Linux Forensics Tools Repository: Package Summary for Packages on March 6, 2015:

  • silk-{analysis,common,devel,flowcap,rwflowappend,rwflowpack,rwpollexec,rwreceiver,rwsender}-3.10.1-1.{fc17,fc18,fc19,fc20,fc21,el5,el6,el7}.{i686,x86_64}.rpm - SiLK is the System for Internet-Level Knowledge, a collection of traffic analysis tools developed by the CERT Network Situational Awareness Team (CERT NetSA) to facilitate security analysis of large networks. See here for a list of changes in this version.
  • silk‑{analysis,common,devel,flowcap,rwflowappend,rwflowpack,rwpollexec,rwreceiver,rwsender}‑3.10.1‑2.{fc17,fc18,fc19,fc20,fc21}.{i686,x86_64}.rpm and silk‑{analysis,common,devel,flowcap,rwflowappend,rwflowpack,rwpollexec,rwreceiver,rwsender}‑3.10.1‑2.{el6,el7}.x86_64.rpm - This release of the SiLK tools can be found in an optional repository that is now part of cert-forensics-tools-release named forensics‑sip, the definition of which can be found in /etc/yum.repos.d/cert-forensics-tools.repo. This repo is diabled by default and can be enabled by running the script named /usr/bin/EnableSilkWithIPA as root.
  • libguytools-2.0.3-1.{fc17,fc18,fc19,fc20,fc21,el5,el6,el7}.{i686,x86_64}.rpm - Libguytools is a package of subroutines and header files needed to build and operate guymager. The changes are:
    • Corrected problem with trailing backslashes
    • Switched to my new developer email address (Guy Voncken )

  • guymager-0.7.4-2.{fc17,fc18,fc19,fc20,fc21,el6,el7}.{i686,x86_64}.rpm - Guymager is a forensic imaging package. This version has been rebuilt to use version 2.0.3 of libguytools.
  • dfvfs-20150303-1.(fc17,fc18,fc19,fc20,fc21,el6,el7}.noarch.rpm - dfVFS, the Digital Forensics Virtual File System, provides read-only access to file-system objects from various storage media types and file formats. The goal of dfVFS is to provide a generic interface for accessing file-system objects, for which it uses several back-ends that provide the actual implementation of the various storage media types, volume systems and file systems. See here for the list of changes.
  • emacs-gettext{,-el}-0.18.1.1-7.7.noarch.rpm, gettext{,-common-devel,-devel,-libs}-0.18.1.1-7.7.noarch.rpm - The Gettext utilities are a set of tools that provides a framework to help other GNU packages produce multi-lingual messages. These tools include a set of conventions about how programs should be written to support message catalogs, a directory and file naming organization for the message catalogs themselves, a runtime library supporting the retrieval of translated messages, and a few stand-alone programs to massage in various ways the sets of translatable strings, or already translated strings. A special GNU Emacs mode also helps interested parties in preparing these sets, or bringing them up to date. These packages have been built for CentOS/RHEL 6 in support of the libfvde packages.
  • libfvde{,-devel,-tools}-20150222-1.{fc17,fc18,fc9,fc20,fc21,el6,el7}.{i686,x86_64}.rpm - Libfvde is a lbrary and tools to access FileVault Drive Encryption (FVDE) (or FileVault2) encrypted volumes. The FVDE format is used by Mac OS X, as of Lion, to encrypt data on a storage media volume. Here are the changes from the last version (20130305):
    • 20150222
      • Code clean up
      • Worked on documenation
      • Changes for handling 0x001a metadata with different plist key sequence
    • 20150106
      • 2015 update
    • 20141226
      • changes for updated dependencies
    • 20141130
      • code clean up
    • 20141120
      • code clean up
    • 20141018
      • removed README.macosx
    • 20141017
      • changes for deployment