silk-{analysis,common,devel,flowcap,rwflowappend,rwflowpack,rwpollexec,rwreceiver,rwsender}-3.19.1-5.{fc32,fc33,fc34,el7,el8}.x86_64.rpm -
SiLK is the System for Internet-Level Knowledge, a collection of
traffic analysis tools developed by the CERT Network Situational Awareness Team (CERT NetSA) to facilitate security analysis of large networks.
This package was rebuilt to use Python 3 instead of Python 2.
silk-{analysis,common,devel,flowcap,rwflowappend,rwflowpack,rwpollexec,rwreceiver,rwsender}-3.19.1-6.{fc32,fc33,fc34,el7,el8}.x86_64.rpm -
This release of the SiLK tools can be found in an optional repository that is now part of
cert-forensics-tools-release named forensics-sip, the definition of which can be found in /etc/yum.repos.d/cert-forensics-tools.repo.
This repository is diabled by default and can be enabled by running the script named /usr/bin/EnableSilkWithIPA as root.
This package was rebuilt to use Python 3 instead of Python 2.
python3-artifacts-20211012-1.{fc32,fc33,fc34,el8}.x86_64.rpm, python36-artifacts-20211012-1.el7.x86_64.rpm, and artifacts-data-20211003-1.{fc32,fc33,fc34,el7,el8}.x86_64.rpm -
Artifacts is a free, community-sourced,
machine-readable knowledge base of digital forensic artifacts that the world can use both as an information source and within other tools.
python3-certifi-2021.10.8-1.{fc31,fc32,fc33,el8}.noarch.rpm and python36-certifi-2021.10.8-1.el7.noarch.rpm -
Certifi is a carefully curated collection of Root Certificates for validating the trustworthiness of SSL certificates while verifying the identity of TLS hosts.
analyzeMFT-3.0.0-1.{fc32,fc33,fc34,el7,el8}.{i686,x86_64}.rpm -
AnalyzeMFT is a tool that fully parses
the MFT file from an NTFS filesystem and present the results as accurately as possible in multiple formats.
See here for the changes since the previously installed version 2.0.19.1.
Note: This version uses Python 3.
python3-idna-3.3-1.el8.noarch.rpm and python36-idna-3.3-1.el7.noarch.rpm -
IDNA provides support for the Internationalised Domain Names in Applications (IDNA) protocol as specified in RFC 5891.
pfring-8.0.0-7003.{el7,el8}.x86_64.rpm -
PF_Ring is a new type of network socket that dramatically improves the packet capture speed.
This package contains header files and libraries, among other files, to support the PF_Ring network socket.
Here is the announcement of PF_Ring 7.8.
pfring-dkms-8.0.0.7003-7003.{el7,el8}.noarch.rpm -
PF_Ring is a new type of network socket that dramatically improves the packet capture speed.
This package conains the code and supporting files needed to create the PF_Ring kernel module.
ndpi-4.0.0-3370.{el7,el8}.x86_64.rpm -
ndpi is an open source LGPLv3 library for deep-packet inspection.
fmem-kernel-modules-fc34-x86_64-1.6-1.22.noarch.rpm -
Support for the following kernels were added for Fmem:
5.14.10-200 for FC34
lime-kernel-modules-fc34-x86_64-1.9.1-22.noarch.rpm -
Support for the following kernels were added for LiME:
5.14.10-200 for FC34
fmem-kernel-modules-fc33-x86_64-1.6-1.42.noarch.rpm -
Support for the following kernels were added for Fmem:
5.14.10-100 for FC33
lime-kernel-modules-fc33-x86_64-1.9.1-42.noarch.rpm -
Support for the following kernels were added for LiME: