -la /proc/registry/HKEY_CLASSES_ROOT/
    

with partial output:

    total 0
    dr-xr-x---     5 Administrators SYSTEM      0 Apr 26  2010 *
    dr-xr-x---  7342 Administrators SYSTEM      0 Feb 18 10:32 .
    dr-xr-xr-x     8 thisuser       mkgroup-l-d 0 Mar  1 12:02 ..
    dr-xr-x---     3 Administrators SYSTEM      0 Feb 16  2010 .123
    dr-xr-x---     2 Administrators SYSTEM      0 Feb  3  2009 .323
    dr-xr-x---     3 Administrators SYSTEM      0 Feb  3  2009 .386
    dr-xr-x---     2 Administrators SYSTEM      0 Nov 17  2009 .3g2
    dr-xr-x---     2 Administrators SYSTEM      0 Nov 17  2009 .3gp
    dr-x------     2 thisuser       ????????    0 Jun  7  2010 .5vw
    dr-x------     4 thisuser       ????????    0 Nov 17  2009 .A1wish
    dr-x------     2 ????????       None        0 Aug  5  2009 .ARC
    dr-x------     2 ????????       None        0 Aug  5  2009 .ARJ
    dr-xr-x---     3 Administrators SYSTEM      0 Feb  4  2009 .AddIn
    dr-x------     3 ????????       ????????    0 Aug  7  2009 .AudioCD
    dr-x------     2 ????????       None        0 Aug  5  2009 .B64
    dr-x------     2 ????????       None        0 Aug  5  2009 .BHX
    dr-x------     2 ????????       ????????    0 Aug  7  2009 .CTT
    dr-xr-x---     3 Administrators SYSTEM      0 Feb  3  2009 .DeskLink
    dr-x------     3 ????????       ????????    0 Aug  7  2009 .Folder
    dr-xr-x---     2 Administrators SYSTEM      0 Feb  3  2009 .JSE
    dr-x------     2 ????????       None        0 Aug  5  2009 .LZH
    dr-xr-x---     3 Administrators SYSTEM      0 Feb  3  2009 .MAPIMail
    dr-x------     2 ????????       None        0 Aug  5  2009 .MIM
    ...
    

Such feature is available in Microsoft’s PowerShell for several years now, but I did not know that this exists in the Cygwin’s Bash. When was this feature incorporated in the Cygwin? Was it inspired by PowerShell?

Also, the same feature works for /proc/registry32/ and /proc/registry64/


Related: Cygwin stuff – https://eikonal.wordpress.com/2010/07/12/cygwin-stuff//a> | MS Windows Registry transversal by Cygwin – https://eikonal.wordpress.com/2011/03/01/registry-transversal-by-cygwin | Unix tricks – https://eikonal.wordpress.com/2011/02/15/unix-tricks/

Advertisements

2 Comments »

  1. […] – http://xlivecd.indiana.edu/ Related: MS Windows Registry transversal by Cygwin – https://eikonal.wordpress.com/2011/03/01/registry-transversal-by-cygwin | Unix tricks – […]

    Like

    Pingback by Cygwin stuff « Eikonal Blog — 2011.05.25 @ 15:22

  2. […] | MS Windows Registry transversal by Cygwin – https://eikonal.wordpress.com/2011/03/01/registry-transversal-by-cygwin Share this:StumbleUponDiggRedditLike this:LikeBe the first to like this post. Comments […]

    Like

    Pingback by Unix tricks « Eikonal Blog — 2011.09.30 @ 12:47


RSS feed for comments on this post. TrackBack URI

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

Blog at WordPress.com.

%d bloggers like this: