Package: forensics-extra (2.52)
Links for forensics-extra
Debian Resources:
Download Source Package forensics-extra:
Maintainers:
- Debian Security Tools (QA Page)
- Giovani Augusto Ferreira (QA Page)
- Joao Eriberto Mota Filho (QA Page)
Similar packages:
Forensics Environment - extra console components (metapackage)
This package provides the extra components for a forensics environment. All here available tools are text console based. None of these tools were packaged by Debian Security Tools Team. This metapackage includes the most programs to data recovery, rootkit and exploit search, filesystems and memory analysis, image acquisition, volume inspection, passwords crackers, dictionaries (all put in /usr/share/dict), disassemblers, special actions over the hardware and many other activities.
The idea is provide several packages via APT, to avoid forgetting something when creating a specialized environment, specifically designed to operate outdoor.
There are not an intent to provide tools for remote attacks. So, some packages can be provided to allow a local analyses over pcap files. Other packages can be used to find vulnerabilities inside a LAN which is being investigated.
Other examples are hexedit and mc packages. mc provides mcview. The hexedit and mcview are able to manipulate very large files.
The following packages were included in this metapackage:
ancient, ansifilter, arc, bfbtester, bind9-dnsutils, binutils, brotli, bzip2, bzip3, cabextract, chntpw, clzip, comprez, crunch, cryptmount, curl, dact, dares, dcfldd, ddrutility, dhcpdump, dictconv, diffstat, disktype, dmitry, dtach, erofs-utils, ethstatus, ethtool, exif, exiftags, exiv2, fdupes, foremost, funcoeszz, gddrescue, gdisk, geoip-bin, gifshuffle, heartbleeder, hexcompare, hexedit, horst, hwinfo, imageindex, inxi, ipgrab, ipv6toolkit, jdupes, less, libimage-exiftool-perl, lltdscan, lrzip, lshw, lynis, lz4, lzma, lzop, mblaze, mboxgrep, mc, mdns-scan, membernator, memstat, minizip, mpack, mscompress, nasm, nast, ncompress, netcat-openbsd, netdiscover, ngrep, nomarch, nstreams, ntfs-3g, nwipe, openpace, packit, parted, pcapfix, pcaputils, pdfcrack, pecomato, plzip, png-definitive-guide, pngcheck, poppler-utils, psrip, rarcrack, readpe, readstat, reaver, rzip, scrot, secure-delete, sipcrack, sipvicious, sngrep, squashfs-tools-ng, ssh-audit, sslscan, stepic, sxiv, tcpdump, tcptrace, tcpxtract, testdisk, tshark, ugrep, unrar-free, uni2ascii, unzip, wamerican, wamerican-huge, wamerican-insane, wamerican-large, wamerican-small, wbrazilian, wbritish, wbritish-huge, wbritish-insane, wbritish-large, wbritish-small, wbulgarian, wcanadian, wcanadian-huge, wcanadian-insane, wcanadian-large, wcanadian-small, wcatalan, weplab, wesperanto, wfaroese, wfrench, wgaelic, wgerman-medical, whatweb, whois, wirish, witalian, wmanx, wngerman, wpolish, wportuguese, wspanish, wswedish, wswiss, wukrainian, wzip, xva-img, xxd, xz-utils, zpaq
This metapackage is useful for pentesters, ethical hackers and forensics experts.
Other Packages Related to forensics-extra
|
|
|
|
-
- dep: ancient
- decompression routines for ancient formats
-
- dep: ansifilter
- parse common (terminal) ANSI codes and remove or convert them
-
- dep: arc
- archive utility based on the MS-DOS ARC program
-
- dep: bfbtester
- Comprobador binario por fuerza bruta
-
- dep: bind9-dnsutils
- Clients provided with BIND 9
-
- dep: binutils
- GNU assembler, linker and binary utilities
-
- dep: brotli
- lossless compression algorithm and format (command line utility)
-
- dep: bzip2
- compresor de archivos por ordenación de bloques de alta calidad - utilidades
-
- dep: bzip3
- better, faster and stronger spiritual successor to bzip2 - utilities
-
- dep: cabextract
- Desempaquetador de archivos Microsoft Cabinet
-
- dep: chntpw
- NT SAM password recovery utility
-
- dep: clzip
- compresor de datos sin pérdida, en C, basado en el algoritmo LZMA
-
- dep: comprez
- frontend to many compression programs
-
- dep: crunch
- tool for creating wordlist
-
- dep: cryptmount
- Management of encrypted file systems
-
- dep: curl
- command line tool for transferring data with URL syntax
-
- dep: dact
- compresión multialgoritmo
-
- dep: dares
- Recupere archivos de CD y DVD dañados (interfaz en ncurses)
-
- dep: dcfldd
- enhanced version of dd for forensics and security
-
- dep: ddrutility
- set of data recovery utilities for use with GNU ddrescue
-
- dep: dhcpdump
- Parse DHCP packets from a network interface
-
- dep: dictconv
- convert a dictionary file type to another dictionary file type
-
- dep: diffstat
- produces graph of changes introduced by a diff file
-
- dep: disktype
- detection of content format of a disk or disk image
-
- dep: dmitry
- Deepmagic Information Gathering Tool
-
- dep: dtach
- emula la función de separar/adjuntar de la pantalla
-
- dep: erofs-utils
- Utilities for EROFS File System
-
- dep: ethstatus
- console-based ethernet statistics monitor
-
- dep: ethtool
- Muestra o cambia la configuración del dispositivo Ethernet
-
- dep: exif
- command-line utility to show EXIF information in JPEG files
-
- dep: exiftags
- utility to read Exif tags from a digital camera JPEG file
-
- dep: exiv2
- EXIF/IPTC/XMP metadata manipulation tool
-
- dep: fdupes
- identifica archivos duplicados dentro de directorios dados
-
- dep: foremost
- forensic program to recover lost files
-
- dep: funcoeszz
- script with 170+ useful mini applications
-
- dep: gddrescue
- GNU data recovery tool
-
- dep: gdisk
- GPT fdisk text-mode partitioning tool
-
- dep: geoip-bin
- IP lookup command line tools that use the GeoIP library
-
- dep: gifshuffle
- Steganography program to gif images
-
- dep: heartbleeder
- test servers for OpenSSL CVE-2014-0160 aka Heartbleed
-
- dep: hexcompare
- utility to compare and identify binary files
-
- dep: hexedit
- viewer and editor in hexadecimal or ASCII for files or devices
-
- dep: horst
- Highly Optimized Radio Scanning Tool
-
- dep: hwinfo
- Hardware identification system
-
- dep: imageindex
- generate static HTML galleries from images
-
- dep: inxi
- full featured system information script
-
- dep: ipgrab
- tcpdump-like utility that prints detailed header information
-
- dep: ipv6toolkit
- Herramienta de evaluación de seguridad y solución de problemas para los protocolos IPv6
-
- dep: jdupes
- identify and delete or link duplicate files
-
- dep: less
- Programa de paginado similar a «more»
-
- dep: libimage-exiftool-perl
- library and program to read and write meta information in multimedia files
-
- dep: lltdscan
- Scan for LLTD-enabled hosts on your network
-
- dep: lrzip
- programa de compresión con una relación de compresión muy alta
-
- dep: lshw
- information about hardware configuration
-
- dep: lynis
- security auditing tool for Unix based systems
-
- dep: lz4
- Fast LZ compression algorithm library - tool
-
- dep: lzop
- fast compression program
-
- dep: mblaze
- UNIX utilities to deal with Maildir
-
- dep: mboxgrep
- Grep through mailboxes
-
- dep: mc
- Midnight Commander - a powerful file manager
-
- dep: mdns-scan
- Scan for mDNS/DNS-SD services published on the local network
-
- dep: membernator
- Tool to scan membership cards to establish if they are valid
-
- dep: memstat
- Identifica qué está usando memoria virtual
-
- dep: minizip
- compression library - minizip tools
-
- dep: mpack
- Herramientas para codificar/decodificar mensajes MIME
-
- dep: mscompress
- Microsoft "compress.exe/expand.exe" compatible (de)compressor
-
- dep: nasm
- General-purpose x86 assembler
-
- dep: nast
- packet sniffer and lan analyzer
-
- dep: ncompress
- original Lempel-Ziv compress/uncompress programs
-
- dep: netcat-openbsd
- TCP/IP swiss army knife
-
- dep: netdiscover
- active/passive network address scanner using ARP requests
-
- dep: ngrep
- Un grep para el tráfico de la red
-
- dep: nomarch
- Unpacks .ARC and .ARK MS-DOS archives
-
- dep: nstreams
- network streams - a tcpdump output analyzer
-
- dep: ntfs-3g
- read/write NTFS driver for FUSE
-
- dep: nwipe
- utilidad para borrar discos de forma segura
-
- dep: openpace
- cryptographic library for EAC version 2 (tools)
-
- dep: packit
- network packet generator and capture tool
-
- dep: parted
- manipulador de particiones de disco
-
- dep: pcapfix
- repairs broken pcap and pcapng files
-
- dep: pcaputils
- specialized libpcap utilities
-
- dep: pdfcrack
- PDF files password cracker
-
- dep: pecomato
- herramienta de manipulación de contenidos incrustados en imágenes
-
- dep: plzip
- parallel, lossless data compressor based on the LZMA algorithm
-
- dep: png-definitive-guide
- PNG: The Definitive Guide
-
- dep: pngcheck
- print info and check PNG, JNG and MNG files
-
- dep: poppler-utils
- PDF utilities (based on Poppler)
-
- dep: psrip
- Extract images from PostScript files
-
- dep: rarcrack
- Password cracker for rar archives
-
- dep: readpe
- command-line tools to manipulate Windows PE files
-
- dep: readstat
- read/write data sets from SAS, Stata, and SPSS
-
- dep: reaver
- brute force attack tool against Wi-Fi Protected Setup PIN number
-
- dep: rzip
- programa de compresión para archivos grandes
-
- dep: scrot
- command line screen capture utility
-
- dep: secure-delete
- tools to wipe files, free disk space, swap and memory
-
- dep: sipcrack
- SIP login dumper/cracker
-
- dep: sipvicious
- tools to audit SIP based VoIP systems
-
- dep: sngrep
- Ncurses SIP Messages flow viewer
-
- dep: squashfs-tools-ng
- New set of tools for working with SquashFS images
-
- dep: ssh-audit
- tool for ssh server auditing
-
- dep: sslscan
- Tests SSL/TLS enabled services to discover supported cipher suites
-
- dep: stepic
- Python 3 Steganography in Images
-
- dep: sxiv
- simple X image viewer
-
- dep: tcpdump
- command-line network traffic analyzer
-
- dep: tcptrace
- Tool for analyzing tcpdump output
-
- dep: tcpxtract
- extract files from network traffic based on file signatures
-
- dep: testdisk
- Partition scanner and disk recovery tool, and PhotoRec file recovery tool
-
- dep: tshark
- network traffic analyzer - console version
-
- dep: ugrep
- faster grep with an interactive query UI
-
- dep: uni2ascii
- Conversor de UTF-8 a ASCII de 7 bits y viceversa
-
- dep: unrar-free
- Unarchiver for .rar files
-
- dep: unzip
- Desarchivador de archivos .zip
-
- dep: wamerican
- Palabras del diccionario de inglés americano para /usr/share/dict
-
- dep: wamerican-huge
- American English dictionary words for /usr/share/dict
-
- dep: wamerican-insane
- American English dictionary words for /usr/share/dict
-
- dep: wamerican-large
- American English dictionary words for /usr/share/dict
-
- dep: wamerican-small
- American English dictionary words for /usr/share/dict
-
- dep: wbrazilian
- lista de palabras de portugués brasileño
-
- dep: wbritish
- Diccionario de inglés británico para /usr/share/dict
-
- dep: wbritish-huge
- British English dictionary words for /usr/share/dict
-
- dep: wbritish-insane
- British English dictionary words for /usr/share/dict
-
- dep: wbritish-large
- British English dictionary words for /usr/share/dict
-
- dep: wbritish-small
- British English dictionary words for /usr/share/dict
-
- dep: wbulgarian
- Bulgarian dictionary words for /usr/share/dict
-
- dep: wcanadian
- Canadian English dictionary words for /usr/share/dict
-
- dep: wcanadian-huge
- Canadian English dictionary words for /usr/share/dict
-
- dep: wcanadian-insane
- Canadian English dictionary words for /usr/share/dict
-
- dep: wcanadian-large
- Canadian English dictionary words for /usr/share/dict
-
- dep: wcanadian-small
- Canadian English dictionary words for /usr/share/dict
-
- dep: wcatalan
- Catalan dictionary words for /usr/share/dict
-
- dep: weplab
- tool designed to break WEP keys
-
- dep: wesperanto
- Esperanto dictionary words for /usr/share/dict
-
- dep: wfaroese
- Faroese dictionary / wordlist
-
- dep: wfrench
- French dictionary words for /usr/share/dict
-
- dep: wgaelic
- Scots Gaelic word list
-
- dep: wgerman-medical
- German medical dictionary words for /usr/share/dict
-
- dep: whatweb
- Next generation web scanner
-
- dep: whois
- intelligent WHOIS client
-
- dep: wirish
- Irish (Gaeilge) dictionary words for /usr/share/dict
-
- dep: witalian
- Italian dictionary words for /usr/share/dict/
-
- dep: wmanx
- Manx Gaelic dictionary words for /usr/share/dict
-
- dep: wngerman
- Lista de palabras con la nueva ortografía alemana
-
- dep: wpolish
- palabras del diccionario de polaco para /usr/share/dict
-
- dep: wportuguese
- lista de palabras en portugués europeo
-
- dep: wspanish
- Spanish dictionary words for /usr/share/dict
-
- dep: wswedish
- Swedish dictionary words for /usr/share/dict
-
- dep: wswiss
- Swiss (German) orthography wordlist
-
- dep: wukrainian
- Ukrainian dictionary words for /usr/share/dict
-
- dep: wzip
- Compresión con pérdidas y suavizado de ruido
-
- dep: xva-img
- Citrix XenServer .xva disk extraction tool
-
- dep: xxd
- herramienta para hacer (o revertir) un volcado hexadecimal
-
- dep: xz-utils
- Utilidades de compresión del formato XZ
-
- dep: zpaq
- maximum reference compressor for ZPAQ open standard
-
- rec: cmospwd
- descifrar contraseñas BIOS desde CMOS
-
- rec: cupp
- generate dictionaries for attacks from personal data
-
- rec: dmidecode
- Decodificador de tabla SMBIOS/DMI
-
- rec: exfatprogs
- exFAT file system utilities
-
- rec: guestfs-tools
- guest disk image management system - tools
-
- rec: hping3
- Active Network Smashing Tool
-
- rec: ree
- extract ROM extensions
-
- rec: sipgrep
- command line tool to sniff, capture, display SIP messages
-
- rec: tcpflow
- TCP flow recorder
also a virtual package provided by tcpflow-nox
-
- rec: tcpreplay
- Tool to replay saved tcpdump files at arbitrary speeds
-
- sug: clamav
- anti-virus utility for Unix - command-line interface
-
- sug: dns-flood-detector
- detect abusive usage levels on high traffic nameservers
-
- sug: droopy
- mini web server to let others upload files to your computer
-
- sug: forensics-all
- Debian Forensics Environment - essential components (metapackage)
-
- sug: forensics-all-gui
- Debian Forensics Environment - GUI components (metapackage)
-
- sug: forensics-extra-gui
- Forensics Environment - extra GUI components (metapackage)
-
- sug: forensics-full
- Full forensics station (metapackage)
-
- sug: grub-rescue-pc
- GRUB bootable rescue images, version 2 (PC/BIOS version)
-
- sug: isoqlog
- Mail Transport Agent log analysis program
-
- sug: mdadm
- tool for managing Linux MD devices (software RAID)
-
- sug: systemd-bootchart
- boot performance graphing tool
-
- sug: xlsx2csv
- convert xlsx files to csv format
Download forensics-extra
Architecture | Package Size | Installed Size | Files |
---|---|---|---|
all | 11.0 kB | 16.0 kB | [list of files] |