version 0.2 uploaded.
The new version still failed to save the security hive of my Win10 x64 system.
For the security hive, you need to run as system (default account under winpe but requires one extra step under windows).
I see ERUNT thus manages the same without the need to run as system : will need to work this out.
EDIT : dumpreg can now dump security.
and may be also the less important Local Service and Network Service hives ?
Will the system boot when you remove or corrupt these hives ?
It might be that a backup of these hives is needed or can be handy in some occasion ......
Why not backup components and drivers hives
I believe they are included in the system hive. Not?
Also the DumpReg software hive seems to be very small (5248 kB) as compared to the file found in config (59904 kB).
Inspection shows that a lot of keys are missing in the DumpReg software hive ......
dumpreg uses regsavekey and saves only nonvolatile keys. It does not save volatile keys.
Also, there are different format of registry (w2k, xp, not compressed, ...) so before comparing size, we would need to be sure we are comparing the same formats.
I will double check there for sure as indeed I suspect there is something wrong around the software dump (current user vs system one?).
A folder structure like being used by Registry Backup can be handy for restore of files to the right location,
which will allow in PE environment restore by simple copy of the complete folder structure.
Free choice of drive location for RegDump folder might be desired, since now it is fixed to system drive.
You might wish to save registry in folder on other drive e.g. on USB-Stick.
I am not sure I get it but now dumpreg and dumpregcmd are based against a folder to save/restore.