ntfs-read.py

impacket NTFS reader

Read NTFS file

$ ntfs-read.py [/dev/sda1] [/path/to/file]

List directory

$ ntfs-read.py [/dev/sda1] -l [/path/to/dir]

Extract file

$ ntfs-read.py [/dev/sda1] [/path/to/file] -o [output]

ntfs-read.py [options] device path

ntfs-read.py is an Impacket NTFS reader. Reads NTFS without mounting.
The tool provides raw access. Part of Impacket security toolkit.

DEVICE

NTFS partition.

PATH

Path to read.

-l

List directory.

-o FILE

Output file.

--help

Display help information.

Part of Impacket. Python script. Security research tool.

ntfs-read.py is part of Impacket, providing NTFS access for security research.