Linux Forensics Tools Repository: Package Summary for Packages on July 2, 2014:

  • plaso-1.1.0-1.{fc17,fc18,fc19,fc20}.{i686,x86_64}.rpm, plaso-1.1.0-1.el6.x86_64.rpm - Plaso is the Python based back-end engine used by tools such as log2timeline for automatic creation of a super timelines. The goal of log2timeline (and thus plaso) is to provide a single tool that can parse various log files and forensic artifacts from computers and related systems, such as network equipment to produce a single correlated timeline. This timeline can then be easily analysed by forensic investigators/analysts, speeding up investigations by correlating the vast amount of information found on an average computer system. Go here to read about all of the changes and features in this release.
  • libevt-{,devel,python,tools}-20140531-1.(fc17,fc18,fc19,fc20,el5,el6}.{i686,x86_64}.rpm - libevt contains libraries and tools to access the Windows Event Log (EVT) format files.
  • python-construct-2.5.2-1.(fc17,fc18,fc19,fc20,el5,el6}.{i686,x86_64}.rpm - Python-construct is a powerful declarative parser (and builder) for binary data.
  • bencode-1.0-1.(fc17,fc18,fc19,fc20,el5,el6}.{i686,x86_64}.rpm - Bencode is the BitTorrent bencode module as light-weight, standalone package.
  • libesedb-{,devel,python,tools}-20140406-1.(fc17,fc18,fc19,fc20,el5,el6}.{i686,x86_64}.rpm - Libesedb contains a library and tools to access the Extensible Storage Engine (ESE) Database File (EDB) format. ESEDB is used in may different applications like Windows Search, Windows Mail, Exchange, Active Directory, etc.
  • dfvfs-20140604-1.(fc17,fc18,fc19,fc20,el6}.noarch.rpm - Dfvfs, the Digital Forensics Virtual File System, provides read-only access to file-system objects from various storage media types and file formats. The goal of dfVFS is to provide a generic interface for accessing file-system objects, for which it uses several back-ends that provide the actual implementation of the various storage media types, volume systems and file systems.
  • libvhdi{,-devel,-python,-tools}-20140330-1.(fc17,fc18,fc19,fc20,el5,el6}.{i686,x86_64}.rpm - Libvhdi is a library and tools to access the Virtual Hard Disk (VHD) image format. Note that this project has an experimental status. See here for the list of supported disk formats.
  • libvshadow{,-devel,-tools,-python}-20140323-1.{fc17,fc18,fc19,fc20,el5,el6}.{i686,x86_64}.rpm - Libvshadow is a library and tools used to support the Volume Service Snapshot (VSS) format. The VSS format is used by Windows, as of Vista, to maintain copies of data on a storage media volume. Here here the list of changes.
  • libvmdk{,-devel,-tools,-python}-20140421-1.{fc17,fc18,fc19,fc20,el5,el6}.{i686,x86_64}.rpm - Libvmdk is a library and tools used to access the VMware Virtual Disk (VMDK) image format. Here here the list of changes.
  • libsmraw{,-devel,-tools,-python}-20140621-1.{fc17,fc18,fc19,fc20,el5,el6}.{i686,x86_64}.rpm - Libsmraw is a library and tools used to read and write (split) RAW storage media bitstream copies. Libsmraw contains supports for multiple (split) RAW naming schemes. Here here the list of changes.
  • libsmdev{,-devel,-tools,-python}-20140529-1.{fc17,fc18,fc19,fc20,el5,el6}.{i686,x86_64}.rpm - Libsmdev is a library and tools used to access storage media devices. Here here the list of changes.
  • libqcow{,-devel,-tools,-python}-20140529-1.{fc17,fc18,fc19,fc20,el5,el6}.{i686,x86_64}.rpm - Libqcow is a library and tools used to access the QEMU Copy-On-Write (QCOW) image format. Here here the list of changes.
  • libewf{,-devel,-tools,-python}-20140608-2.{fc17,fc18,el5,el6}.{i686,x86_64}.rpm, libewf{-devel,-tools,-python}-20140608-2.{fc19,fc20}.{i686,x86_64}.rpm, ewftools-20140608-1.{fc19,fc20}.{i686,x86_64}.rpm - Libewf supports Expert Witness Compression Format (EWF) formatted files. It supports both the SMART (EWF-S01) and EnCase (EWF-E01) format. Note that beginning with Fedora 19, the tools package is named ewftools to reflect the package name found in those releases of Fedora. Libewf allows you to read and write EWF files. Recent versions also support the LEV (EWF-L01) format. The change from the previous release (1) is that python support has been added in package libewf-python
  • openssl{,-devel,-libs,-perl,-static}-1.0.1e-38.{fc17,fc18}.{i686,x86_64}.rpm, - OpenSSL is a collaborative effort to develop a robust, commercial-grade, full-featured, and Open Source toolkit implementing the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1) protocols as well as a full-strength general purpose cryptography library. The project is managed by a worldwide community of volunteers that use the Internet to communicate, plan, and develop the OpenSSL toolkit and its related documentation. This packages provided for Fedora 17 and 18 because those versions of Fedora are no longer maintained by RedHat and in the case of ADIA for Fedora 17, OpenSSL is used to secure the Webmin connection.
  • lime-kernel-modules-fc20-{i686,x86_64}-1.1.r17-4.noarch.rpm and
    fmem-kernel-modules-fc20-{i686,x86_64}-1.6-1.3.noarch.rpm - Support for the following kernels were added for Fmem and LiME
    • 3.14.9-200 for FC20