python3-elasticsearch-7.15.0-1.{fc32,fc33,fc34,el8}.x86_64.rpm and python36-elasticsearch-7.15.0-1.el7.x86_64.rpm -
ElasticSearch is the official low-level client for Elasticsearch.
Its goal is to provide common ground for all Elasticsearch-related code in Python; because of this it tries to be opinion-free and very extendable.
python3-dfvfs-202100918-1.{fc32,fc33,fc34,el8}.noarch.rpm and python36-dfvfs-202100918-1.el7.noarch.rpm -
dfVFS, the Digital Forensics Virtual File System, provides read-only access to file-system objects from various storage media types and file formats.
python3-pyxattr-0.7.2-1.{fc32,fc33,el8}.noarch.rpm and python36-pyxattr-0.7.2-1.el7.noarch.rpm -
PYXattr is a C extension module for Python which implements extended attributes manipulation. It is a wrapper on top of the attr C library - see attr(5).
Volatility3-1.2.1-1.{fc32,fc33,fc34,el7,el8}.x86_64.rpm -
Volatility 3 is a completely open collection of tools,
implemented in Python under the Volatility Software License,
for the extraction of digital artifacts from volatile memory (RAM) samples.
This release is the version of Volatility 3 which can be found here.
snort-3.1.13.0-1.{fc32,fc33,fc34,el8}.x86_64.rpm -
Snort is an open source network intrusion detection system, capable of performing real-time traffic analysis and packet logging on IP networks.
It can perform protocol analysis, content searching/matching and can be used to detect a variety of attacks and probes, such as buffer overflows,
stealth port scans, CGI attacks, SMB probes, OS fingerprinting attempts, and much more.
See here for the announcement.
Note that these packages have been installed in the forensics-test repository.
pfring-8.0.0-6952.{el7,el8}.x86_64.rpm -
PF_Ring is a new type of network socket that dramatically improves the packet capture speed.
This package contains header files and libraries, among other files, to support the PF_Ring network socket.
Here is the announcement of PF_Ring 7.8.
pfring-dkms-8.0.0.6952-6952.{el7,el8}.noarch.rpm -
PF_Ring is a new type of network socket that dramatically improves the packet capture speed.
This package conains the code and supporting files needed to create the PF_Ring kernel module.
ndpi-4.0.0-3344.{el7,el8}.x86_64.rpm -
ndpi is an open source LGPLv3 library for deep-packet inspection.
fmem-kernel-modules-fc34-x86_64-1.6-1.20.noarch.rpm -
Support for the following kernels were added for Fmem:
5.13.19-200 for FC34
5.13.16-200 for FC34
lime-kernel-modules-fc34-x86_64-1.9.1-20.noarch.rpm -
Support for the following kernels were added for LiME:
5.13.19-200 for FC34
5.13.16-200 for FC34
fmem-kernel-modules-fc33-x86_64-1.6-1.40.noarch.rpm -
Support for the following kernels were added for Fmem:
5.13.19-100 for FC33
5.13.16-100 for FC33
lime-kernel-modules-fc33-x86_64-1.9.1-40.noarch.rpm -
Support for the following kernels were added for LiME:
5.13.19-100 for FC33
5.13.16-100 for FC33
fmem-kernel-modules-el8-x86_64-1.6-1.26.noarch.rpm -
Support for the following kernels were added for Fmem:
4.18.0-305.19.1 for EL8
4.18.0-305.17.1 for EL8
lime-kernel-modules-el8-x86_64-1.9.1-26.noarch.rpm -
Support for the following kernels were added for LiME: