LiFTeR: Changes for dff
- December 8, 2016: dff-1.3.6-20161201.1.{fc20,fc21,fc22,fc23,fc24,fc25,el7}.{i686,x86_64}.rpm - The Digital Forensics Framework (DFF)
is both a digital investigation tool and a development platform.
The framework is used by system administrators, law enforcement examiners, digital forensics researchers and students, and security professionals world-wide.
Written in Python and C++,
it exclusively uses Open Source technologies.
DFF combines an intuitive user interface with a modular and cross-platform architecture.
This version is the developer version as of December 1, 2016.
- September 11, 2015: dff-1.3.5.20150908-2.{fc17,fc18,fc19,fc20,fc21,fc22,el7}.{i686,x86_64}.rpm - The Digital Forensics Framework (DFF)
is both a digital investigation tool and a development platform.
The framework is used by system administrators, law enforcement examiners, digital forensics researchers and students, and security professionals world-wide.
Written in Python and C++,
it exclusively uses Open Source technologies.
DFF combines an intuitive user interface with a modular and cross-platform architecture.
This version is the developer version as of September 8, 2015.
- September 19, 2014: dff-1.3.0.20140123-2.{fc17,fc18,fc19,fc20,el7}.{i686,x86_64}.rpm - The Digital Forensics Framework (DFF)
is both a digital investigation tool and a development platform.
The framework is used by system administrators, law enforcement examiners, digital forensics researchers and students, and security professionals world-wide.
Written in Python and C++,
it exclusively uses Open Source technologies.
DFF combines an intuitive user interface with a modular and cross-platform architecture.
This version is the developer version as of January 23, 2014.
The changes were to add missing dependencies, specifically PyQt4-webkit for CentOS/RHEL 7
and python-poppler-qt4 for all supported architectures.
- January 24, 2014: dff-1.3.0.20140123-1.{fc17,fc18,fc19,fc20}.{i686,x86_64}.rpm - The Digital Forensics Framework (DFF)
is both a digital investigation tool and a development platform.
The framework is used by system administrators, law enforcement examiners, digital forensics researchers and students, and security professionals world-wide.
Written in Python and C++,
it exclusively uses Open Source technologies.
DFF combines an intuitive user interface with a modular and cross-platform architecture.
Note that only Fedora 17, 18, 19, and 20 are supported in this release.
This release uses ffmpeg version 2.
This version is the developer version as of January 23, 2014. Note that these packages have been placed in the forensics-test repository which must be enabled in the /etc/yum.repos.d/cert-forensics-tools.repo by setting enabled to 1 (true).
- January 22, 2014: dff-1.3.0-4.{fc17,fc18,fc19,fc20}.{i686,x86_64}.rpm - The Digital Forensics Framework (DFF) is both
a digital investigation tool and a development platform.
The framework is used by system administrators, law enforcement examiners, digital forensics researchers and students, and security professionals world-wide.
Written in Python and C++,
it exclusively uses Open Source technologies.
DFF combines an intuitive user interface with a modular and cross-platform architecture.
Note that only Fedora 17, 18, 19, and 20 supported in this release.
This release uses ffmpeg version 2.
- August 1, 2013: dff-1.3.0-3.{fc17,fc18,fc19}.{i686,x86_64}.rpm - The Digital Forensics Framework (DFF) is both
a digital investigation tool and a development platform. The framework is used by system administrators, law enforcement examinors, digital forensics researchers
and students, and security professionals world-wide. Written in Python and C++, it exclusively uses Open Source technologies. DFF combines an intuitive user
interface with a modular and cross-platform architecture. Note that only Fedora 17, 18, and 19 supported in this release.
Here are the changes (thanks to Danil Bazin for the bug report and suggested fixes):
- Added a dynamic loader configuration file, activated them when dff is installed, and deactived them when dff is uninstalled.
- Added missing PyQt4 dependency.
- Added missing reglookup dependency.
- Added the __init__.py file needed for searching.
- Recomplied with latest libbfio and libpff libraries.
- Installed the ffmpeg-devel package from the RPMFusion to add video support to dff.
This required the installation of these additional pagkages, all also from RPMFusion:
- ffmpeg-libs
- librtmp
- x264-libs
- xvidcore
- March 5, 2013: dff-1.3.0-1.{fc17,fc18}.{i686,x86_64}.rpm - The Digital Forensics Framework (DFF) is both
a digital investigation tool and a development platform. The framework is used by system administrators, law enforcement examinors, digital forensics researchers
and students, and security professionals world-wide. Written in Python and C++, it exclusively uses Open Source technologies. DFF combines an intuitive user
interface with a modular and cross-platform architecture. Note that only Fedora 17 and 18 are supported in this release.
See here for a list of recent changes
- June 28, 2012: dff-1.2.0-3.fc17.x86_64.rpm - The Digital Forensics Framework (DFF) has been built for the x86_64 CPU architecture.
To install it, do the following, as root, on a Fedora 17 x86_64 installation only:
yum erase libewf.i386 yum clean all yum install dff
- February 7, 2012: dff-1.2.0-3.{fc12,fc13,fc14,fc15,el6}.{i386,x86_64}.rpm - The Digital Forensics Framework (DFF) is both
a digital investigation tool and a development platform. This release adds missing support for Expert Witness Format Compression Format (ewf) files.
- October 13, 2011: dff-1.2.0-2.{fc12,fc13,fc14,fc15,el6}.{i386,x86_64}.rpm - The Digital Forensics Framework (DFF) is both
a digital investigation tool and a development platform. This release fixes incorrect directory permissions and adds python-apsw as a dependency.
- October 12, 2011: dff-1.2.0-1.{fc12,fc13,fc14,fc15,el6}.{i386,x86_64}.rpm - The Digital Forensics Framework (DFF) is both
a digital investigation tool and a development platform. The framework is used by system administrators, law enforcement examinors, digital forensics researchers
and students, and security professionals world-wide. Written in Python and C++, it exclusively uses Open Source technologies. DFF combines an intuitive user
interface with a modular and cross-platform architecture. is a free and Open Source platform dedicated to digital forensic and eDiscovery sciences. Note that this
version requires the Version 2 API of libewf. Note that the CentOS/RHEL 5 is not supported in this release.
- August 10, 2011: dff-1.1.0-1.{fc12,fc13,fc14,fc15,el6}.{i386,x86_64}.rpm - The Digital Forensics Framework (DFF) is both
a digital investigation tool and a development platform. The framework is used by system administrators, law enforcement examinors, digital forensics researchers
and students, and security professionals world-wide. Written in Python and C++, it exclusively uses Open Source technologies. DFF combines an intuitive user
interface with a modular and cross-platform architecture. is a free and Open Source platform dedicated to digital forensic and eDiscovery sciences. The following
additional packages were change or installed in support of DFF:
- aff{lib,lib-devel,tools}-3.6.12-2.{fc12,fc13,fc14,fc15,el5,el6}.{i386,x86_64}.rpm - Afflib is the library and tools to manipulate files using the Advanced Forensic Format. This version includes static versions of the libraries.
- libpff-20110413-1.{fc12,fc13,fc14,fc15,el5,el6}.{i386,x86_64}.rpm - Libpff is a library and tools to access the Personal Folder File (PFF) and the Offline Folder File (OFF) format. PFF is used in PAB (Personal Address Book), PST (Personal Storage Table) and OST (Offline Storage Table) files. Static and dynamic versions of the libraries are provided.
- libbfio{,devel}-20110625-1.{fc12,fc13,fc14,fc15,el5,el6}.{i386,x86_64}.rpm - Libbfio is a library that provides basic file input/output abstraction. Libbfio is used in multiple other libraries like libewf, libmsiecf, libnk2, libolecf and libpff. It is used to chain I/O to support file-in-file access. Static and dynamic versions of the libraries are provided.