LiFTeR: Changes for May 6, 2021
- libfsntfs{,-devel,-python3}-20210503-2.{fc31,fc32,fc33,fc34,el8}.x86_64.rpm and libfsntfs{,-devel,-python36}-20210503-2.el7.x86_64.rpm -
Libfsntfs contains library and tools to access the New Technology File System (NTFS).
- libcreg{,-devel,-python2,-python3,-tools}-20210502-2.{fc31,fc32,fc33,fc34,el8}.x86_64.rpm and libcreg{,-devel,-python36,-tools}-20210502-2.el7.x86_64.rpm -
Libcreg is a library and tools to access the Windows 9x/Me Registry File (CREG) format.
The previous release was buit with the wrong source file.
- libmodi{,-devel,-python3,-tools}-20210501-2.{fc31,fc32,fc33,fc34,el8}.x86_64.rpm and libmodi{,-devel,-python36,-tools}-20210501-2.el7.x86_64.rpm -
Libmodi is a library and tools to access the Mac OS disk image formats.
The previous release was buit with the wrong source file.
- python3-dfvfs-20210501-2.{fc31,fc32,fc33,fc34,el8}.noarch.rpm and python36-dfvfs-20210501-2.el7.noarch.rpm -
dfVFS, the Digital Forensics Virtual File System, provides read-only access to file-system objects from various storage media types and file formats.
The previous release was buit with the wrong source file.
- daq{,-devel,-modules}-3.0.3-1.{fc31,fc32,fc33,fc34,el8}.x86_64.rpm -
The Data Acquisition Library (Daq) is a library used by snort.
Note that these packages have been installed in the forensics-test repository.
- snort-3.1.4.0-1.{fc31,fc32,fc33,fc34,el8}.x86_64.rpm -
Snort is an open source network intrusion detection system, capable of performing real-time traffic analysis and packet logging on IP networks.
It can perform protocol analysis, content searching/matching and can be used to detect a variety of attacks and probes, such as buffer overflows,
stealth port scans, CGI attacks, SMB probes, OS fingerprinting attempts, and much more.
See here for the announcement.
Note that these packages have been installed in the forensics-test repository.
- libfsext{,-devel,-python3,-tools}-20210504-1.{fc31,fc32,fc33,fc34,el8}.x86_64.rpm and libfsext{,-devel,-python36,-tools}-20210504-1.el7.x86_64.rpm -
Libfsext is a library and tools to access the Extended File System (EXT).
- libewf-experimental{,-devel,-tools,-python3,-tools}-20210426-1.{fc31,fc32,fc33,fc34,el8}.x86_64.rpm and libewf-experimental{,-devel,-tools,-python36,-tools}-2,fc340201230-1.el7.x86_64.rpm -
Libewf supports Expert Witness Compression Format (EWF) formatted files.
See this page for the list of supported and unsupported formats.
Libewf-Experimental installs packages in /usr/local so that it can be optionally installed along with the conventional Libewf packages, where package contents are installed in /usr. Further, the Libewf-Experimental packages have been installed in the forensics-test repository. You will need to enable this repository with this command for Fedora or CentOS/RHEL 8:
sudo dnf config-manager --set-enabled forensics-test
or this command for CentOS/RHEL 7:
sudo yum-config-manager --enable forensics-test
- python2-yara-4.1.0-2.{fc31,fc32,fc33,el8}.x86_64.rpm -
Python-yara is a Python extension that gives access to Yara's powerful features from Python scripts.
This package was rebuilt due to the releases of Yara 4.1.0 for Fedora 34.
- fmem-kernel-modules-fc34-x86_64-1.6-1.2.noarch.rpm -
Support for the following kernels were added for Fmem:
- 5.11.17-300 for FC34
- lime-kernel-modules-fc34-x86_64-1.9.1-2.noarch.rpm -
Support for the following kernels were added for LiME:
- 5.11.17-300 for FC34
- fmem-kernel-modules-fc33-x86_64-1.6-1.23.noarch.rpm -
Support for the following kernels were added for Fmem:
- 5.11.17-200 for FC33
- lime-kernel-modules-fc33-x86_64-1.9.1-23.noarch.rpm -
Support for the following kernels were added for LiME:
- 5.11.17-200 for FC33
- fmem-kernel-modules-fc32-x86_64-1.6-1.44.noarch.rpm -
Support for the following kernels were added for Fmem:
- 5.11.17-100 for FC32
- lime-kernel-modules-fc32-x86_64-1.9.1-44.noarch.rpm -
Support for the following kernels were added for LiME:
- 5.11.17-100 for FC32