fakenet-3.0a-1.{fc36,fc37,fc38,el7,el8,amzn2}.x86_64.rpm and fakenet-3.0a-1.el9.{x86_64,aarch64}.rpm -
Fakenet is a next generation dynamic network analysis tool for malware analysts and penetration testers.
It is open source and designed for the latest versions of Windows (and Linux, for certain modes of operation).
FakeNet-NG is based on the excellent Fakenet tool developed by Andrew Honig and Michael Sikorski.
The tool allows you to intercept and redirect all or specific network traffic while simulating legitimate network services.
Using FakeNet-NG, malware analysts can quickly identify malware's functionality and capture network signatures.
Penetration testers and bug hunters will find FakeNet-NG's configurable interception engine and modular framework highly useful when testing application's specific
functionality and prototyping PoCs.
ghidra-10.3.2-PUBLIC_20230711.1.{fc36,fc37,fc38,el7,el8,amzn2}.x86_64.rpm and ghidra-10.3.2-PUBLIC_20230711.1.el9.{x86_64,aarch64}.rpm -
Ghidra
is a software reverse engineering (SRE) framework created and maintained by the National Security Agency Research Directorate.
This framework includes a suite of full-featured, high-end software analysis tools that enable users to analyze compiled code on a variety of platforms
including Windows, macOS, and Linux. Capabilities include disassembly, assembly, decompilation, graphing, and scripting, along with hundreds of other features.
Ghidra supports a wide variety of processor instruction sets and executable formats and can be run in both user-interactive and automated modes.
Users may also develop their own Ghidra plug-in components and/or scripts using Java or Python.
See the list of changes and improvements
here.
pfring-8.5.0-8381.x86_64.rpm -
PF_Ring is a new type of network socket that dramatically improves the packet capture speed.
This package contains header files and libraries, among other files, to support the PF_Ring network socket.
Here is the announcement of PF_Ring 7.8.
pfring-dkms-8.5.0.8381-dkms.noarch.rpm -
PF_Ring is a new type of network socket that dramatically improves the packet capture speed.
This package conains the code and supporting files needed to create the PF_Ring kernel module.
ndpi-4.7.0-4291.x86_64.rpm -
ndpi is an open source LGPLv3 library for deep-packet inspection.
lime-kernel-modules-fc38-x86_64-1.9.1-6.noarch.rpm -
Support for the following kernels were added for LiME:
6.3.12-200 for FC38
6.3.11-200 for FC38
fmem-kernel-modules-fc38-x86_64-1.6-1.6.noarch.rpm -
Support for the following kernels were added for Fmem:
6.3.12-200 for FC38
6.3.11-200 for FC38
lime-kernel-modules-fc37-x86_64-1.9.1-6.noarch.rpm -
Support for the following kernels were added for LiME:
6.3.12-100 for FC37
fmem-kernel-modules-fc37-x86_64-1.6-1.6.noarch.rpm -
Support for the following kernels were added for Fmem:
6.3.12-100 for FC37
lime-kernel-modules-el8-x86_64-1.9.1-40.noarch.rpm -
Support for the following kernels were added for LiME:
4.18.0-500 for EL8
fmem-kernel-modules-el8-x86_64-1.6-1.40.noarch.rpm -
Support for the following kernels were added for Fmem: