mikas blog » Blog Archive » The #newinwheezy game: new forensic packages in Debian/wheezy

The #newinwheezy game: new forensic packages in Debian/wheezy

Debian/wheezy includes a bunch of packages for people interested in digital forensics. The packages maintained within the Debian Forensics team which are shipped with the upcoming Debian/wheezy stable release for the first time in a Debian release are:

dc3dd: patched version of GNU dd with forensic features
extundelete: utility to recover deleted files from ext3/ext4 partition
rephrase: Specialized passphrase recovery tool for GnuPG
~~rkhunter: rootkit, backdoor, sniffer and exploit scanner~~ (see comments)
rsakeyfind: locates BER-encoded RSA private keys in memory images
undbx: Tool to extract, recover and undelete e-mail messages from .dbx files

Join the #newinwheezy game and present packages which are new in Debian/wheezy.

This entry was posted by mika on Monday, April 29th, 2013 at 11:55 and is filed under Computer, Debian, English. You can follow any responses to this entry through the RSS 2.0 feed. Both comments and pings are currently closed.

4 Responses to “The #newinwheezy game: new forensic packages in Debian/wheezy”

Sebastian Says:
April 29th, 2013 at 12:24
Actually, rkhunter was already available in squeeze: http://packages.debian.org/squeeze/rkhunter

IIRC I had it installed as early as etch, but I might be wrong about that.
mika Says:
April 29th, 2013 at 12:26
@Sebastian: ah you’re right, thanks for pointing it out :)
Florian Says:
April 29th, 2013 at 13:26
Was actually going to add that I was quite sure about having installed rkhunter earlier as well :)

Very good idea to highlight these new packages anyway.
J. Says:
April 30th, 2013 at 17:44
rsakeyfind is not new either.