xplico-1.2.2-3.{fc32,fc33,fc34,el7,el8}.x86_64.rpm -
xplico is an Internet traffic decoder.
Note: due to issues related to the version of PHP, the versions for Fedora and CentOS/RHEL 8 now use a Docker container based on Ubuntu 18.04.
To used this version, run the /usr/bin/xplico script and address the issues that that script highlights.
Speifically some additional adjustments may need to be made.
Here are some of the issues:
Fedora 32: If you see the error related to CGroups, follow the steps here.
Fedora 33: If you see the error related to CGroups, follow the steps here.
Volatility3-1.2.0-1.{fc32,fc33,fc34,el7,el8}.x86_64.rpm -
Volatility 3 is a completely open collection of tools,
implemented in Python under the Volatility Software License,
for the extraction of digital artifacts from volatile memory (RAM) samples.
This release is the version of Volatility 3 which can be found here.
ghidra-10.0.2-PUBLIC_20210804.1.{fc32,fc33,fc34,el7,el8}.x86_64.rpm -
Ghidra is a software reverse engineering (SRE) framework created and maintained by the National Security Agency Research Directorate.
This framework includes a suite of full-featured, high-end software analysis tools that enable users to analyze compiled code on a variety of platforms
including Windows, macOS, and Linux. Capabilities include disassembly, assembly, decompilation, graphing, and scripting, along with hundreds of other features.
Ghidra supports a wide variety of processor instruction sets and executable formats and can be run in both user-interactive and automated modes.
Users may also develop their own Ghidra plug-in components and/or scripts using Java or Python.
See the list of changes and improvements
here.
python2-yara-4.1.2-1.{fc32,fc33,fc34,el8}.x86_64.rpm -
Python-yara is a Python extension that gives access to Yara's powerful features from Python scripts.
pfring-8.0.0-6835.{el7,el8}.x86_64.rpm -
PF_Ring is a new type of network socket that dramatically improves the packet capture speed.
This package contains header files and libraries, among other files, to support the PF_Ring network socket.
Here is the announcement of PF_Ring 7.8.
pfring-dkms-8.0.0.6835-6835.{el7,el8}.noarch.rpm -
PF_Ring is a new type of network socket that dramatically improves the packet capture speed.
This package conains the code and supporting files needed to create the PF_Ring kernel module.
ndpi-4.0.0-3305.{el7,el8}.x86_64.rpm -
ndpi is an open source LGPLv3 library for deep-packet inspection.
fmem-kernel-modules-fc34-x86_64-1.6-1.17.noarch.rpm -
Support for the following kernels were added for Fmem:
5.13.12-200 for FC34
lime-kernel-modules-fc34-x86_64-1.9.1-17.noarch.rpm -
Support for the following kernels were added for LiME:
5.13.12-200 for FC34
fmem-kernel-modules-fc33-x86_64-1.6-1.38.noarch.rpm -
Support for the following kernels were added for Fmem:
5.13.12-100 for FC33
lime-kernel-modules-fc33-x86_64-1.9.1-38.noarch.rpm -
Support for the following kernels were added for LiME:
5.13.12-100 for FC33
fmem-kernel-modules-el8-x86_64-1.6-1.24.noarch.rpm -
Support for the following kernels were added for Fmem:
4.18.0-331 for EL8
4.18.0-305.12.1 for EL8
lime-kernel-modules-el8-x86_64-1.9.1-24.noarch.rpm -
Support for the following kernels were added for LiME: