No OneTemporary
Actions

Size

61 KB

Referenced Files

None

Subscribers

None

View Options

	diff --git a/trunk/datareporter.cpp b/trunk/datareporter.cpp
	index 8a80086..4ce4139 100644
	--- a/trunk/datareporter.cpp
	+++ b/trunk/datareporter.cpp
	@@ -1,171 +1,171 @@
	/*******************************************************************************
	* fred Copyright (c) 2011 by Gillen Daniel <gillen.dan@pinguin.lu> *
	* *
	* Forensic Registry EDitor (fred) is a cross-platform M$ registry hive editor *
	* with special feautures useful during forensic analysis. *
	* *
	* This program is free software: you can redistribute it and/or modify it *
	* under the terms of the GNU General Public License as published by the Free *
	* Software Foundation, either version 3 of the License, or (at your option) *
	* any later version. *
	* *
	* This program is distributed in the hope that it will be useful, but WITHOUT *
	* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or *
	* FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for *
	* more details. *
	* *
	* You should have received a copy of the GNU General Public License along with *
	* this program. If not, see <http://www.gnu.org/licenses/>. *
	*******************************************************************************/

	#include "datareporter.h"

	#include <QDir>
	#include <QTextStream>
	#include <QtScript/QScriptEngine>
	#include <QMessageBox>

	DataReporter::DataReporter() {
	this->report_templates.clear();
	//this->p_report_engine=new DataReporterEngine();
	}

	DataReporter::~DataReporter() {
	//delete this->p_report_engine;
	qDeleteAll(this->report_templates);
	}

	void DataReporter::LoadReportTemplates(QString dir) {
	QString report_template="";
	int i=0;
	int ii=0;
	bool found=false;
	QString report_category="";
	QString report_name="";
	ReportTemplate *p_report;

	// Get all template files in report_templates directory
	QDir report_dir(dir);
	QStringList found_report_templates=report_dir.
	entryList(QStringList()<<"*.qs");

	for(i=0;i<found_report_templates.count();i++) {
	// Build complete path to template file
	report_template=report_dir.path();
	report_template.append(QDir::separator());
	report_template.append(found_report_templates.value(i));

	// Extract report category and name from file name (<category>_<name>.qs)
	report_category=found_report_templates.value(i).left(
	found_report_templates.value(i).indexOf("_"));
	report_name=found_report_templates.value(i).mid(
	found_report_templates.value(i).indexOf("_")+1);
	report_name=report_name.left(report_name.lastIndexOf("."));

	// Check if a report with the same category/name was already added
	found=false;
	for(ii=0;ii<this->report_templates.count();ii++) {
	if(this->report_templates.at(ii)->Category()==report_category &&
	this->report_templates.at(ii)->Name()==report_name)
	{
	found=true;
	break;
	}
	}

	if(!found) {
	// Add report to list
	p_report=new ReportTemplate(report_category,
	report_name,
	report_template);
	this->report_templates.append(p_report);
	} else {
	// Update report entry
	p_report=this->report_templates.at(ii);
	p_report->SetFile(report_template);
	}
	}
	}

	QStringList DataReporter::GetAvailableReportCategories() {
	QStringList ret;
	QString cat;
	int i=0;

	ret.clear();
	for(i=0;i<this->report_templates.count();i++) {
	cat=this->report_templates.value(i)->Category();
	if(!ret.contains(cat)) ret.append(cat);
	}
	ret.sort();

	return ret;
	}

	QStringList DataReporter::GetAvailableReports(QString category) {
	QStringList ret;
	QString cat;
	int i=0;

	ret.clear();
	for(i=0;i<this->report_templates.count();i++) {
	cat=this->report_templates.value(i)->Category();
	if(cat==category) ret.append(this->report_templates.value(i)->Name());
	}
	ret.sort();

	return ret;
	}

	QString DataReporter::GenerateReport(RegistryHive *p_hive,
	QString report_category,
	QString report_name)
	{
	int i=0;
	ReportTemplate *p_report;
	DataReporterEngine engine(p_hive);
	QString report_code;
	//ReportData report_data;

	for(i=0;i<this->report_templates.count();i++) {
	p_report=this->report_templates.value(i);
	if(p_report->Category()!=report_category \|\| p_report->Name()!=report_name) {
	continue;
	}

	QScriptValue hive_value=engine.newQObject(p_hive);
	engine.globalObject().setProperty("RegistryHive",hive_value);
	//QScriptValue return_value=engine.newQObject(&report_data);
	//engine.globalObject().setProperty("ReportData",return_value);

	// Open report template
	QFile template_file(p_report->File());
	if(!template_file.open(QIODevice::ReadOnly \| QIODevice::Text)) {
	qDebug("Couldn't open file '%s'",p_report->File().toAscii().constData());
	return QString();
	}
	// Read template file
	QTextStream in(&template_file);
	while(!in.atEnd()) {
	report_code.append(in.readLine()).append("\n");
	}
	// Close report template file
	template_file.close();

	QScriptValue report_result=engine.evaluate(report_code,p_report->File());

	if (report_result.isError() \|\| engine.hasUncaughtException()) {
	QMessageBox::critical(0,
	- "Hello Script",
	+ "Report engine error",
	QString::fromLatin1("%0:%1: %2")
	.arg(p_report->File())
	.arg(report_result.property("lineNumber").toInt32())
	.arg(report_result.toString()));
	return QString();
	}

	return engine.report_content;
	}

	return QString();
	}
	diff --git a/trunk/dlgsearch.cpp b/trunk/dlgsearch.cpp
	new file mode 100644
	index 0000000..2b370c3
	--- /dev/null
	+++ b/trunk/dlgsearch.cpp
	@@ -0,0 +1,96 @@
	+/*******************************************************************************
	+* fred Copyright (c) 2011 by Gillen Daniel <gillen.dan@pinguin.lu> *
	+* *
	+* Forensic Registry EDitor (fred) is a cross-platform M$ registry hive editor *
	+* with special feautures useful during forensic analysis. *
	+* *
	+* This program is free software: you can redistribute it and/or modify it *
	+* under the terms of the GNU General Public License as published by the Free *
	+* Software Foundation, either version 3 of the License, or (at your option) *
	+* any later version. *
	+* *
	+* This program is distributed in the hope that it will be useful, but WITHOUT *
	+* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or *
	+* FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for *
	+* more details. *
	+* *
	+* You should have received a copy of the GNU General Public License along with *
	+* this program. If not, see <http://www.gnu.org/licenses/>. *
	+*******************************************************************************/
	+
	+#include "dlgsearch.h"
	+#include "ui_dlgsearch.h"
	+
	+#include <QMessageBox>
	+
	+DlgSearch::DlgSearch(QWidget *parent) : QDialog(parent), ui(new Ui::DlgSearch)
	+{
	+ ui->setupUi(this);
	+}
	+
	+DlgSearch::~DlgSearch() {
	+ delete ui;
	+}
	+
	+void DlgSearch::changeEvent(QEvent *e) {
	+ QDialog::changeEvent(e);
	+ switch (e->type()) {
	+ case QEvent::LanguageChange:
	+ ui->retranslateUi(this);
	+ break;
	+ default:
	+ break;
	+ }
	+}
	+
	+void DlgSearch::on_BtnCancel_clicked() {
	+ this->reject();
	+}
	+
	+void DlgSearch::on_BtnSearch_clicked() {
	+ if(this->ui->EdtValue->text()=="" \|\|
	+ (!this->ui->CbAscii->isChecked() &&
	+ !this->ui->CbUtf16->isChecked() &&
	+ !this->ui->CbHex->isChecked()))
	+ {
	+ // No value type specified
	+ QMessageBox::critical(this,
	+ tr("Error"),
	+ tr("Please specify a search value and type!"));
	+ return;
	+ }
	+
	+ if(!this->ui->CbNodeNames->isChecked() &&
	+ !this->ui->CbKeyNames->isChecked() &&
	+ !this->ui->CbKeyValues->isChecked())
	+ {
	+ // No target specified
	+ QMessageBox::critical(this,
	+ tr("Error"),
	+ tr("Please specify a search target!"));
	+ return;
	+ }
	+
	+
	+ this->accept();
	+}
	+
	+void DlgSearch::on_CbAscii_toggled(bool checked) {
	+ // It is not possible to search for text and hex
	+ if(checked && this->ui->CbHex->isChecked())
	+ this->ui->CbHex->setChecked(false);
	+}
	+
	+void DlgSearch::on_CbUtf16_toggled(bool checked) {
	+ // It is not possible to search for text and hex
	+ if(checked && this->ui->CbHex->isChecked())
	+ this->ui->CbHex->setChecked(false);
	+}
	+
	+void DlgSearch::on_CbHex_toggled(bool checked) {
	+ // It is not possible to search for text and hex
	+ if(checked) {
	+ this->ui->CbAscii->setChecked(false);
	+ this->ui->CbUtf16->setChecked(false);
	+ }
	+}
	diff --git a/trunk/dlgsearch.h b/trunk/dlgsearch.h
	new file mode 100644
	index 0000000..cab6f01
	--- /dev/null
	+++ b/trunk/dlgsearch.h
	@@ -0,0 +1,55 @@
	+/*******************************************************************************
	+* fred Copyright (c) 2011 by Gillen Daniel <gillen.dan@pinguin.lu> *
	+* *
	+* Forensic Registry EDitor (fred) is a cross-platform M$ registry hive editor *
	+* with special feautures useful during forensic analysis. *
	+* *
	+* This program is free software: you can redistribute it and/or modify it *
	+* under the terms of the GNU General Public License as published by the Free *
	+* Software Foundation, either version 3 of the License, or (at your option) *
	+* any later version. *
	+* *
	+* This program is distributed in the hope that it will be useful, but WITHOUT *
	+* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or *
	+* FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for *
	+* more details. *
	+* *
	+* You should have received a copy of the GNU General Public License along with *
	+* this program. If not, see <http://www.gnu.org/licenses/>. *
	+*******************************************************************************/
	+
	+#ifndef DLGSEARCH_H
	+#define DLGSEARCH_H
	+
	+#include <QDialog>
	+
	+namespace Ui {
	+ class DlgSearch;
	+}
	+
	+class DlgSearch : public QDialog {
	+ Q_OBJECT
	+
	+ public:
	+ explicit DlgSearch(QWidget *parent = 0);
	+ ~DlgSearch();
	+
	+ protected:
	+ void changeEvent(QEvent *e);
	+
	+ private slots:
	+ void on_BtnCancel_clicked();
	+
	+ void on_BtnSearch_clicked();
	+
	+ void on_CbAscii_toggled(bool checked);
	+
	+ void on_CbUtf16_toggled(bool checked);
	+
	+ void on_CbHex_toggled(bool checked);
	+
	+private:
	+ Ui::DlgSearch *ui;
	+};
	+
	+#endif // DLGSEARCH_H
	diff --git a/trunk/dlgsearch.ui b/trunk/dlgsearch.ui
	new file mode 100644
	index 0000000..fa6db3a
	--- /dev/null
	+++ b/trunk/dlgsearch.ui
	@@ -0,0 +1,140 @@
	+<?xml version="1.0" encoding="UTF-8"?>
	+<ui version="4.0">
	+ <class>DlgSearch</class>
	+ <widget class="QDialog" name="DlgSearch">
	+ <property name="geometry">
	+ <rect>
	+ <x>0</x>
	+ <y>0</y>
	+ <width>400</width>
	+ <height>210</height>
	+ </rect>
	+ </property>
	+ <property name="sizePolicy">
	+ <sizepolicy hsizetype="Minimum" vsizetype="Minimum">
	+ <horstretch>0</horstretch>
	+ <verstretch>0</verstretch>
	+ </sizepolicy>
	+ </property>
	+ <property name="windowTitle">
	+ <string> Search</string>
	+ </property>
	+ <property name="windowIcon">
	+ <iconset resource="fred.qrc">
	+ <normaloff>:/icons/resources/fred.png</normaloff>:/icons/resources/fred.png</iconset>
	+ </property>
	+ <layout class="QVBoxLayout" name="verticalLayout">
	+ <item>
	+ <widget class="QGroupBox" name="groupBox">
	+ <property name="title">
	+ <string>Search value</string>
	+ </property>
	+ <layout class="QVBoxLayout" name="verticalLayout_2">
	+ <item>
	+ <widget class="QLineEdit" name="EdtValue"/>
	+ </item>
	+ <item>
	+ <layout class="QHBoxLayout" name="horizontalLayout">
	+ <item>
	+ <widget class="QCheckBox" name="CbAscii">
	+ <property name="text">
	+ <string>ASCII</string>
	+ </property>
	+ </widget>
	+ </item>
	+ <item>
	+ <widget class="QCheckBox" name="CbUtf16">
	+ <property name="text">
	+ <string>UTF16</string>
	+ </property>
	+ </widget>
	+ </item>
	+ <item>
	+ <widget class="QCheckBox" name="CbHex">
	+ <property name="text">
	+ <string>Hexadecimal</string>
	+ </property>
	+ </widget>
	+ </item>
	+ </layout>
	+ </item>
	+ </layout>
	+ </widget>
	+ </item>
	+ <item>
	+ <widget class="QGroupBox" name="groupBox_2">
	+ <property name="title">
	+ <string>Search for</string>
	+ </property>
	+ <layout class="QHBoxLayout" name="horizontalLayout_2">
	+ <item>
	+ <widget class="QCheckBox" name="CbNodeNames">
	+ <property name="text">
	+ <string>Node names</string>
	+ </property>
	+ <property name="checked">
	+ <bool>true</bool>
	+ </property>
	+ </widget>
	+ </item>
	+ <item>
	+ <widget class="QCheckBox" name="CbKeyNames">
	+ <property name="text">
	+ <string>Key names</string>
	+ </property>
	+ <property name="checked">
	+ <bool>true</bool>
	+ </property>
	+ </widget>
	+ </item>
	+ <item>
	+ <widget class="QCheckBox" name="CbKeyValues">
	+ <property name="text">
	+ <string>Key values</string>
	+ </property>
	+ <property name="checked">
	+ <bool>true</bool>
	+ </property>
	+ </widget>
	+ </item>
	+ </layout>
	+ </widget>
	+ </item>
	+ <item>
	+ <layout class="QHBoxLayout" name="horizontalLayout_3">
	+ <item>
	+ <widget class="QPushButton" name="BtnCancel">
	+ <property name="text">
	+ <string>&Cancel</string>
	+ </property>
	+ </widget>
	+ </item>
	+ <item>
	+ <spacer name="horizontalSpacer">
	+ <property name="orientation">
	+ <enum>Qt::Horizontal</enum>
	+ </property>
	+ <property name="sizeHint" stdset="0">
	+ <size>
	+ <width>40</width>
	+ <height>20</height>
	+ </size>
	+ </property>
	+ </spacer>
	+ </item>
	+ <item>
	+ <widget class="QPushButton" name="BtnSearch">
	+ <property name="text">
	+ <string>&Search</string>
	+ </property>
	+ </widget>
	+ </item>
	+ </layout>
	+ </item>
	+ </layout>
	+ </widget>
	+ <resources>
	+ <include location="fred.qrc"/>
	+ </resources>
	+ <connections/>
	+</ui>
	diff --git a/trunk/fred.pro b/trunk/fred.pro
	index ac6f55a..f22d4b0 100644
	--- a/trunk/fred.pro
	+++ b/trunk/fred.pro
	@@ -1,84 +1,89 @@
	#*******************************************************************************
	# fred Copyright (c) 2011 by Gillen Daniel <gillen.dan@pinguin.lu> *
	# *
	# Forensic Registry EDitor (fred) is a cross-platform M$ registry hive editor *
	# with special feautures useful during forensic analysis. *
	# *
	# This program is free software: you can redistribute it and/or modify it *
	# under the terms of the GNU General Public License as published by the Free *
	# Software Foundation, either version 3 of the License, or (at your option) *
	# any later version. *
	# *
	# This program is distributed in the hope that it will be useful, but WITHOUT *
	# ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or *
	# FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for *
	# more details. *
	# *
	# You should have received a copy of the GNU General Public License along with *
	# this program. If not, see <http://www.gnu.org/licenses/>. *
	#******************************************************************************/

	system(bash compileinfo.sh > compileinfo.h)

	QT += core \
	gui \
	- xml \
	+ thread \
	script \
	webkit

	TARGET = fred

	TEMPLATE = app


	SOURCES += main.cpp\
	mainwindow.cpp \
	registrynode.cpp \
	registrynodetreemodel.cpp \
	registrykey.cpp \
	registrykeytablemodel.cpp \
	dlgabout.cpp \
	dlgkeydetails.cpp \
	qhexedit/qhexedit_p.cpp \
	qhexedit/qhexedit.cpp \
	datainterpreter.cpp \
	reporttemplate.cpp \
	datareporter.cpp \
	datareporterengine.cpp \
	registryhive.cpp \
	qtscript_types/bytearray.cpp \
	qtscript_types/bytearrayprototype.cpp \
	qtscript_types/bytearrayiterator.cpp \
	dlgreportviewer.cpp \
	registrykeytable.cpp \
	- registrynodetree.cpp
	+ registrynodetree.cpp \
	+ dlgsearch.cpp \
	+ threadsearch.cpp

	HEADERS += mainwindow.h \
	registrynode.h \
	registrynodetreemodel.h \
	registrykey.h \
	registrykeytablemodel.h \
	dlgabout.h \
	dlgkeydetails.h \
	qhexedit/qhexedit_p.h \
	qhexedit/qhexedit.h \
	datainterpreter.h \
	reporttemplate.h \
	datareporter.h \
	datareporterengine.h \
	registryhive.h \
	qtscript_types/bytearray.h \
	qtscript_types/bytearrayprototype.h \
	qtscript_types/bytearrayiterator.h \
	dlgreportviewer.h \
	registrykeytable.h \
	- registrynodetree.h
	+ registrynodetree.h \
	+ dlgsearch.h \
	+ threadsearch.h

	FORMS += mainwindow.ui \
	dlgabout.ui \
	dlgkeydetails.ui \
	- dlgreportviewer.ui
	+ dlgreportviewer.ui \
	+ dlgsearch.ui

	LIBS += -lhivex

	RESOURCES += fred.qrc
	diff --git a/trunk/mainwindow.cpp b/trunk/mainwindow.cpp
	index ab19b99..dbe1468 100644
	--- a/trunk/mainwindow.cpp
	+++ b/trunk/mainwindow.cpp
	@@ -1,538 +1,560 @@
	/*******************************************************************************
	* fred Copyright (c) 2011 by Gillen Daniel <gillen.dan@pinguin.lu> *
	* *
	* Forensic Registry EDitor (fred) is a cross-platform M$ registry hive editor *
	* with special feautures useful during forensic analysis. *
	* *
	* This program is free software: you can redistribute it and/or modify it *
	* under the terms of the GNU General Public License as published by the Free *
	* Software Foundation, either version 3 of the License, or (at your option) *
	* any later version. *
	* *
	* This program is distributed in the hope that it will be useful, but WITHOUT *
	* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or *
	* FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for *
	* more details. *
	* *
	* You should have received a copy of the GNU General Public License along with *
	* this program. If not, see <http://www.gnu.org/licenses/>. *
	*******************************************************************************/

	#ifndef FRED_REPORT_TEMPLATE_DIR
	#define FRED_REPORT_TEMPLATE_DIR "/usr/share/fred/report_templates/"
	#endif

	#include <QFileDialog>
	#include <QMessageBox>
	#include <QStringList>
	#include <QDesktopWidget>
	#include <QDir>
	#include <QSplitter>

	#include "mainwindow.h"
	#include "ui_mainwindow.h"
	#include "dlgabout.h"
	#include "dlgkeydetails.h"
	#include "dlgreportviewer.h"
	+#include "dlgsearch.h"

	#include "compileinfo.h"

	MainWindow::MainWindow(QWidget *parent) :
	QMainWindow(parent), ui(new Ui::MainWindow)
	{
	ui->setupUi(this);

	// Initialize private vars
	this->p_hive=new RegistryHive(this);
	this->is_hive_open=false;
	this->p_reg_node_tree_model=NULL;
	this->p_reg_key_table_model=NULL;

	// Check for ~/.fred config dir
	this->CheckUserConfigDir();

	// Set main window size
	int cur_screen=QApplication::desktop()->screenNumber(this);
	int window_width=
	QApplication::desktop()->availableGeometry(cur_screen).width()*0.5;
	int window_height=
	QApplication::desktop()->availableGeometry(cur_screen).height()*0.5;
	int window_x=
	(QApplication::desktop()->availableGeometry(cur_screen).width()/2)-
	(window_width/2);
	int window_y=
	(QApplication::desktop()->availableGeometry(cur_screen).height()/2)-
	(window_height/2);
	this->setGeometry(window_x,
	window_y,
	window_width,
	window_height);

	// Create widgets
	this->p_horizontal_splitter=new QSplitter();
	this->p_horizontal_splitter->setOrientation(Qt::Horizontal);

	this->p_node_tree=new RegistryNodeTree(this->p_horizontal_splitter);
	this->p_node_tree->setHeaderHidden(true);

	this->p_vertical_splitter=new QSplitter(this->p_horizontal_splitter);
	this->p_vertical_splitter->setOrientation(Qt::Vertical);

	this->p_key_table=new RegistryKeyTable(this->p_vertical_splitter);

	- this->p_horizontal_splitter2=new QSplitter(this->p_vertical_splitter);
	+ this->p_tab_widget=new QTabWidget(this->p_vertical_splitter);
	+
	+ this->p_horizontal_splitter2=new QSplitter();
	this->p_horizontal_splitter2->setOrientation(Qt::Horizontal);

	this->p_hex_edit_widget=new QWidget(this->p_horizontal_splitter2);
	this->p_hex_edit_layout=new QVBoxLayout(this->p_hex_edit_widget);
	this->p_hex_edit_layout->setContentsMargins(0,0,0,0);
	this->p_hex_edit=new QHexEdit();
	this->p_hex_edit->setReadOnly(true);
	this->p_hex_edit_status_bar=new QLabel();

	this->p_data_interpreter=new DataInterpreter(this->p_horizontal_splitter2);

	// Make sure hex viewer font is monospaced.
	QFont mono_font("Monospace");
	mono_font.setStyleHint(QFont::TypeWriter);
	this->p_hex_edit->setFont(mono_font);

	+ // Add hexedit page to tab_widget
	+ this->p_tab_widget->insertTab(0,
	+ this->p_horizontal_splitter2,
	+ tr("Hex viewer"));
	+
	// Lay out widgets
	this->p_hex_edit_layout->addWidget(this->p_hex_edit);
	this->p_hex_edit_layout->addWidget(this->p_hex_edit_status_bar);

	this->p_horizontal_splitter2->addWidget(this->p_hex_edit_widget);
	this->p_horizontal_splitter2->addWidget(this->p_data_interpreter);

	this->p_vertical_splitter->addWidget(this->p_key_table);
	- this->p_vertical_splitter->addWidget(this->p_horizontal_splitter2);
	+ this->p_vertical_splitter->addWidget(this->p_tab_widget);

	this->p_horizontal_splitter->addWidget(this->p_node_tree);
	this->p_horizontal_splitter->addWidget(this->p_vertical_splitter);

	// Set stretch factors
	QSizePolicy node_tree_policy=this->p_node_tree->sizePolicy();
	node_tree_policy.setHorizontalStretch(1);
	node_tree_policy.setVerticalStretch(100);
	this->p_node_tree->setSizePolicy(node_tree_policy);

	QSizePolicy vertical_splitter_policy=this->p_vertical_splitter->sizePolicy();
	vertical_splitter_policy.setHorizontalStretch(4);
	vertical_splitter_policy.setVerticalStretch(100);
	this->p_vertical_splitter->setSizePolicy(vertical_splitter_policy);

	QSizePolicy key_table_policy=this->p_key_table->sizePolicy();
	key_table_policy.setVerticalStretch(5);
	key_table_policy.setHorizontalStretch(100);
	this->p_key_table->setSizePolicy(key_table_policy);

	+ QSizePolicy tab_widget_policy=this->p_tab_widget->sizePolicy();
	+ tab_widget_policy.setVerticalStretch(2);
	+ tab_widget_policy.setHorizontalStretch(200);
	+ this->p_tab_widget->setSizePolicy(tab_widget_policy);
	+
	QSizePolicy hex_edit_widget_policy=this->p_hex_edit_widget->sizePolicy();
	hex_edit_widget_policy.setVerticalStretch(2);
	hex_edit_widget_policy.setHorizontalStretch(200);
	this->p_hex_edit_widget->setSizePolicy(hex_edit_widget_policy);

	QSizePolicy data_interpreter_policy=this->p_data_interpreter->sizePolicy();
	data_interpreter_policy.setVerticalStretch(2);
	data_interpreter_policy.setHorizontalStretch(0);
	this->p_data_interpreter->setSizePolicy(data_interpreter_policy);

	// Connect signals
	this->connect(this->p_node_tree,
	SIGNAL(clicked(QModelIndex)),
	this,
	SLOT(SlotNodeTreeClicked(QModelIndex)));
	this->connect(this->p_node_tree,
	SIGNAL(activated(QModelIndex)),
	this,
	SLOT(SlotNodeTreeClicked(QModelIndex)));
	this->connect(this->p_key_table,
	SIGNAL(clicked(QModelIndex)),
	this,
	SLOT(SlotKeyTableClicked(QModelIndex)));
	this->connect(this->p_key_table,
	SIGNAL(doubleClicked(QModelIndex)),
	this,
	SLOT(SlotKeyTableDoubleClicked(QModelIndex)));
	this->connect(this->p_hex_edit,
	SIGNAL(currentAddressChanged(int)),
	this,
	SLOT(SlotHexEditAddressChanged(int)));

	// Add central widget
	this->setContentsMargins(4,4,4,0);
	this->setCentralWidget(this->p_horizontal_splitter);

	// Set window title
	this->UpdateWindowTitle();

	// Set last open location to home dir
	this->last_open_location=QDir::homePath();

	// Load report templates and update menu
	this->p_data_reporter=new DataReporter();
	// Load reports from system wide include dir
	this->p_data_reporter->LoadReportTemplates(FRED_REPORT_TEMPLATE_DIR);
	// Load user's report templates
	this->p_data_reporter->LoadReportTemplates(QDir::homePath()
	.append(QDir::separator())
	.append(".fred")
	.append(QDir::separator())
	.append("report_templates"));
	this->UpdateDataReporterMenu();

	// Finally, parse command line arguments
	this->ParseCommandLineArgs();
	}

	MainWindow::~MainWindow() {
	if(this->is_hive_open) {
	this->p_hive->Close();
	}
	delete ui;
	}

	void MainWindow::on_action_Quit_triggered() {
	qApp->exit();
	}

	void MainWindow::on_action_Open_hive_triggered() {
	QString hive_file="";

	hive_file=QFileDialog::getOpenFileName(this,
	tr("Open registry hive"),
	this->last_open_location,
	tr("All files (*)"));
	if(hive_file=="") return;

	this->OpenHive(hive_file);
	}

	void MainWindow::on_action_Close_hive_triggered() {
	if(this->is_hive_open) {
	// Delete models
	if(this->p_reg_node_tree_model!=NULL) {
	this->p_node_tree->setModel(NULL);
	delete this->p_reg_node_tree_model;
	this->p_reg_node_tree_model=NULL;
	}
	if(this->p_reg_key_table_model!=NULL) {
	this->p_key_table->setModel(NULL);
	delete this->p_reg_key_table_model;
	this->p_reg_key_table_model=NULL;
	}

	// Remove any data from hex edit and data interpreter
	this->p_hex_edit->setData(QByteArray());
	this->p_hex_edit_status_bar->setText("");
	this->p_data_interpreter->ClearValues();

	// Close hive
	this->p_hive->Close();

	this->is_hive_open=false;
	this->ui->action_Close_hive->setEnabled(false);
	+ this->ui->ActionSearch->setEnabled(false);
	this->ui->MenuReports->setEnabled(false);
	this->UpdateWindowTitle();
	}
	}

	void MainWindow::on_actionAbout_Qt_triggered() {
	QMessageBox::aboutQt(this,tr("About Qt"));
	}

	void MainWindow::on_actionAbout_fred_triggered() {
	DlgAbout dlg_about(this);
	dlg_about.exec();
	}

	void MainWindow::SlotNodeTreeClicked(QModelIndex index) {
	QString node_path;

	if(!index.isValid()) return;

	//Built node path
	node_path.clear();
	node_path=this->p_reg_node_tree_model->data(index,Qt::DisplayRole)
	.toString().prepend("\\");
	while(this->p_reg_node_tree_model->parent(index)!=QModelIndex()) {
	// Prepend all parent nodes
	index=this->p_reg_node_tree_model->parent(index);
	node_path.prepend(this->p_reg_node_tree_model->data(index,Qt::DisplayRole)
	.toString().prepend("\\"));
	}

	// Create table model and attach it to the table view
	if(this->p_reg_key_table_model!=NULL) {
	this->p_key_table->setModel(NULL);
	delete this->p_reg_key_table_model;
	this->p_hex_edit->setData(QByteArray());
	this->p_hex_edit_status_bar->setText("");
	this->p_data_interpreter->ClearValues();
	}
	this->p_reg_key_table_model=new RegistryKeyTableModel(this->p_hive,node_path);
	this->p_key_table->setModel(this->p_reg_key_table_model);
	}

	void MainWindow::SlotKeyTableDoubleClicked(QModelIndex index) {
	Q_UNUSED(index);
	/*
	QModelIndex key_index;
	QModelIndex node_index;
	QStringList nodes;

	QString key_name;
	QString key_type;
	QByteArray key_value;

	if(!index.isValid()) return;

	// Get key name, type and value
	key_index=this->p_reg_key_table_model->index(index.row(),0);
	key_name=this->p_reg_key_table_model->data(key_index,Qt::DisplayRole)
	.toString();
	key_index=this->p_reg_key_table_model->index(index.row(),1);
	key_type=this->p_reg_key_table_model->data(key_index,Qt::DisplayRole)
	.toString();
	key_index=this->p_reg_key_table_model->index(index.row(),2);
	key_value=this->p_reg_key_table_model->data(key_index,
	RegistryKeyTableModel::
	AdditionalRoles_GetRawData)
	.toByteArray();

	// Get current node
	node_index=this->p_node_tree->currentIndex();

	//Built node path
	nodes.clear();
	nodes.append(this->p_reg_node_tree_model->
	data(node_index,Qt::DisplayRole).toString());
	while(this->p_reg_node_tree_model->parent(node_index)!=QModelIndex()) {
	// Prepend all parent nodes
	node_index=this->p_reg_node_tree_model->parent(node_index);
	nodes.prepend(this->p_reg_node_tree_model->
	data(node_index,Qt::DisplayRole).toString());
	}

	DlgKeyDetails dlg_key_details(this);
	dlg_key_details.SetValues(nodes,key_name,key_type,key_value);
	dlg_key_details.exec();
	*/
	}

	void MainWindow::SlotKeyTableClicked(QModelIndex index) {
	if(!index.isValid()) return;

	this->selected_key_value=
	this->p_reg_key_table_model->data(this->p_reg_key_table_model->
	index(index.row(),2),
	RegistryKeyTableModel::
	AdditionalRoles_GetRawData)
	.toByteArray();
	this->p_hex_edit->setData(this->selected_key_value);
	}

	void MainWindow::SlotHexEditAddressChanged(int hex_offset) {
	if(!this->is_hive_open \|\| this->selected_key_value.isEmpty()) return;

	// Update hex edit status bar
	this->p_hex_edit_status_bar->
	setText(QString().sprintf("Byte offset: 0x%04X (%u)",hex_offset,hex_offset));
	// Update data interpreter
	this->UpdateDataInterpreter(hex_offset);
	}

	void MainWindow::SlotReportClicked() {
	// Get report category and name from sender and it's parent
	QString category=((QMenu)((QAction)QObject::sender())->parent())->title();
	QString report=((QAction*)QObject::sender())->text();

	// Generate report
	QString report_content=this->p_data_reporter->GenerateReport(this->p_hive,
	category,
	report);

	// Show result in report viewer
	if(report_content!=QString()) {
	DlgReportViewer *p_dlg_report_view=new DlgReportViewer(report_content,this);
	p_dlg_report_view->exec();
	delete p_dlg_report_view;
	} else {
	// TODO: Something went wrong!
	}
	}

	void MainWindow::CheckUserConfigDir() {
	QString user_config_dir=QDir::homePath()
	.append(QDir::separator())
	.append(".fred");
	if(!QDir(user_config_dir).exists()) {
	// User config dir does not exists, try to create it
	if(!QDir().mkpath(user_config_dir)) {
	// TODO: Maybe warn user
	return;
	}
	user_config_dir.append(QDir::separator()).append("report_templates");
	if(!QDir().mkpath(user_config_dir)) {
	// TODO: Maybe warn user
	return;
	}
	}
	}

	void MainWindow::UpdateWindowTitle(QString filename) {
	if(filename=="") {
	this->setWindowTitle(QString().sprintf("%s v%s",APP_TITLE,APP_VERSION));
	} else {
	this->setWindowTitle(QString().sprintf("%s v%s - %s",
	APP_TITLE,
	APP_VERSION,
	filename.toLocal8Bit().constData()));
	}
	}

	void MainWindow::UpdateDataInterpreter(int hex_offset) {
	QDateTime date_time;
	const char *p_data;
	int remaining_data_len;

	// Remove all old values from data interpreter
	this->p_data_interpreter->ClearValues();

	// Calculate how many bytes are remainig after current offset
	remaining_data_len=this->selected_key_value.size()-hex_offset;
	if(!remaining_data_len>0) {
	// Nothing to show
	return;
	}

	// Get pointer to data at current offset
	p_data=this->selected_key_value.constData();
	p_data+=hex_offset;

	//#define rotl32(x,n) (((x) << n) \| ((x) >> (32 - n)))
	//#define rotr32(x,n) (((x) >> n) \| ((x) << (32 - n)))
	//#define rotl64(x,n) (((x) << n) \| ((x) >> (64 - n)))
	//#define rotr64(x,n) (((x) >> n) \| ((x) << (64 - n)))

	if(remaining_data_len>=1) {
	this->p_data_interpreter->AddValue("int8:",
	RegistryHive::KeyValueToString(
	this->selected_key_value,
	"int8",
	hex_offset));
	this->p_data_interpreter->AddValue("uint8:",
	RegistryHive::KeyValueToString(
	this->selected_key_value,
	"uint8",
	hex_offset));
	}
	if(remaining_data_len>=2) {
	this->p_data_interpreter->AddValue("int16:",
	RegistryHive::KeyValueToString(
	this->selected_key_value,
	"int16",
	hex_offset));
	this->p_data_interpreter->AddValue("uint16:",
	RegistryHive::KeyValueToString(
	this->selected_key_value,
	"uint16",
	hex_offset));
	}
	if(remaining_data_len>=4) {
	this->p_data_interpreter->AddValue("int32:",
	RegistryHive::KeyValueToString(
	this->selected_key_value,
	"int32",
	hex_offset));
	this->p_data_interpreter->AddValue("uint32:",
	RegistryHive::KeyValueToString(
	this->selected_key_value,
	"uint32",
	hex_offset));
	this->p_data_interpreter->AddValue("unixtime:",
	RegistryHive::KeyValueToString(
	this->selected_key_value,
	"unixtime",
	hex_offset));
	}
	if(remaining_data_len>=8) {
	this->p_data_interpreter->AddValue("int64:",
	RegistryHive::KeyValueToString(
	this->selected_key_value,
	"int64",
	hex_offset));
	this->p_data_interpreter->AddValue("uint64:",
	RegistryHive::KeyValueToString(
	this->selected_key_value,
	"uint64",
	hex_offset));
	this->p_data_interpreter->AddValue("filetime64:",
	RegistryHive::KeyValueToString(
	this->selected_key_value,
	"filetime",
	hex_offset));
	}

	//#undef rotl32
	//#undef rotl64
	}

	void MainWindow::UpdateDataReporterMenu() {
	int i=0,ii=0;
	QMenu *p_category_entry;
	QAction *p_report_entry;

	QStringList categories=this->p_data_reporter->GetAvailableReportCategories();
	QStringList reports;

	for(i=0;i<categories.count();i++) {
	// First create category submenu
	p_category_entry=this->ui->MenuReports->addMenu(categories.value(i));
	// Now add category reports
	reports=this->p_data_reporter->GetAvailableReports(categories.value(i));
	for(ii=0;ii<reports.count();ii++) {
	p_report_entry=new QAction(reports.value(ii),p_category_entry);
	p_category_entry->addAction(p_report_entry);
	this->connect(p_report_entry,
	SIGNAL(triggered()),
	this,
	SLOT(SlotReportClicked()));
	}
	}
	}

	void MainWindow::OpenHive(QString hive_file) {
	// Update last open location
	this->last_open_location=hive_file.left(hive_file.
	lastIndexOf(QDir::separator()));

	// If another hive is currently open, close it
	if(this->is_hive_open) this->on_action_Close_hive_triggered();

	// Try to open hive
	if(!this->p_hive->Open(hive_file)) {
	QMessageBox::critical(this,
	tr("Error opening hive file"),
	tr("Unable to open file '%1'").arg(hive_file));
	return;
	}

	// Create tree model
	this->p_reg_node_tree_model=
	new RegistryNodeTreeModel(this->p_hive);
	this->p_node_tree->setModel(this->p_reg_node_tree_model);

	this->is_hive_open=true;
	this->ui->action_Close_hive->setEnabled(true);
	+ this->ui->ActionSearch->setEnabled(true);
	this->ui->MenuReports->setEnabled(true);
	this->UpdateWindowTitle(hive_file);
	}

	void MainWindow::ParseCommandLineArgs() {
	QStringList args=qApp->arguments();

	// If exactly 1 argument was specified, it should be a hive to open
	if(args.count()==2) {
	this->OpenHive(args.at(1));
	}
	}
	+
	+void MainWindow::on_ActionSearch_triggered() {
	+ DlgSearch dlg_search(this);
	+ if(dlg_search.exec()==QDialog::Accepted) {
	+ // TODO: Search
	+ }
	+}
	diff --git a/trunk/mainwindow.h b/trunk/mainwindow.h
	index f2b0c4b..33fb797 100644
	--- a/trunk/mainwindow.h
	+++ b/trunk/mainwindow.h
	@@ -1,121 +1,132 @@
	/*******************************************************************************
	* fred Copyright (c) 2011 by Gillen Daniel <gillen.dan@pinguin.lu> *
	* *
	* Forensic Registry EDitor (fred) is a cross-platform M$ registry hive editor *
	* with special feautures useful during forensic analysis. *
	* *
	* This program is free software: you can redistribute it and/or modify it *
	* under the terms of the GNU General Public License as published by the Free *
	* Software Foundation, either version 3 of the License, or (at your option) *
	* any later version. *
	* *
	* This program is distributed in the hope that it will be useful, but WITHOUT *
	* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or *
	* FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for *
	* more details. *
	* *
	* You should have received a copy of the GNU General Public License along with *
	* this program. If not, see <http://www.gnu.org/licenses/>. *
	*******************************************************************************/

	#ifndef MAINWINDOW_H
	#define MAINWINDOW_H

	#include <QMainWindow>
	+#include <QWidget>
	+#include <QLabel>
	+#include <QTabWidget>
	+#include <QVBoxLayout>
	+#include <QSplitter>
	+
	+#include <QString>
	+#include <QByteArray>

	#include <hivex.h>

	#include "registryhive.h"
	#include "registrynodetree.h"
	#include "registrynodetreemodel.h"
	#include "registrykeytable.h"
	#include "registrykeytablemodel.h"
	#include "qhexedit/qhexedit.h"
	#include "datainterpreter.h"
	#include "datareporter.h"

	namespace Ui {
	class MainWindow;
	}

	class MainWindow : public QMainWindow {
	Q_OBJECT

	public:
	explicit MainWindow(QWidget *parent = 0);
	~MainWindow();

	private slots:
	void on_action_Quit_triggered();
	void on_action_Open_hive_triggered();
	void on_action_Close_hive_triggered();
	void on_actionAbout_Qt_triggered();
	void on_actionAbout_fred_triggered();

	void SlotNodeTreeClicked(QModelIndex index);
	void SlotKeyTableClicked(QModelIndex index);
	void SlotKeyTableDoubleClicked(QModelIndex index);
	void SlotHexEditAddressChanged(int hex_offset);
	void SlotReportClicked();

	+ void on_ActionSearch_triggered();
	+
	private:
	Ui::MainWindow *ui;
	QString last_open_location;
	RegistryHive *p_hive;
	bool is_hive_open;
	RegistryNodeTreeModel *p_reg_node_tree_model;
	RegistryKeyTableModel *p_reg_key_table_model;
	QByteArray selected_key_value;

	// Widgets etc...
	RegistryNodeTree *p_node_tree;
	RegistryKeyTable *p_key_table;
	+ QTabWidget *p_tab_widget;
	QWidget *p_hex_edit_widget;
	QHexEdit *p_hex_edit;
	QLabel *p_hex_edit_status_bar;
	DataInterpreter *p_data_interpreter;
	QVBoxLayout *p_hex_edit_layout;
	QSplitter *p_horizontal_splitter;
	QSplitter *p_horizontal_splitter2;
	QSplitter *p_vertical_splitter;

	DataReporter *p_data_reporter;

	/*
	* CheckUserConfigDir
	*
	* Checks for and possibly creates the ~/.fred directory
	*/
	void CheckUserConfigDir();
	/*
	* UpdateWindowTitle
	*
	* Updates the window title
	*/
	void UpdateWindowTitle(QString filename="");
	/*
	* UpdateDataInterpreter
	*
	* Update data interpreter
	*/
	void UpdateDataInterpreter(int hex_offset);
	/*
	* UpdateDataReporterMenu
	*
	*/
	void UpdateDataReporterMenu();
	/*
	* OpenHive
	*
	* Open a registry hive
	*/
	void OpenHive(QString hive_file);
	/*
	* ParseCommandLineArgs
	*
	* Parse command line arguments
	*/
	void ParseCommandLineArgs();
	};

	#endif // MAINWINDOW_H
	diff --git a/trunk/mainwindow.ui b/trunk/mainwindow.ui
	index 052d89e..efab884 100644
	--- a/trunk/mainwindow.ui
	+++ b/trunk/mainwindow.ui
	@@ -1,105 +1,130 @@
	<?xml version="1.0" encoding="UTF-8"?>
	<ui version="4.0">
	<class>MainWindow</class>
	<widget class="QMainWindow" name="MainWindow">
	<property name="geometry">
	<rect>
	<x>0</x>
	<y>0</y>
	<width>508</width>
	<height>317</height>
	</rect>
	</property>
	<property name="minimumSize">
	<size>
	<width>0</width>
	<height>0</height>
	</size>
	</property>
	<property name="baseSize">
	<size>
	<width>0</width>
	<height>0</height>
	</size>
	</property>
	<property name="windowTitle">
	<string>MainWindow</string>
	</property>
	<property name="windowIcon">
	<iconset resource="fred.qrc">
	<normaloff>:/icons/resources/fred.png</normaloff>:/icons/resources/fred.png</iconset>
	</property>
	<widget class="QWidget" name="MainWidget"/>
	<widget class="QMenuBar" name="menuBar">
	<property name="geometry">
	<rect>
	<x>0</x>
	<y>0</y>
	<width>508</width>
	<height>25</height>
	</rect>
	</property>
	<widget class="QMenu" name="MenuFile">
	<property name="title">
	<string>&File</string>
	</property>
	<addaction name="action_Open_hive"/>
	<addaction name="action_Close_hive"/>
	<addaction name="separator"/>
	<addaction name="action_Quit"/>
	</widget>
	<widget class="QMenu" name="MenuHelp">
	<property name="title">
	<string>&Help</string>
	</property>
	<addaction name="actionAbout_Qt"/>
	<addaction name="actionAbout_fred"/>
	</widget>
	<widget class="QMenu" name="MenuReports">
	<property name="enabled">
	<bool>false</bool>
	</property>
	<property name="title">
	<string>&Reports</string>
	</property>
	</widget>
	+ <widget class="QMenu" name="MenuEdit">
	+ <property name="title">
	+ <string>&Edit</string>
	+ </property>
	+ <addaction name="ActionSearch"/>
	+ <addaction name="separator"/>
	+ <addaction name="ActionPreferences"/>
	+ </widget>
	<addaction name="MenuFile"/>
	+ <addaction name="MenuEdit"/>
	<addaction name="MenuReports"/>
	<addaction name="MenuHelp"/>
	</widget>
	<widget class="QStatusBar" name="StatusBar"/>
	<action name="action_Open_hive">
	<property name="text">
	<string>&Open hive</string>
	</property>
	</action>
	<action name="action_Close_hive">
	<property name="enabled">
	<bool>false</bool>
	</property>
	<property name="text">
	<string>&Close hive</string>
	</property>
	</action>
	<action name="action_Quit">
	<property name="text">
	<string>&Quit</string>
	</property>
	</action>
	<action name="actionAbout_Qt">
	<property name="text">
	<string>About Qt</string>
	</property>
	</action>
	<action name="actionAbout_fred">
	<property name="text">
	<string>About fred</string>
	</property>
	</action>
	+ <action name="ActionSearch">
	+ <property name="enabled">
	+ <bool>false</bool>
	+ </property>
	+ <property name="text">
	+ <string>&Search</string>
	+ </property>
	+ </action>
	+ <action name="ActionPreferences">
	+ <property name="enabled">
	+ <bool>false</bool>
	+ </property>
	+ <property name="text">
	+ <string>&Preferences</string>
	+ </property>
	+ </action>
	</widget>
	<layoutdefault spacing="6" margin="11"/>
	<resources>
	<include location="fred.qrc"/>
	</resources>
	<connections/>
	</ui>
	diff --git a/trunk/registrykeytable.cpp b/trunk/registrykeytable.cpp
	index 6fc383a..088a58f 100644
	--- a/trunk/registrykeytable.cpp
	+++ b/trunk/registrykeytable.cpp
	@@ -1,37 +1,57 @@
	+/*******************************************************************************
	+* fred Copyright (c) 2011 by Gillen Daniel <gillen.dan@pinguin.lu> *
	+* *
	+* Forensic Registry EDitor (fred) is a cross-platform M$ registry hive editor *
	+* with special feautures useful during forensic analysis. *
	+* *
	+* This program is free software: you can redistribute it and/or modify it *
	+* under the terms of the GNU General Public License as published by the Free *
	+* Software Foundation, either version 3 of the License, or (at your option) *
	+* any later version. *
	+* *
	+* This program is distributed in the hope that it will be useful, but WITHOUT *
	+* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or *
	+* FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for *
	+* more details. *
	+* *
	+* You should have received a copy of the GNU General Public License along with *
	+* this program. If not, see <http://www.gnu.org/licenses/>. *
	+*******************************************************************************/
	+
	#include "registrykeytable.h"

	#include <QHeaderView>

	RegistryKeyTable::RegistryKeyTable(QWidget *p_parent) : QTableView(p_parent) {
	// Configure widget
	this->setSelectionMode(QAbstractItemView::SingleSelection);
	this->setSelectionBehavior(QAbstractItemView::SelectRows);
	this->setHorizontalScrollMode(QAbstractItemView::ScrollPerPixel);
	}

	void RegistryKeyTable::setModel(QAbstractItemModel *p_model) {
	QTableView::setModel(p_model);
	// Resize table rows / columns to fit data
	this->resizeColumnsToContents();
	this->horizontalHeader()->stretchLastSection();
	}

	int RegistryKeyTable::sizeHintForColumn(int column) const {
	int size_hint=-1;
	int i=0;
	int item_width=0;
	QFontMetrics fm(this->fontMetrics());
	QModelIndex idx;

	if(this->model()==NULL) return -1;

	// Find string that needs the most amount of space
	idx=this->model()->index(i,column);
	while(idx.isValid()) {
	item_width=fm.width(this->model()->data(idx).toString())+10;
	if(item_width>size_hint) size_hint=item_width;
	idx=this->model()->index(++i,column);
	}

	return size_hint;
	}
	diff --git a/trunk/registrykeytable.h b/trunk/registrykeytable.h
	index b565a7a..19511c3 100644
	--- a/trunk/registrykeytable.h
	+++ b/trunk/registrykeytable.h
	@@ -1,18 +1,38 @@
	+/*******************************************************************************
	+* fred Copyright (c) 2011 by Gillen Daniel <gillen.dan@pinguin.lu> *
	+* *
	+* Forensic Registry EDitor (fred) is a cross-platform M$ registry hive editor *
	+* with special feautures useful during forensic analysis. *
	+* *
	+* This program is free software: you can redistribute it and/or modify it *
	+* under the terms of the GNU General Public License as published by the Free *
	+* Software Foundation, either version 3 of the License, or (at your option) *
	+* any later version. *
	+* *
	+* This program is distributed in the hope that it will be useful, but WITHOUT *
	+* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or *
	+* FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for *
	+* more details. *
	+* *
	+* You should have received a copy of the GNU General Public License along with *
	+* this program. If not, see <http://www.gnu.org/licenses/>. *
	+*******************************************************************************/
	+
	#ifndef REGISTRYKEYTABLE_H
	#define REGISTRYKEYTABLE_H

	#include <QTableView>

	class RegistryKeyTable : public QTableView {
	Q_OBJECT

	public:
	RegistryKeyTable(QWidget *p_parent=0);

	void setModel(QAbstractItemModel *p_model);

	protected:
	int sizeHintForColumn(int column) const;
	};

	#endif // REGISTRYKEYTABLE_H
	diff --git a/trunk/registrynodetree.cpp b/trunk/registrynodetree.cpp
	index f9ba344..ecdcef6 100644
	--- a/trunk/registrynodetree.cpp
	+++ b/trunk/registrynodetree.cpp
	@@ -1,16 +1,36 @@
	+/*******************************************************************************
	+* fred Copyright (c) 2011 by Gillen Daniel <gillen.dan@pinguin.lu> *
	+* *
	+* Forensic Registry EDitor (fred) is a cross-platform M$ registry hive editor *
	+* with special feautures useful during forensic analysis. *
	+* *
	+* This program is free software: you can redistribute it and/or modify it *
	+* under the terms of the GNU General Public License as published by the Free *
	+* Software Foundation, either version 3 of the License, or (at your option) *
	+* any later version. *
	+* *
	+* This program is distributed in the hope that it will be useful, but WITHOUT *
	+* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or *
	+* FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for *
	+* more details. *
	+* *
	+* You should have received a copy of the GNU General Public License along with *
	+* this program. If not, see <http://www.gnu.org/licenses/>. *
	+*******************************************************************************/
	+
	#include "registrynodetree.h"

	#include <QHeaderView>

	RegistryNodeTree::RegistryNodeTree(QWidget *p_parent) : QTreeView(p_parent) {
	// Configure widget
	this->setTextElideMode(Qt::ElideNone);
	}

	void RegistryNodeTree::setModel(QAbstractItemModel *p_model) {
	QTreeView::setModel(p_model);
	this->header()->setResizeMode(0,QHeaderView::ResizeToContents);
	this->header()->setStretchLastSection(false);
	}

	//int RegistryNodeTree::sizeHintForColumn(int column) const {}
	diff --git a/trunk/registrynodetree.h b/trunk/registrynodetree.h
	index 93326a4..e220f02 100644
	--- a/trunk/registrynodetree.h
	+++ b/trunk/registrynodetree.h
	@@ -1,19 +1,39 @@
	+/*******************************************************************************
	+* fred Copyright (c) 2011 by Gillen Daniel <gillen.dan@pinguin.lu> *
	+* *
	+* Forensic Registry EDitor (fred) is a cross-platform M$ registry hive editor *
	+* with special feautures useful during forensic analysis. *
	+* *
	+* This program is free software: you can redistribute it and/or modify it *
	+* under the terms of the GNU General Public License as published by the Free *
	+* Software Foundation, either version 3 of the License, or (at your option) *
	+* any later version. *
	+* *
	+* This program is distributed in the hope that it will be useful, but WITHOUT *
	+* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or *
	+* FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for *
	+* more details. *
	+* *
	+* You should have received a copy of the GNU General Public License along with *
	+* this program. If not, see <http://www.gnu.org/licenses/>. *
	+*******************************************************************************/
	+
	#ifndef REGISTRYNODETREE_H
	#define REGISTRYNODETREE_H

	#include <QTreeView>
	#include <QAbstractItemModel>

	class RegistryNodeTree : public QTreeView {
	Q_OBJECT

	public:
	RegistryNodeTree(QWidget *p_parent=0);

	void setModel(QAbstractItemModel *p_model);

	//protected:
	// int sizeHintForColumn(int column) const;
	};

	#endif // REGISTRYNODETREE_H
	diff --git a/trunk/resources/fred.gif b/trunk/resources/fred.gif
	new file mode 100644
	index 0000000..217409e
	Binary files /dev/null and b/trunk/resources/fred.gif differ
	diff --git a/trunk/screenshots/fred_DecodingLastLogin.png b/trunk/screenshots/fred_DecodingLastLogin.png
	new file mode 100644
	index 0000000..7011398
	Binary files /dev/null and b/trunk/screenshots/fred_DecodingLastLogin.png differ
	diff --git a/trunk/screenshots/fred_UserReport.png b/trunk/screenshots/fred_UserReport.png
	new file mode 100644
	index 0000000..1abd957
	Binary files /dev/null and b/trunk/screenshots/fred_UserReport.png differ
	diff --git a/trunk/screenshots/fred_WindowsVersionReport.png b/trunk/screenshots/fred_WindowsVersionReport.png
	new file mode 100644
	index 0000000..2435bac
	Binary files /dev/null and b/trunk/screenshots/fred_WindowsVersionReport.png differ
	diff --git a/trunk/threadsearch.cpp b/trunk/threadsearch.cpp
	new file mode 100644
	index 0000000..72e499e
	--- /dev/null
	+++ b/trunk/threadsearch.cpp
	@@ -0,0 +1,27 @@
	+/*******************************************************************************
	+* fred Copyright (c) 2011 by Gillen Daniel <gillen.dan@pinguin.lu> *
	+* *
	+* Forensic Registry EDitor (fred) is a cross-platform M$ registry hive editor *
	+* with special feautures useful during forensic analysis. *
	+* *
	+* This program is free software: you can redistribute it and/or modify it *
	+* under the terms of the GNU General Public License as published by the Free *
	+* Software Foundation, either version 3 of the License, or (at your option) *
	+* any later version. *
	+* *
	+* This program is distributed in the hope that it will be useful, but WITHOUT *
	+* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or *
	+* FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for *
	+* more details. *
	+* *
	+* You should have received a copy of the GNU General Public License along with *
	+* this program. If not, see <http://www.gnu.org/licenses/>. *
	+*******************************************************************************/
	+
	+#include "threadsearch.h"
	+
	+ThreadSearch::ThreadSearch(QObject *p_parent) : QThread(p_parent) {
	+}
	+
	+void ThreadSearch::run() {
	+}
	diff --git a/trunk/threadsearch.h b/trunk/threadsearch.h
	new file mode 100644
	index 0000000..0e314ef
	--- /dev/null
	+++ b/trunk/threadsearch.h
	@@ -0,0 +1,37 @@
	+/*******************************************************************************
	+* fred Copyright (c) 2011 by Gillen Daniel <gillen.dan@pinguin.lu> *
	+* *
	+* Forensic Registry EDitor (fred) is a cross-platform M$ registry hive editor *
	+* with special feautures useful during forensic analysis. *
	+* *
	+* This program is free software: you can redistribute it and/or modify it *
	+* under the terms of the GNU General Public License as published by the Free *
	+* Software Foundation, either version 3 of the License, or (at your option) *
	+* any later version. *
	+* *
	+* This program is distributed in the hope that it will be useful, but WITHOUT *
	+* ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or *
	+* FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for *
	+* more details. *
	+* *
	+* You should have received a copy of the GNU General Public License along with *
	+* this program. If not, see <http://www.gnu.org/licenses/>. *
	+*******************************************************************************/
	+
	+#ifndef THREADSEARCH_H
	+#define THREADSEARCH_H
	+
	+#include <QThread>
	+#include <QObject>
	+
	+class ThreadSearch : public QThread {
	+ Q_OBJECT
	+
	+ public:
	+ ThreadSearch(QObject *p_parent=0);
	+
	+ protected:
	+ void run();
	+};
	+
	+#endif // THREADSEARCH_H

File Metadata

Mime Type: text/x-diff
Expires: Fri, Nov 21, 4:49 AM (1 d, 10 h)
Storage Engine: blob
Storage Format: Raw Data
Storage Handle: 1360881
Default Alt Text: (61 KB)

No OneTemporaryActions

View Options

File Metadata

Event Timeline

No OneTemporary
Actions