[Forensics-changes] [volatility] 01/01: * New binary: - Created volatility-tools to provide, separately, the code used to generate profiles to Volatility. - Added the volatility-tools.dirs file to provides /usr/src/volatility-tools. - Added a README.Debian to talk about the profiles creation process. - Renamed debian/docs to debian/volatility.docs; debian/links to volatility.links; manpages to volatility.manpages. - Updated the debian/rules file. * debian/control: - Added volatility-tools and yara as volatility dependency. - Added volatility-profiles as volatility recommendation. - Bumped Standards-Version from 3.9.4 to 3.9.5. * debian/copyright: - Added Michael Prokop to maintainers. - Updated the packaging years. * debian/watch: improved.
Eriberto Mota
eriberto-guest at moszumanska.debian.org
Fri Jan 17 10:10:22 UTC 2014
This is an automated email from the git hooks/post-receive script.
eriberto-guest pushed a commit to branch debian
in repository volatility.
commit 4fd9584918d6c217853b0aa4776017115ea1bd53
Author: Joao Eriberto Mota Filho <eriberto at eriberto.pro.br>
Date: Fri Jan 17 08:09:55 2014 -0200
* New binary:
- Created volatility-tools to provide, separately, the code used to
generate profiles to Volatility.
- Added the volatility-tools.dirs file to provides
/usr/src/volatility-tools.
- Added a README.Debian to talk about the profiles creation process.
- Renamed debian/docs to debian/volatility.docs; debian/links to
volatility.links; manpages to volatility.manpages.
- Updated the debian/rules file.
* debian/control:
- Added volatility-tools and yara as volatility dependency.
- Added volatility-profiles as volatility recommendation.
- Bumped Standards-Version from 3.9.4 to 3.9.5.
* debian/copyright:
- Added Michael Prokop to maintainers.
- Updated the packaging years.
* debian/watch: improved.
---
debian/changelog | 22 ++++++++++++++++++++++
debian/control | 20 +++++++++++++++++---
debian/copyright | 3 ++-
debian/links | 1 -
debian/rules | 5 +++++
debian/volatility-tools.README.Debian | 23 +++++++++++++++++++++++
debian/volatility-tools.dirs | 1 +
debian/{docs => volatility.docs} | 0
debian/volatility.links | 2 ++
debian/{manpages => volatility.manpages} | 0
debian/watch | 2 +-
11 files changed, 73 insertions(+), 6 deletions(-)
diff --git a/debian/changelog b/debian/changelog
index 1f3baa7..6d5c17a 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,25 @@
+volatility (2.3.1-2) experimental; urgency=medium
+
+ * New binary:
+ - Created volatility-tools to provide, separately, the code used to
+ generate profiles to Volatility.
+ - Added the volatility-tools.dirs file to provides
+ /usr/src/volatility-tools.
+ - Added a README.Debian to talk about the profiles creation process.
+ - Renamed debian/docs to debian/volatility.docs; debian/links to
+ volatility.links; manpages to volatility.manpages.
+ - Updated the debian/rules file.
+ * debian/control:
+ - Added volatility-tools and yara as volatility dependency.
+ - Added volatility-profiles as volatility recommendation.
+ - Bumped Standards-Version from 3.9.4 to 3.9.5.
+ * debian/copyright:
+ - Added Michael Prokop to maintainers.
+ - Updated the packaging years.
+ * debian/watch: improved.
+
+ -- Joao Eriberto Mota Filho <eriberto at eriberto.pro.br> Tue, 07 Jan 2014 15:36:52 -0200
+
volatility (2.3.1-1) unstable; urgency=low
* Initial release (Closes: #728251)
diff --git a/debian/control b/debian/control
index 05d2721..f8b72d8 100644
--- a/debian/control
+++ b/debian/control
@@ -5,15 +5,17 @@ Maintainer: Debian Forensics <forensics-devel at lists.alioth.debian.org>
Uploaders: Joao Eriberto Mota Filho <eriberto at eriberto.pro.br>, Michael Prokop <mika at debian.org>
Build-Depends: debhelper (>= 9), python
X-Python-Version: >= 2.6
-Standards-Version: 3.9.4
+Standards-Version: 3.9.5
Homepage: https://code.google.com/p/volatility
-Vcs-Git: git://anonscm.debian.org/forensics/volatility.git
+Vcs-Git: git://anonscm.debian.org/collab-maint/volatility.git
Vcs-Browser: http://anonscm.debian.org/gitweb/?p=forensics/volatility.git;a=summary
Package: volatility
Architecture: all
Suggests: lime-forensics-dmks, libraw1394-11
-Depends: ${misc:Depends}, ${python:Depends}, python-crypto, python-imaging, python-openpyxl
+Depends: ${misc:Depends}, ${python:Depends}, python-crypto, python-imaging,
+ python-openpyxl, volatility-tools, yara
+Recommends: volatility-profiles
Description: advanced memory forensics framework
The Volatility Framework is a completely open collection of tools for the
extraction of digital artifacts from volatile memory (RAM) samples. It is
@@ -46,3 +48,15 @@ Description: advanced memory forensics framework
- Command histories.
- Passwords, as LM/NTLM hashes and LSA secrets.
- Others.
+
+Package: volatility-tools
+Architecture: all
+Depends: ${misc:Depends}, dwarfdump
+Suggests: gcc, linux-headers, make, zip
+Description: generate profiles to Volatility Framework
+ The Volatility Framework is a completely open collection of tools for the
+ extraction of digital artifacts from volatile memory (RAM) samples. It is
+ useful in forensics analysis.
+ .
+ This package provides the code used to generate Linux and MAC profiles to
+ Volatility.
diff --git a/debian/copyright b/debian/copyright
index f6317a1..3efbde4 100644
--- a/debian/copyright
+++ b/debian/copyright
@@ -40,7 +40,8 @@ License: GPL-2.0+ or Apache-2.0
Files: debian/*
-Copyright: 2013 Joao Eriberto Mota Filho <eriberto at eriberto.pro.br>
+Copyright: 2013 Michael Prokop <mika at debian.org>
+ 2013-2014 Joao Eriberto Mota Filho <eriberto at eriberto.pro.br>
License: GPL-2.0
diff --git a/debian/links b/debian/links
deleted file mode 100644
index 6f80d3a..0000000
--- a/debian/links
+++ /dev/null
@@ -1 +0,0 @@
-/usr/share/volatility/vol.py /usr/bin/volatility
diff --git a/debian/rules b/debian/rules
index d17c334..37150ee 100755
--- a/debian/rules
+++ b/debian/rules
@@ -2,6 +2,7 @@
#export DH_VERBOSE=1
DESTDIR=$(CURDIR)/debian/volatility
+DESTDIR2=$(CURDIR)/debian/volatility-tools
%:
dh $@ --parallel --with python2
@@ -9,5 +10,9 @@ DESTDIR=$(CURDIR)/debian/volatility
override_dh_auto_install:
python setup.py install --root=debian/volatility --install-layout=deb --install-scripts=/usr/share/volatility --install-data=/usr/share/volatility
+# volatility-tools package:
+ mv $(DESTDIR)/usr/share/volatility/tools/* $(DESTDIR2)/usr/src/volatility-tools
+ rm -rf $(DESTDIR)/usr/share/volatility/tools
+
# Recommended line:
override_dh_auto_build:
diff --git a/debian/volatility-tools.README.Debian b/debian/volatility-tools.README.Debian
new file mode 100644
index 0000000..293df5c
--- /dev/null
+++ b/debian/volatility-tools.README.Debian
@@ -0,0 +1,23 @@
+volatility-tools for Debian
+---------------------------
+
+To generate a profile to a Linux version, follow these steps:
+
+1. Log in the system that is using the target kernel.
+2. Install gcc, make, zip and the linux-headers-(?) packages.
+3. Go to /usr/src/volatility-tools/linux.
+4. Run 'make' command.
+5. Run 'zip profile-name-to-use.zip module.dwarf /boot/System.map-(?)'
+6. Copy the zip file to volatility profiles folder. Use the
+ 'dpkg -L volatility-profiles' command to find the folder.
+7. Use the command 'volatility --info | grep Linux' to see if the profile
+ was recognised.
+
+PS: In commands, (?) must be replaced by the correct option.
+
+To see more about profiles, go to
+https://code.google.com/p/volatility/wiki/LinuxMemoryForensics
+
+Thanks.
+
+ -- Joao Eriberto Mota Filho <eriberto at eriberto.pro.br> Tue, 07 Jan 2014 16:52:30 -0200
diff --git a/debian/volatility-tools.dirs b/debian/volatility-tools.dirs
new file mode 100644
index 0000000..cd6aa27
--- /dev/null
+++ b/debian/volatility-tools.dirs
@@ -0,0 +1 @@
+usr/src/volatility-tools
diff --git a/debian/docs b/debian/volatility.docs
similarity index 100%
rename from debian/docs
rename to debian/volatility.docs
diff --git a/debian/volatility.links b/debian/volatility.links
new file mode 100644
index 0000000..a0f9f17
--- /dev/null
+++ b/debian/volatility.links
@@ -0,0 +1,2 @@
+/usr/share/volatility/vol.py /usr/bin/volatility
+/usr/src/volatility-tools /usr/share/volatility/tools
diff --git a/debian/manpages b/debian/volatility.manpages
similarity index 100%
rename from debian/manpages
rename to debian/volatility.manpages
diff --git a/debian/watch b/debian/watch
index 9756c60..ba6648b 100644
--- a/debian/watch
+++ b/debian/watch
@@ -1,2 +1,2 @@
version=3
-https://code.google.com/p/volatility/downloads/list .*name=volatility-(\d.*)\.tar\.gz.*
+https://code.google.com/p/volatility/downloads/list .*name=volatility-(\d\S*)\.tar\.gz.*
--
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/forensics/volatility.git
More information about the forensics-changes
mailing list