Linux Forensics Tools Repository: All Announcements

Training CERT Training Courses Incident Handling Certification
Remote Training & Resources Virtual Training Environment Survivability & Information Assurance Curriculum

Publications Catalog Historical Documents CSIRT Development Information CMU Master of Information Systems Management CMU Heinz College SEI Public Courses SEI Credentials Program

Linux Forensics Tools Repository: Announcements

August 24, 2009: The following tools have been added to the Fedora 11 version of the cert repository:

hal-no-no-ignore-0.5.12-29.20090226git.fc11.i386.rpm - This package causes the Hardware Abstraction Layer (hal) to not ignore various file system types (ntfs, vfat) that are normally ignored by default. See the documentation on hal.

July 10, 2009: Fedora 11 is now supported by the repository.

June 2, 2009: The following tools have been repaired and installed in the Fedora 8, 9, 10 repositories:

Volatility-1.1.2-2.fc10.i386.rpm - Missing files were added and the command language interpreter, python in this case, was correctly referenced.

May 26, 2009: The following tools have been added to the Fedora 8, 9, 10 version of the splunk repository:

splunk-3.4.9-57762.i386.rpm - Splunk, version 3.4.9, build 57762. See the release notes here.

April 28, 2009: The following tools have been added to the Fedora 10 version of the cert-test repository:

libewf-devel-static-20080501-3.fc10.i386.rpm - A static version of the libewf libraries. These libararies are needed to build PyFlag.

pyflag-0.87.pre1-7.i386.rpm - The Python-based Forensic and Log Analysis (FLAG) GUI.

April 23, 2009: The following tools have been added to the Fedora 10 version of the cert-test repository:

python-urwid-0.9.8.4-1.noarch.rpm - Python library for making text console applications. This is needed to build PyFlag.

April 15, 2009: The following tools have been added to the Fedora 10 version of the cert-test repository:

sfdumper-1.6-1.fc10.noarch.rpm - A Selective File Dumper build on top of the Sleuthkit

April 14, 2009: The following tools have been added to the Fedora 10 version of the cert-test repository:

guymager-0.3.1-2.fc10.i386.rpm - A GUI imager

libguytools-1.0.4-1.fc10.i386.rpm - Libraries for guymager

gtkhash-0.2.1-1.fc10.i386.rpm - A GUI front-end for hashing

fundl-1.0-1.fc10.noarch.rpm - A File UNDeLtion script

April 14, 2009: A tool test entry has been made in the Fedora 10 version of the /etc/yum.repos.d/cert-forensics-tools.repo repository definitions file. This lets us provide tools for testing purposes. The test entry needs to be enabled by editing the cert-forensics-tools.repo file and setting enabled to the value 1 as in enabled=1.

Last updated: July 10, 2009