Pakket: forensics-extra (1.13)

Verwijzigingen voor forensics-extra

Trisquel bronnen:

Het bronpakket forensics-extra downloaden:

Beheerder:

Debian Forensics (Mailarchief)

Original Maintainers:

Debian Forensics (Mailarchief)
Giovani Augusto Ferreira
Joao Eriberto Mota Filho

Vergelijkbare pakketten:

Forensics Environment - extra console components (metapackage)

This package provides the extra components for a forensics environment. All here available tools are text console based. None of these tools were packaged by Debian Forensics Team. This metapackage includes the most programs to data recovery, rootkit and exploit search, filesystems and memory analysis, image acquisition, volume inspection, passwords crackers, dictionaries (all put in /usr/share/dict), disassemblers, special actions over the hardware and many other activities.

The idea is provide several packages via APT, to avoid forgetting something when creating a specialized environment, specifically designed to operate outdoor.

There are not an intent to provide tools for remote attacks. So, packages as aircrack-ng can be provided to allow a local analyses over pcap files. The hydra and nmap packages can be used to find vulnerabilities inside a LAN which is being investigated.

Other examples are hexedit and mc packages. mc provides mcview. The hexedit and mcview are able to manipulate very large files.

The following packages were included in this metapackage:

aircrack-ng, bfbtester, binutils, binwalk, bruteforce-luks, bzip2, cabextract, chntpw, cmospwd, crunch, cryptmount, cupp, dcfldd, disktype, dnsutils, ethstatus, ethtool, exfat-fuse, exfat-utils, exif, exiftags, libimage-exiftool-perl, exiv2, fatcat, fdupes, flasm, foremost, gdisk, geoip-bin, gifshuffle, hashid, hexcompare, hexedit, hydra, jdupes, john, lcrack, less, maskprocessor, mc, mdadm, medusa, memstat, mpack, nasm, neopi, netcat, nmap, ntfs-3g, ophcrack-cli, p7zip-full, parted, patator, pcapfix, pdfcrack, poppler-utils (provides pdfinfo), pecomato, polenum, rarcrack, samdump2, sipcrack, smb-nat, snowdrop, statsprocessor, stegosuite, stegsnow, sucrack, sxiv, tcpdump, tcpflow, tcpick, tcpreplay, tcpxtract, telnet, testdisk, tshark, uni2ascii, unar, unzip, wamerican, wamerican-huge, wamerican-insane, wamerican-large, wamerican-small, wbrazilian, wbritish, wbritish-huge, wbritish-insane, wbritish-large, wbritish-small, wbulgarian, wcanadian, wcanadian-huge, wcanadian-insane, wcanadian-large, wcanadian-small, wcatalan, weplab, wfrench, wgaelic, wgerman-medical, whois, wirish, witalian, wmanx, wpolish, wportuguese, wspanish, wswedish, wukrainian, xxd.

This package is useful for pentesters, ethical hackers and forensics experts.

Andere aan forensics-extra gerelateerde pakketten

depends

recommends

suggests

dep: aircrack-ng

wireless WEP/WPA cracking utilities
dep: bfbtester

Brute Force Binary Tester
dep: binutils

GNU assembler, linker and binary utilities
dep: binwalk

tool library for analyzing binary blobs and executable code
dep: bruteforce-luks

Try to find a password of a LUKS encrypted volume
dep: bzip2

high-quality block-sorting file compressor - utilities
dep: cabextract

Microsoft Cabinet file unpacker
dep: chntpw

NT SAM password recovery utility
dep: cmospwd

decrypt BIOS passwords from CMOS
dep: crunch

tool for creating wordlist
dep: cryptmount

Management of encrypted file systems
dep: cupp

generate dictionaries for attacks from personal data
dep: dcfldd

enhanced version of dd for forensics and security
dep: disktype

detection of content format of a disk or disk image
dep: dnsutils

Clients provided with BIND
dep: ethstatus

console-based ethernet statistics monitor
dep: ethtool

display or change Ethernet device settings
dep: exfat-fuse

read and write exFAT driver for FUSE
dep: exfat-utils

utilities to create, check, label and dump exFAT filesystem
dep: exif

command-line utility to show EXIF information in JPEG files
dep: exiftags

utility to read Exif tags from a digital camera JPEG file
dep: exiv2

EXIF/IPTC/XMP metadata manipulation tool
dep: fatcat

FAT filesystem explore, extract, repair, and forensic tool
dep: fdupes

identifies duplicate files within given directories
dep: flasm

assembler and disassembler for Flash (SWF) bytecode
dep: foremost

forensic program to recover lost files
dep: gdisk

GPT fdisk text-mode partitioning tool
dep: geoip-bin

IP lookup command line tools that use the GeoIP library
dep: gifshuffle

Steganography program to gif images
dep: hashid

Identify the different types of hashes used to encrypt data
dep: hexcompare

utility to compare and identify binary files
dep: hexedit

viewer and editor in hexadecimal or ASCII for files or devices
dep: hwinfo

Hardware identification system
dep: hydra

very fast network logon cracker
dep: jdupes

identify and delete or link duplicate files
dep: john

active password cracking tool
dep: lcrack

A generic password cracker
dep: less

pager program similar to more
dep: libimage-exiftool-perl

library and program to read and write meta information in multimedia files
dep: lshw

information about hardware configuration
dep: maskprocessor

high-performance word generator with a per-position configurable charset
dep: mc

Midnight Commander - a powerful file manager
dep: mdadm

tool to administer Linux MD arrays (software RAID)
dep: medusa

fast, parallel, modular, login brute-forcer for network services
dep: memstat

Identify what's using up virtual memory
dep: mpack

tools for encoding/decoding MIME messages
dep: nasm

General-purpose x86 assembler
dep: neopi

web shell code detection
dep: netcat

TCP/IP swiss army knife -- transitional package
Ook een virtueel pakket geboden door: netcat-openbsd, netcat-traditional
dep: nmap

The Network Mapper
dep: ntfs-3g

read/write NTFS driver for FUSE
dep: ophcrack-cli

Pakket niet beschikbaar
dep: p7zip-full

7z and 7za file archivers with high compression ratio
dep: parted

disk partition manipulator
dep: patator

Multi-purpose brute-forcer
dep: pcapfix

repairs broken pcap and pcapng files
dep: pdfcrack

PDF files password cracker
dep: pecomato

Picture-embedded contents manipulation tool
dep: polenum

Extracts the password policy from a Windows system
dep: poppler-utils

PDF utilities (based on Poppler)
dep: rarcrack

Password cracker for rar archives
dep: samdump2

Dump Windows 2k/NT/XP password hashes
dep: sipcrack

SIP login dumper/cracker
dep: smb-nat

Netbios Auditing Tool
dep: snowdrop

plain text watermarking and watermark recovery
dep: statsprocessor

word generator based on per-position Markov chains
dep: stegosuite

steganography tool to hide information in image files
dep: stegsnow

steganography using ASCII files
dep: sucrack

multithreaded su bruteforcer
dep: sxiv

simple X image viewer
dep: tcpdump

command-line network traffic analyzer
dep: tcpflow

TCP flow recorder
Ook een virtueel pakket geboden door: tcpflow-nox
dep: tcpick

TCP stream sniffer and connection tracker
dep: tcpreplay

Tool to replay saved tcpdump files at arbitrary speeds
dep: tcpxtract

extract files from network traffic based on file signatures
dep: telnet

basic telnet client
dep: testdisk

Partition scanner and disk recovery tool, and PhotoRec file recovery tool
dep: tshark

network traffic analyzer - console version
dep: unar

Unarchiver for a variety of file formats
dep: uni2ascii

UTF-8 to 7-bit ASCII and vice versa converter
dep: unzip

De-archiver for .zip files
dep: wamerican

American English dictionary words for /usr/share/dict
dep: wamerican-huge

American English dictionary words for /usr/share/dict
dep: wamerican-insane

American English dictionary words for /usr/share/dict
dep: wamerican-large

American English dictionary words for /usr/share/dict
dep: wamerican-small

American English dictionary words for /usr/share/dict
dep: wbrazilian

Brazilian Portuguese wordlist
dep: wbritish

British English dictionary words for /usr/share/dict
dep: wbritish-huge

British English dictionary words for /usr/share/dict
dep: wbritish-insane

British English dictionary words for /usr/share/dict
dep: wbritish-large

British English dictionary words for /usr/share/dict
dep: wbritish-small

British English dictionary words for /usr/share/dict
dep: wbulgarian

Bulgarian dictionary words for /usr/share/dict
dep: wcanadian

Canadian English dictionary words for /usr/share/dict
dep: wcanadian-huge

Canadian English dictionary words for /usr/share/dict
dep: wcanadian-insane

Canadian English dictionary words for /usr/share/dict
dep: wcanadian-large

Canadian English dictionary words for /usr/share/dict
dep: wcanadian-small

Canadian English dictionary words for /usr/share/dict
dep: wcatalan

Catalan dictionary words for /usr/share/dict
dep: weplab

tool designed to break WEP keys
dep: wfrench

French dictionary words for /usr/share/dict
dep: wgaelic

Scots Gaelic word list
dep: wgerman-medical

German medical dictionary words for /usr/share/dict
dep: whois

intelligent WHOIS client
dep: wirish

Irish (Gaeilge) dictionary words for /usr/share/dict
dep: witalian

Italian dictionary words for /usr/share/dict/
dep: wmanx

Manx Gaelic dictionary words for /usr/share/dict
dep: wpolish

Polish dictionary words for /usr/share/dict
dep: wportuguese

European Portuguese wordlist
dep: wspanish

Spanish dictionary words for /usr/share/dict
dep: wswedish

Swedish dictionary words for /usr/share/dict
dep: wukrainian

Ukrainian dictionary words for /usr/share/dict
dep: xxd

tool to make (or reverse) a hex dump

rec: clamav

anti-virus utility for Unix - command-line interface
rec: hashcat

World's fastest and most advanced password recovery utility
rec: ncrack

High-speed network authentication cracking tool
rec: pev

text-based tool to analyze PE files
rec: pyrit

GPGPU-driven WPA/WPA2-PSK key cracker
rec: wifite

Python script to automate wireless auditing using aircrack-ng tools

sug: forensics-all

Debian Forensics Environment - essential components (metapackage)
sug: forensics-extra-gui

Forensics Environment - extra GUI components (metapackage)

forensics-extra downloaden

Pakket downloaden voor alle beschikbare platforms
Platform	Pakketgrootte	Geïnstalleerde grootte	Bestanden
all	4,3 kB	10 kB	[overzicht]

Sections