sleuthkit-4.6.4-1.fc28.x86_64.rpm


Advertisement

Description

sleuthkit - The Sleuth Kit (TSK)

Property Value
Distribution Fedora 28
Repository CERT Forensics Tools x86_64
Package filename sleuthkit-4.6.4-1.fc28.x86_64.rpm
Package name sleuthkit
Package version 4.6.4
Package release 1.fc28
Package architecture x86_64
Package type rpm
Category Applications/System
Homepage http://www.sleuthkit.org
License CPL and IBM and GPLv2+
Maintainer -
Download size 1.62 MB
Installed size 12.96 MB
The Sleuth Kit (TSK) is a collection of UNIX-based command line tools that
allow you to investigate a computer. The current focus of the tools is the
file and volume systems and TSK supports FAT, Ext2/3, NTFS, UFS,
and ISO 9660 file systems

Alternatives

Package Version Architecture Repository
sleuthkit-4.6.5-1.fc28.i686.rpm 4.6.5 i686 CERT Forensics Tools
sleuthkit-4.6.5-1.fc28.x86_64.rpm 4.6.5 x86_64 CERT Forensics Tools
sleuthkit-4.6.4-1.fc28.i686.rpm 4.6.4 i686 CERT Forensics Tools
sleuthkit-4.6.3-1.fc28.i686.rpm 4.6.3 i686 CERT Forensics Tools
sleuthkit-4.6.3-1.fc28.x86_64.rpm 4.6.3 x86_64 CERT Forensics Tools
sleuthkit-4.6.2-2.fc28.i686.rpm 4.6.2 i686 CERT Forensics Tools
sleuthkit-4.6.2-2.fc28.x86_64.rpm 4.6.2 x86_64 CERT Forensics Tools
sleuthkit-4.6.2-1.fc28.i686.rpm 4.6.2 i686 Fedora Updates
sleuthkit-4.6.2-1.fc28.x86_64.rpm 4.6.2 x86_64 Fedora Updates
sleuthkit-4.6.0-3.fc28.x86_64.rpm 4.6.0 x86_64 CERT Forensics Tools
sleuthkit-4.5.0-2.fc28.i686.rpm 4.5.0 i686 Fedora
sleuthkit-4.5.0-2.fc28.x86_64.rpm 4.5.0 x86_64 Fedora
sleuthkit - - -

Requires

Name Value
/usr/bin/perl -
file -
java >= 1.6.0
jpackage-utils -
libafflib.so.0()(64bit) -
libc.so.6(GLIBC_2.3.4)(64bit) -
libdl.so.2()(64bit) -
libewf.so.2()(64bit) -
libgcc_s.so.1()(64bit) -
libgcc_s.so.1(GCC_3.0)(64bit) -
libm.so.6()(64bit) -
libpq.so.5()(64bit) -
libpthread.so.0()(64bit) -
libpthread.so.0(GLIBC_2.2.5)(64bit) -
libsqlite3.so.0()(64bit) -
libstdc++.so.6()(64bit) -
libstdc++.so.6(CXXABI_1.3)(64bit) -
libstdc++.so.6(CXXABI_1.3.9)(64bit) -
libstdc++.so.6(GLIBCXX_3.4)(64bit) -
libstdc++.so.6(GLIBCXX_3.4.11)(64bit) -
libstdc++.so.6(GLIBCXX_3.4.20)(64bit) -
libstdc++.so.6(GLIBCXX_3.4.21)(64bit) -
libstdc++.so.6(GLIBCXX_3.4.9)(64bit) -
libtsk.so.13()(64bit) -
libvhdi.so.1()(64bit) -
libvmdk.so.1()(64bit) -
libz.so.1()(64bit) -
mac-robber -
perl(POSIX) -
perl(integer) -
perl(strict) -
rtld(GNU_HASH) -
sleuthkit-libs = 4.6.4-1.fc28

Provides

Name Value
sleuthkit = 4.6.4-1.fc28
sleuthkit(x86-64) = 4.6.4-1.fc28

Download

Type URL
Mirror forensics.cert.org
Binary Package sleuthkit-4.6.4-1.fc28.x86_64.rpm
Source Package sleuthkit-4.6.4-1.fc28.src.rpm

Install Howto

  1. Download cert-forensics-tools-release-28 rpm:
    https://forensics.cert.org/cert-forensics-tools-release-28.rpm
  2. Install cert-forensics-tools-release-28 rpm:
    # rpm -Uvh cert-forensics-tools-release*rpm
  3. Install sleuthkit rpm package:
    # dnf --enablerepo=forensics install sleuthkit

Files

Path
/usr/bin/blkcalc
/usr/bin/blkcat
/usr/bin/blkls
/usr/bin/blkstat
/usr/bin/fcat
/usr/bin/ffind
/usr/bin/fiwalk
/usr/bin/fls
/usr/bin/fsstat
/usr/bin/hfind
/usr/bin/icat
/usr/bin/ifind
/usr/bin/ils
/usr/bin/img_cat
/usr/bin/img_stat
/usr/bin/istat
/usr/bin/jcat
/usr/bin/jls
/usr/bin/jpeg_extract
/usr/bin/mactime
/usr/bin/mmcat
/usr/bin/mmls
/usr/bin/mmstat
/usr/bin/sigfind
/usr/bin/sorter
/usr/bin/srch_strings
/usr/bin/tsk_comparedir
/usr/bin/tsk_gettimes
/usr/bin/tsk_loaddb
/usr/bin/tsk_recover
/usr/bin/usnjls
/usr/lib/.build-id/
/usr/lib/.build-id/02/5471fdc4175aeff68dd271d01fc0aeb27327dd
/usr/lib/.build-id/04/07c06c0dc9c22eff39de2d3959684e71371c24
/usr/lib/.build-id/04/c0091794b88831d964f296b12f66c7b223fa03
/usr/lib/.build-id/16/ca7cbf4a0a749838b57c46cb5bf02b98e5071b
/usr/lib/.build-id/19/5c4aa1e404699fb64ad4b931b5a7d1896c2534
/usr/lib/.build-id/1e/f5593be6f8c6f1aaec71b1971ec4a7127921c9
/usr/lib/.build-id/23/5e319a561a1bb3f0cbdc39ae5511de14e21837
/usr/lib/.build-id/28/a097e8219c5dad619fbdef3ba2ddb82292da31
/usr/lib/.build-id/42/e6b32dd2f9f3c16c96f60eba8c05ab481ed81d
/usr/lib/.build-id/46/de1e9c564a5d96ddd0eee5c35f7ceaddb66d9d
/usr/lib/.build-id/4e/6573f101a93e32ae8b8c38780b6c28826b9bca
/usr/lib/.build-id/51/d0155622bc9ae50ddc31e9f23c9569d8460420
/usr/lib/.build-id/54/08e808324d4872e8df783f2dd780fd32d3e11d
/usr/lib/.build-id/61/25397fef63ed2f25d41af8eefa9043cff4e441
/usr/lib/.build-id/64/19e8c0768b5f9351875c788e57dff4b5e2d19f
/usr/lib/.build-id/68/64815577bd0b8b383cb3d4ff19eda1f36e7f67
/usr/lib/.build-id/75/d36fa7fcd74b42cbdfec3f755b11d915d2adb3
/usr/lib/.build-id/89/c23f6c04b7d4f9b255b6f7c124e632ea48de63
/usr/lib/.build-id/a5/569235233ec0cd9d6b1677f18db2ebb86b9da8
/usr/lib/.build-id/a7/444e7c77783f0408cb3f43cbab7f79fc433bcf
/usr/lib/.build-id/af/07b79086d60448281ddba1483cad4efc6a5793
/usr/lib/.build-id/b2/334c7f8f506c78af6e78bac732e9d8647257e6
/usr/lib/.build-id/b3/30246d53952855987ee66bb17c9be61a01de81
/usr/lib/.build-id/b5/656a9ee3b92b5d625a5cadc4892c746f30d49b
/usr/lib/.build-id/b6/066fef38abe22f3ea8c37f4919870fe647ad81
/usr/lib/.build-id/bd/a14dab3280bd52a29f94295b7ac482ac51c65c
/usr/lib/.build-id/e5/ef7882aaa668172f31b4dff3aa2396a153f4a5
/usr/lib/.build-id/f7/93a226568685ff43ce7f2f77407d63f99a6266
/usr/lib/.build-id/f9/d2d2465668758bee11c6621da772dd7440cc90
/usr/share/doc/sleuthkit/ChangeLog.txt
/usr/share/doc/sleuthkit/INSTALL.txt
/usr/share/doc/sleuthkit/NEWS.txt
/usr/share/doc/sleuthkit/README.md
/usr/share/doc/sleuthkit/README_win32.txt
/usr/share/java/sleuthkit-4.6.4.jar
/usr/share/man/man1/blkcalc.1.gz
/usr/share/man/man1/blkcat.1.gz
/usr/share/man/man1/blkls.1.gz
/usr/share/man/man1/blkstat.1.gz
/usr/share/man/man1/fcat.1.gz
/usr/share/man/man1/ffind.1.gz
/usr/share/man/man1/fls.1.gz
/usr/share/man/man1/fsstat.1.gz
/usr/share/man/man1/hfind.1.gz
/usr/share/man/man1/icat.1.gz
/usr/share/man/man1/ifind.1.gz
/usr/share/man/man1/ils.1.gz
/usr/share/man/man1/img_cat.1.gz
/usr/share/man/man1/img_stat.1.gz
/usr/share/man/man1/istat.1.gz
/usr/share/man/man1/jcat.1.gz
/usr/share/man/man1/jls.1.gz
/usr/share/man/man1/mactime.1.gz
/usr/share/man/man1/mmcat.1.gz
/usr/share/man/man1/mmls.1.gz
/usr/share/man/man1/mmstat.1.gz
/usr/share/man/man1/sigfind.1.gz
/usr/share/man/man1/sorter.1.gz
/usr/share/man/man1/tsk_comparedir.1.gz
/usr/share/man/man1/tsk_gettimes.1.gz
/usr/share/man/man1/tsk_loaddb.1.gz
/usr/share/man/man1/tsk_recover.1.gz
/usr/share/man/man1/usnjls.1.gz
/usr/share/tsk/
/usr/share/tsk/sorter/default.sort
/usr/share/tsk/sorter/freebsd.sort
/usr/share/tsk/sorter/images.sort
/usr/share/tsk/sorter/linux.sort
/usr/share/tsk/sorter/openbsd.sort
/usr/share/tsk/sorter/solaris.sort
/usr/share/tsk/sorter/windows.sort

Changelog

2018-11-09 - Lawrence R. Rogers <lrr@cert.org) 4.6.4-1
- Release 4.6.4-1
Java Code:
Increase max statements in database to prevent errors under load
Have a max timeout for SQLite retries
2018-10-14 - Lawrence R. Rogers <lrr@cert.org) 4.6.3-1
- Release 4.6.3-1
C/C++ Code:
Hashdb bug fixes for corrupt indexes and 0 hashes
New code for testing power of number in ExtX code
Java Code:
New class that allows generic database access
New methods that check for duplicate artifacts
Added caches for frequently used content
Database Schema:
Added Examiner table
Tags are now associated with Examiners
Changed parent_path for logical files to be consistent with FS files.
2018-10-03 - Lawrence R. Rogers <lrr@cert.org) 4.6.2-2
- Release 4.6.2-2
Built with Java support. Release number is greater than the release for Fedora 28 and 27.
2018-08-08 - Lawrence R. Rogers <lrr@cert.org) 4.6.2-1
- Release 4.6.2-1
C/C++ Code:
- Various compiler warning fixes
- Added small delay into image writer to not starve other threads
Java: 
- Added more locking to ensure that handles were not closed while other threads were using them. 
- Added APIs to support more queries by data source
- Added memory-based caching when detecting if an object has children or not.
2018-05-16 - Lawrence R. Rogers <lrr@cert.org) 4.6.1-1
- Release 4.6.1-1
Lots of bounds checking fixes from Google's fuzzing tests. Thanks Goole.
Cleanup and fixes from uckelman-sf and others
PostgreSQL, libvhdi, & libvmdk are supported for Linux / OS X
Fixed display of NTFS GUID in istat - report from Eric Zimmerman.
NTFS istat shows details about all FILE_NAME attributes, not just the first. report from Eric Zimmerman.
2018-03-28 - Lawrence R. Rogers <lrr@cert.org) 4.6.0-3
- Release 4.6.0-3
Moved sleuthkit-4.6.0.jar from sleuthkit-devel package to sleuthkit package.
2018-02-28 - Lawrence R. Rogers <lrr@cert.org) 4.6.0-2
- Release 4.6.0-2
Removed patches from PyTSK.
2018-02-21 - Lawrence R. Rogers <lrr@cert.org) 4.6.0-1
- Release 4.6.0-1
- New Features
- New Communications related Java classes and database tables.
- Java build updates for Autopsy Linux build
- Blackboard artifacts are now Content objects in Java and part of tsk_objects table in database.
- Increased cache sizes.
- Lots of bounds checking fixes from Google's fuzzing tests.  Thanks Google.
- HFS fix from uckelman-sf.
2017-10-15 - Lawrence R. Rogers <lrr@cert.org) 4.5.0-1
- Release 4.5.0-1
- New Features:
- Support for LZVN compressed HFS files (from Joel Uckelman)
- Use sector size from E01 (helps with 4k sector sizes)
- More specific version number of DB schema
- New Local Directory type in DB to differentiate with Virtual Directories
- All blackboard artifacts in DB are now 'content'. Attachments can now be children of their parent message.
- Added extension as a column in tsk_files table.
- Bug Fixes:
- Faster resolving of HFS hard links
- Lots of fixes from Google Fuzzing efforts.
2017-08-07 - Lawrence R. Rogers <lrr@cert.org) 4.4.2-1
- Release 4.4.2-1
- New Features:
- usnjls tool for NTFS USN log (from noxdafox)
- Added index to mime type column in DB
- Use local SQLite3 if it exists (from uckelman-sf)
- Blackboard Artifacts have a shortDescription metho
- Bug Fixes:
- Fix for highest HFS+ inum lookup (from uckelman-sf)
- Fix ISO9660 crash
- various performance fixes and added thread safety checks

See Also

Package Description
sleuthkit-devel-4.6.0-3.fc28.x86_64.rpm Development files for sleuthkit
sleuthkit-devel-4.6.2-2.fc28.x86_64.rpm Development files for sleuthkit
sleuthkit-devel-4.6.3-1.fc28.x86_64.rpm Development files for sleuthkit
sleuthkit-devel-4.6.4-1.fc28.x86_64.rpm Development files for sleuthkit
sleuthkit-devel-4.6.5-1.fc28.x86_64.rpm Development files for sleuthkit
sleuthkit-libs-4.6.0-3.fc28.x86_64.rpm Library for sleuthkit
sleuthkit-libs-4.6.2-2.fc28.x86_64.rpm Library for sleuthkit
sleuthkit-libs-4.6.3-1.fc28.x86_64.rpm Library for sleuthkit
sleuthkit-libs-4.6.4-1.fc28.x86_64.rpm Library for sleuthkit
sleuthkit-libs-4.6.5-1.fc28.x86_64.rpm Library for sleuthkit
snarf-0.3.0-3.fc28.x86_64.rpm snarf - Structured Network Alert Reporting Framework
snarf-devel-0.3.0-3.fc28.x86_64.rpm Static libraries and C header files for libsnarf
snarf-python-0.3.0-3.fc28.x86_64.rpm Python interface to snarf
snort-2.9.11.1-2.fc28.x86_64.rpm An open source Network Intrusion Detection System (NIDS)
snort-2.9.12-1.fc28.x86_64.rpm An open source Network Intrusion Detection System (NIDS)
Advertisement
Advertisement