|
This page contains a description of the changes for each release (starting with release 3.0.0).
3.2.3 (Oct 7, 2011)
This release has some minor bug fixes and features. New features include:
- Only need to specify first E01 file in a set of files
- Added -d option to tsk_recover
- DOS partitions are loaded even if an extended partition fails
Bug fixes include:
- Cleanup of corrupt orphan FAT names
- RAW CD Support
See NEWS.txt for more details.
3.2.2 (June 10, 2011)
This release has some minor bug fixes. New features include:
Bug fixes include:
- ISO9660 directory processing
- FAT deleted file detection
- FAT deleted name cleanup
See NEWS.txt for more details.
3.2.1 (Feb 27, 2011)
This release has some minor bug fixes. New features include:
- SQLite DB contains a dummy entry if there is no volume system.
- The build directory can be different from the source directory when building on Unix.
Bug fixes include:
- fls arguments
- Compile errors with pthreads on some Linux systems
- Different FAT directory entry checking
- mingw compile errors
- mactime CSV output surrounds file name in quotes
See NEWS.txt for more details.
3.2.0 (Oct 28, 2010)
This release has new features and bug fixes. Thanks to Anthony Lawrence for help with the new features. New features include:
- New tsk_recover tool that extracts files from an image to a local directory.
- New tsk_loaddb tool that dumps file system metadata to SQLite database.
- New tsk_getimes tool that collects MAC time data on all file systems (equivalent to fls -m on a series of volumes)
- New tsk_comparedir tool that compares a directory to an image to detect rootkits.
- New C++ TskAuto class that makes it easier to create automated tools that analyze all files.
- Name cleanup out of libraries and into tools.
- img_cat -e and -s flags.
- Changed how default NTFS $Data attribute is named.
- HFS+ Case sensitive flag in fsstat.
Bug fixes include:
- FAT performance
- Crash fix for corrupt NTFS file
- Adding attribute runs on fragmented files with multiple attributes of the same type.
See NEWS.txt for more details.
3.1.3 (July 2, 2010)
This release has some bug fixes:
See NEWS.txt for more details.
3.1.2 (May 23, 2010)
This release has some bug fixes:
- FAT performance
- Reading errors
- ifind not stopping
- mmls -B display error
See NEWS.txt for more details.
3.1.1 (Mar 31, 2010)
This release has some bug fixes:
- ISO9660 fixes
- sorter fixes
See NEWS.txt for more details.
3.1.0 (Jan 13, 2010)
This long overdue release adds new features and has many bug fixes. New features include:
- HFS+ support
- Supports sectors that are not 512-bytes each (adds '-b' to each of the command line tools)
- NTFS SID data is now available
- mactime is distributed with windows executables
- Better detection of GPT partitions and DOS safety partitions
- More AFFLIB formats and better support for encrypted files
- Sigfind can process non-raw files
- Better support for indirect blocks (adds back features that were lost in 3.0.0)
- Many bug fixes.
See NEWS.txt for more details.
3.0.1 (Feb 2, 2009)
This release contains several bug fixes. No new features.
3.0.0 (Oct 19, 2008)
This major release contains many new library and tool features.
- Orphan files (deleted files that have a metadata structure, but do not have a parent directory that can be reached from the root directory) are now shown in the $OrphanFiles directory.
- The FAT file system MBR and File Allocation Tables are now accessible as files in the root directory.
- More deleted files are shown in each directory when using 'fls' (and the corresponding library API). This used to require running 'ifind -p' for each directory and it is now done automatically.
- New mmcat tool to output contents of a single volume.
- New mmls flags to list only specific volumes.
- Backup FAT MBRs are used, if the primary is corrupt.
- d* tools (dls, dcat, etc.) are now named blk* (blkls, blkcat, etc.)
- New '-b' option in sorter to specify minimum file size.
- Added mingw support for cross compiling
- New library APIs and docs that do not require a callback design
- Minor bug fixes.
|
