[Forensics-changes] [volatility] 02/02: Import Debian changes 2.6+git20170711.b3db0cc-1
Joao Eriberto Mota Filho
eriberto at moszumanska.debian.org
Tue Jul 25 12:12:05 UTC 2017
This is an automated email from the git hooks/post-receive script.
eriberto pushed a commit to branch debian
in repository volatility.
commit 4c7e23c04906be561c0b9aa52cf90e0f4f86895f
Merge: 46c80f3 07cbdb2
Author: Joao Eriberto Mota Filho <eriberto at debian.org>
Date: Wed Jul 19 20:03:25 2017 -0300
Import Debian changes 2.6+git20170711.b3db0cc-1
volatility (2.6+git20170711.b3db0cc-1) unstable; urgency=medium
* New upstream release.
* debian/control:
- Bumped Standards-Version to 4.0.0.
- Replaced python-imaging wth python-pil in Depends field.
Thanks to Matthias Klose <doko at debian.org> (Closes: #866492)
* debian/copyright: updated the upstream copyright years.
README.txt | 2 +-
debian/changelog | 13 +-
debian/control | 4 +-
debian/copyright | 2 +-
volatility/dwarf.py | 3 +-
volatility/plugins/addrspaces/amd64.py | 10 +-
volatility/plugins/bigpagepools.py | 2 +-
volatility/plugins/gui/windows.py | 19 +
volatility/plugins/imageinfo.py | 2 +-
volatility/plugins/linux/arp.py | 12 +-
volatility/plugins/linux/aslr_shift.py | 10 +-
volatility/plugins/linux/common.py | 65 +-
volatility/plugins/linux/dmesg.py | 7 +-
volatility/plugins/linux/threads.py | 5 +-
volatility/plugins/mac/check_syscall_table.py | 5 +
volatility/plugins/mac/get_profile.py | 113 +-
volatility/plugins/mac/lsmod.py | 16 +
volatility/plugins/malware/malfind.py | 15 +
volatility/plugins/malware/svcscan.py | 54 +-
volatility/plugins/netscan.py | 16 +-
volatility/plugins/notepad.py | 47 +-
volatility/plugins/overlays/linux/elf.py | 32 +-
volatility/plugins/overlays/linux/linux.py | 256 +-
volatility/plugins/overlays/mac/mac.py | 114 +-
volatility/plugins/overlays/mac/macho.py | 17 +-
volatility/plugins/overlays/windows/kdbg_vtypes.py | 13 +-
volatility/plugins/overlays/windows/pe_vtypes.py | 6 +
.../plugins/overlays/windows/tcpip_vtypes.py | 86 +
volatility/plugins/overlays/windows/win10.py | 106 +-
.../overlays/windows/win10_x64_15063_vtypes.py | 13962 +++++++++++++++++++
.../overlays/windows/win10_x86_15063_vtypes.py | 13436 ++++++++++++++++++
volatility/plugins/overlays/windows/win8.py | 2 +-
volatility/plugins/overlays/windows/win8_kdbg.py | 62 +-
volatility/plugins/overlays/windows/windows.py | 5 +-
volatility/plugins/raw2dmp.py | 4 +
volatility/plugins/registry/printkey.py | 2 +-
volatility/plugins/taskmods.py | 8 +-
volatility/win32/rawreg.py | 15 +-
38 files changed, 28284 insertions(+), 264 deletions(-)
diff --cc debian/changelog
index 313a379,0000000..b71bbc9
mode 100644,000000..100644
--- a/debian/changelog
+++ b/debian/changelog
@@@ -1,267 -1,0 +1,278 @@@
++volatility (2.6+git20170711.b3db0cc-1) unstable; urgency=medium
++
++ * New upstream release.
++ * debian/control:
++ - Bumped Standards-Version to 4.0.0.
++ - Replaced python-imaging wth python-pil in Depends field.
++ Thanks to Matthias Klose <doko at debian.org> (Closes: #866492)
++ * debian/copyright: updated the upstream copyright years.
++
++ -- Joao Eriberto Mota Filho <eriberto at debian.org> Wed, 19 Jul 2017 20:03:25 -0300
++
+volatility (2.6-1) unstable; urgency=medium
+
+ * New upstream release.
+ * debian/control: updated the description.
+ * debian/copyright: updated the copyright packaging years.
+ * debian/manpage/: updated all files to generate an updated 2.6 manpage.
+
+ -- Joao Eriberto Mota Filho <eriberto at debian.org> Sun, 01 Jan 2017 18:52:44 -0200
+
+volatility (2.5+git20161224.736bc3a-1) unstable; urgency=medium
+
+ * New upstream release.
+ * debian/rules: added a rm command in override_dh_auto_install target to
+ remove the doxygen directory.
+ * debian/source/lintian-overrides: removed. The upstream no longer uses the
+ d3.js file directly.
+ * debian/watch: updated.
+
+ -- Joao Eriberto Mota Filho <eriberto at debian.org> Sun, 25 Dec 2016 22:35:44 -0200
+
+volatility (2.5+git20161121.ecd8a54-1) unstable; urgency=medium
+
+ * New upstream release.
+ * debian/watch: updated.
+
+ -- Joao Eriberto Mota Filho <eriberto at debian.org> Sat, 10 Dec 2016 00:02:28 -0200
+
+volatility (2.5+git20161026.75fb034-1) unstable; urgency=medium
+
+ * New upstream release.
+ * debian/patches/10_python-macos-interpreter.patch: removed. The upstream
+ fixed the source code. Thanks.
+
+ -- Joao Eriberto Mota Filho <eriberto at debian.org> Sun, 30 Oct 2016 11:58:56 -0200
+
+volatility (2.5+git20161021.19d1211-1) unstable; urgency=medium
+
+ * New upstream release. This release fixes partially an issue with Kernel
+ Linux 4.7. (see #839754)
+ * Bumped DH level to 10.
+ * Using GitHub project page as official upstream homepage.
+ * debian/control: updated the long description for volatility.
+ * debian/copyright: updated some upstream copyright dates.
+ * debian/manpages:
+ - Changed from genallman.sh to create-man.sh.
+ - Updated manpage as '2.6-pre' version.
+ * debian/patches/10_python-macos-interpreter.patch: added to provides an
+ interpreter for python in MacOs.
+ * debian/rules:
+ - Removed the --parallel option from dh.
+ - Removed the override_dh_auto_build target.
+ * debian/source/lintian-overrides: added to override a lintian mistake.
+ * debian/volatility-tools.README.Debian: updated.
+ * debian/watch: added a dversionmangle to ignore the current Git version.
+
+ -- Joao Eriberto Mota Filho <eriberto at debian.org> Sat, 22 Oct 2016 13:02:46 -0200
+
+volatility (2.5-2) unstable; urgency=medium
+
+ * debian/control:
+ - Bumped Standards-Version to 3.9.8.
+ - Fixed the name "openSUSE" in long description.
+ - Updated the Vcs-* fields to use https instead of http and git.
+ * debian/copyright: updated the packaging copyright years.
+ * debian/manpage/: updated the manpage. (Closes: #824438)
+ * debian/watch: bumped to version 4.
+
+ -- Joao Eriberto Mota Filho <eriberto at debian.org> Sun, 07 Aug 2016 18:54:34 -0300
+
+volatility (2.5-1) unstable; urgency=medium
+
+ * New upstream release.
+ * debian/clean: not needed. Removed.
+ * debian/control: updated the long description.
+ * debian/copyright:
+ - The upstream's README.txt says GPL-2+. So, updated the
+ license in debian/copyright.
+ - Relicensed the packaging to be compliant with upstream.
+ - Updated all information.
+ * debian/gbp.conf: not used by me... Removed.
+ * debian/manpage/:
+ - Updated the manpage.
+ - Updated the genallman.sh to v0.3.
+ * debian/source/options: not needed. Removed.
+ * debian/volatility.docs: added AUTHORS.txt and CREDITS.txt.
+
+ -- Joao Eriberto Mota Filho <eriberto at debian.org> Sat, 21 Nov 2015 12:01:43 -0200
+
+volatility (2.4.1-2) unstable; urgency=medium
+
+ * Upload to unstable. Welcome Jessie Stable.
+ * debian/control: fixed the extra spaces between lines. Thanks to
+ Davide Prina <davide.prina at gmail.com> (Closes: #768775)
+
+ -- Joao Eriberto Mota Filho <eriberto at debian.org> Wed, 29 Apr 2015 12:57:04 -0300
+
+volatility (2.4.1-1) experimental; urgency=medium
+
+ * New upstream release.
+ * debian/copyright:
+ - Removed the block 'Files: tools/linux/pmem/pmem.c'. The pmem no longer
+ exists in Volatility.
- - Removed not used 'Apache-2.0' licence text.
++ - Removed not used 'Apache-2.0' license text.
+ - Updated the packaging copyright years.
+ * debian/man/:
+ - Little adjustments in manpage.
+ - Renamed to debian/manpage/.
+ * debian/rules: added the override_auto_clean target to remove some files
+ forgotten by upstream.
+
+ -- Joao Eriberto Mota Filho <eriberto at debian.org> Mon, 23 Feb 2015 14:02:52 -0300
+
+volatility (2.4-4) unstable; urgency=medium
+
+ * Upload to unstable.
+ * debian/control: removed the Recommends field because volatility-profiles
+ no longer exists in unstable/testing (see #766895).
+
+ -- Joao Eriberto Mota Filho <eriberto at debian.org> Thu, 27 Nov 2014 23:17:36 -0200
+
+volatility (2.4-3) experimental; urgency=medium
+
+ * debian/copyright: added a new upstream site. See below.
+ * debian/watch: The Volatility Project replied me a recent email
+ message and the development site (GitHub) now uses tags.
+ Thanks a lot to Jamie Levy (gleeda).
+
+ -- Joao Eriberto Mota Filho <eriberto at debian.org> Thu, 20 Nov 2014 19:09:46 -0200
+
+volatility (2.4-2) experimental; urgency=medium
+
+ * debian/watch: added a fake site to explain about the current
+ status of the original upstream homepage.
+
+ -- Joao Eriberto Mota Filho <eriberto at debian.org> Tue, 18 Nov 2014 08:45:16 -0200
+
+volatility (2.4-1) unstable; urgency=medium
+
+ * New upstream release.
+ * debian/clean: added to remove some files generated by upstream when
+ building.
+ * debian/control:
+ - Added dh-python as build dependency.
+ - Added python-distorm3 and python-tz as install dependencies
+ to volatility binary.
+ - Fixed the name 'lime-forensics-dkms' in Suggests field.
+ - Following the upstream README, changed X-Python-Version from
+ >= 2.7 to 2.7.
+ - Improved the long description.
+ - Removed the volatility-profiles, a recommended package, from
+ volatility binary. This package is dead and will be removed
+ from Debian.
+ - Updated the Standards-Version from 3.9.5 to 3.9.6.
+ * debian/copyright:
+ - Updated the Source field.
+ - Updated the upstream names and copyright years.
+ * debian/man/:
+ - Changed the generator script from genman.sh to genallman.sh.
+ - Removed (now) useless file 'notes'.
+ - Updated the manpage.
+ * debian/volatility-tools.README.Debian: improved.
+ * debian/watch: deactivated because the new upstream site is using
+ resources that can't be monitored.
+
+ -- Joao Eriberto Mota Filho <eriberto at debian.org> Sat, 25 Oct 2014 17:15:53 -0300
+
+volatility (2.3.1-10) unstable; urgency=medium
+
+ * New maintainer email address.
+ * debian/control: updated the Vcs-Browser field.
+ * debian/man/:
+ - Added genman.sh to automate the manpage creation.
+ - Renamed volatility.1.header to header.txt.
+ * debian/volatility-tools.dirs: removed because the
+ volatility-tools.install file already creates the
+ directory.
+
+ -- Joao Eriberto Mota Filho <eriberto at debian.org> Fri, 08 Aug 2014 13:45:27 -0300
+
+volatility (2.3.1-9) unstable; urgency=medium
+
+ * debian/volatility-tools.README.Debian: updated the information about
+ the new profile folder.
+
+ -- Joao Eriberto Mota Filho <eriberto at eriberto.pro.br> Mon, 31 Mar 2014 20:30:41 -0300
+
+volatility (2.3.1-8) unstable; urgency=medium
+
+ * debian/control: fixed the Vcs-Git field. Thanks to
+ Mario Lang <mlang at debian.org> for report.
+ * debian/watch: improved.
+
+ -- Joao Eriberto Mota Filho <eriberto at eriberto.pro.br> Fri, 21 Feb 2014 08:29:47 -0300
+
+volatility (2.3.1-7) unstable; urgency=medium
+
+ * debian/control: moved python from Depends to Suggests field in
+ volatility-tools binary, to avoid unnecessary installs when
+ making a Linux profile only. It is a special case.
+
+ -- Joao Eriberto Mota Filho <eriberto at eriberto.pro.br> Fri, 31 Jan 2014 07:40:07 -0200
+
+volatility (2.3.1-6) unstable; urgency=medium
+
+ * debian/control: removed minimum python version from volatility-tools,
+ to allow the profile creation on old versions of the distributions.
+ * debian/volatility.lintian-overrides: useless; removed.
+
+ -- Joao Eriberto Mota Filho <eriberto at eriberto.pro.br> Thu, 30 Jan 2014 22:34:47 -0200
+
+volatility (2.3.1-5) unstable; urgency=medium
+
+ * debian/control:
+ - Added python as dependency in volatility-tools binary.
+ - Changed the minimum python version from 2.6 to 2.7 in
+ X-Python-Version field.
+ * debian/*.install: added to create the volatility and volatility-tools
+ packages.
+ * debian/rules:
+ - Changed in python setup line from --root=debian/volatility to
+ --root=debian/tmp.
+ - Removed the lines used to create the volatility-tool package.
+ This is made by debian/*.install files now.
+ - Removed the DESTDIR* lines.
+
+ -- Joao Eriberto Mota Filho <eriberto at eriberto.pro.br> Thu, 30 Jan 2014 14:12:34 -0200
+
+volatility (2.3.1-4) unstable; urgency=high
+
+ * debian/control: changed yara to python-yara as volatility dependency.
+
+ -- Joao Eriberto Mota Filho <eriberto at eriberto.pro.br> Sun, 26 Jan 2014 16:42:27 -0200
+
+volatility (2.3.1-3) unstable; urgency=medium
+
+ * Updated to unstable.
+ * debian/control: updated the long description.
+
+ -- Joao Eriberto Mota Filho <eriberto at eriberto.pro.br> Fri, 17 Jan 2014 08:11:48 -0200
+
+volatility (2.3.1-2) experimental; urgency=medium
+
+ * New binary:
+ - Created volatility-tools to provide, separately, the code used to
+ generate profiles to Volatility.
+ - Added the volatility-tools.dirs file to provides
+ /usr/src/volatility-tools.
+ - Added a README.Debian to talk about the profiles creation process.
+ - Renamed debian/docs to debian/volatility.docs; debian/links to
+ volatility.links; manpages to volatility.manpages.
+ - Updated the debian/rules file.
+ * debian/control:
+ - Added volatility-tools and yara as volatility dependency.
+ - Added volatility-profiles as volatility recommendation.
+ - Bumped Standards-Version from 3.9.4 to 3.9.5.
+ * debian/copyright:
+ - Added Michael Prokop to maintainers.
+ - Updated the packaging years.
+ * debian/watch: improved.
+
+ -- Joao Eriberto Mota Filho <eriberto at eriberto.pro.br> Tue, 07 Jan 2014 15:36:52 -0200
+
+volatility (2.3.1-1) unstable; urgency=low
+
+ * Initial release (Closes: #728251)
+
+ -- Joao Eriberto Mota Filho <eriberto at eriberto.pro.br> Sat, 02 Nov 2013 01:10:33 -0200
diff --cc debian/control
index 1963a89,0000000..9a57b4f
mode 100644,000000..100644
--- a/debian/control
+++ b/debian/control
@@@ -1,115 -1,0 +1,115 @@@
+Source: volatility
+Section: utils
+Priority: optional
+Maintainer: Debian Forensics <forensics-devel at lists.alioth.debian.org>
+Uploaders: Joao Eriberto Mota Filho <eriberto at debian.org>,
+ Michael Prokop <mika at debian.org>
+Build-Depends: debhelper (>= 10), dh-python, python
+X-Python-Version: 2.7
- Standards-Version: 3.9.8
++Standards-Version: 4.0.0
+Homepage: https://github.com/volatilityfoundation/volatility
+Vcs-Git: https://anonscm.debian.org/git/forensics/volatility.git
+Vcs-Browser: https://anonscm.debian.org/git/forensics/volatility.git
+
+Package: volatility
+Architecture: all
+Suggests: libraw1394-11, lime-forensics-dkms
+Depends: python-crypto,
+ python-distorm3,
- python-imaging,
+ python-openpyxl,
++ python-pil,
+ python-tz,
+ python-yara,
+ volatility-tools (>= 2.4.1-1),
+ ${misc:Depends},
+ ${python:Depends}
+Description: advanced memory forensics framework
+ The Volatility Framework is a completely open collection of tools for
+ the extraction of digital artifacts from volatile memory (RAM) samples.
+ It is useful in forensics analysis. The extraction techniques are
+ performed completely independent of the system being investigated but
+ offer unprecedented visibility into the runtime state of the system.
+ .
+ Volatility supports memory dumps from all major 32- and 64-bit Windows
+ versions and service packs. Whether your memory dump is in raw format,
+ a Microsoft crash dump, hibernation file, or virtual machine snapshot,
+ Volatility is able to work with it.
+ .
+ Linux memory dumps in raw or LiME format are supported too. There are
+ several plugins for analyzing memory dumps from 32- and 64-bit Linux
+ kernels and relevant distributions such as Debian, Ubuntu, openSUSE,
+ RedHat, Fedora, CentOS, Mandriva, etc.
+ .
+ Volatility also support several versions of Mac OSX memory dumps, both
+ 32- and 64-bit. Android phones with ARM processors are also supported.
+ .
+ These are some of the data that can be extracted from a memory image:
+ - Image information (date, time, CPU count);
+ - Running processes;
+ - Open network sockets and connections;
+ - OS kernel modules loaded;
+ - Memory maps for each process;
+ - Executables samples;
+ - Command history;
+ - Suspicious process mappings (i.e. injected code);
+ - Passwords, as LM/NTLM hashes and LSA secrets;
+ - Cached Truecrypt passphrases;
+ - Others.
+ .
+ Current version (2.6) supports investigations of the memory images from
+ the following operational systems:
+ - 32-bit Windows XP Service Pack 2 and 3
+ - 32-bit Windows 2003 Server Service Pack 0, 1, 2
+ - 32-bit Windows Vista Service Pack 0, 1, 2
+ - 32-bit Windows 2008 Server Service Pack 1, 2 (there is no SP0)
+ - 32-bit Windows 7 Service Pack 0, 1
+ - 32-bit Windows 8, 8.1, and 8.1 Update 1
+ - 32-bit Windows 10 (initial support)
+ - 64-bit Windows XP Service Pack 1 and 2 (there is no SP0)
+ - 64-bit Windows 2003 Server Service Pack 1 and 2 (there is no SP0)
+ - 64-bit Windows Vista Service Pack 0, 1, 2
+ - 64-bit Windows 2008 Server Service Pack 1 and 2 (there is no SP0)
+ - 64-bit Windows 2008 R2 Server Service Pack 0 and 1
+ - 64-bit Windows 7 Service Pack 0 and 1
+ - 64-bit Windows 8, 8.1, and 8.1 Update 1
+ - 64-bit Windows Server 2012 and 2012 R2
+ - 64-bit Windows 10 (including at least 10.0.14393)
+ - 64-bit Windows Server 2016 (including at least 10.0.14393.0)
+ - 32-bit Linux kernels 2.6.11 to 4.2.3
+ - 64-bit Linux kernels 2.6.11 to 4.2.3
+ - 32-bit 10.5.x Leopard (the only 64-bit 10.5 is Server, which isn't
+ supported)
+ - 32-bit 10.6.x Snow Leopard
+ - 64-bit 10.6.x Snow Leopard
+ - 32-bit 10.7.x Lion
+ - 64-bit 10.7.x Lion
+ - 64-bit 10.8.x Mountain Lion (there is no 32-bit version)
+ - 64-bit 10.9.x Mavericks (there is no 32-bit version)
+ - 64-bit 10.10.x Yosemite (there is no 32-bit version)
+ - 64-bit 10.11.x El Capitan (there is no 32-bit version)
+ - 64-bit 10.12.x Sierra (there is no 32-bit version)
+ .
+ Volatility supports a variety of sample file formats:
+ - Raw linear sample (dd)
+ - Hibernation file (from Windows 7 and earlier)
+ - Crash dump file
+ - VirtualBox ELF64 core dump
+ - VMware saved state and snapshot files
+ - EWF format (E01)
+ - LiME format
+ - Mach-O file format
+ - QEMU virtual machine dumps
+ - Firewire
+ - HPAK (FDPro)
+
+Package: volatility-tools
+Architecture: all
+Depends: ${misc:Depends}, dwarfdump
+Suggests: gcc, linux-headers, make, python, zip
+Description: generate profiles to Volatility Framework
+ The Volatility Framework is a completely open collection of tools for the
+ extraction of digital artifacts from volatile memory (RAM) samples. It is
+ useful in forensics analysis.
+ .
+ This package provides the code used to generate Linux and MAC profiles to
+ Volatility.
diff --cc debian/copyright
index 03b0ab7,0000000..de53828
mode 100644,000000..100644
--- a/debian/copyright
+++ b/debian/copyright
@@@ -1,105 -1,0 +1,105 @@@
+Format: http://www.debian.org/doc/packaging-manuals/copyright-format/1.0/
+Upstream-Name: volatility
+Upstream-Contact: Volatility Foundation <info at volatilityfoundation.org>
+Source: https://github.com/volatilityfoundation/volatility
+
+Files: *
+Copyright: ? Joe Sylve - joe.sylve at gmail.com
+ ? Matthieu (Matt) Suiche
+ ? Philippe Teuwen <phil at teuwen.org>
+ ? Santiago Vicente
+ 2004 Commonwealth of Australia <{scudette,daveco}@users.sf.net>
+ 2004-2007 4tphi Research <{npetroni,awalters}@4tphi.net>
+ 2004-2007 Nick L. Petroni <npetroni at 4tphi.net>
+ 2004-2013 AAron Walters <awalters at 4tphi.net>
+ 2007-2014 Brendan Dolan-Gavitt <bdolangavitt at wesleyan.edu>
+ 2007-2014 Michael Cohen <scudette at gmail.com>
+ 2007-2014 Mike Auty <mike.auty at gmail.com>
+ 2007-2014 Timothy D. Morgan
+ 2007-2016 Andrew Case <atcuno at gmail.com>
- 2007-2016 Volatility Foundation <info at volatilityfoundation.org>
++ 2007-2017 Volatility Foundation <info at volatilityfoundation.org>
+ 2009 Andreas Schuster <a.schuster at forensikblog.de>
+ 2010 Bradley Schatz <bradley at schatzforensic.com.au>
+ 2010-2012 Michael Hale Ligh <michael.ligh at mnin.org, michael.hale at gmail.com>
+ 2011-2013 Jamie Levy (Gleeda) <jamie.levy at gmail.com>
+ 2012 Nir Izraeli <nirizr at gmail.com>
+ 2012-2013 Cem Gurkok <cemgurkok at gmail.com>
+ 2014 CrowdStrike, Inc
+License: GPL-2+
+
+Files: volatility/plugins/addrspaces/crashbmp.py
+ volatility/plugins/drivermodule.py
+ volatility/plugins/dumpfiles.py
+ volatility/plugins/linux/bash_hash.py
+ volatility/plugins/linux/check_fops.py
+ volatility/plugins/linux/check_inline_kernel.py
+ volatility/plugins/linux/check_modules.py
+ volatility/plugins/linux/check_syscall.py
+ volatility/plugins/linux/find_file.py
+ volatility/plugins/linux/hidden_modules.py
+ volatility/plugins/linux/iomem.py
+ volatility/plugins/linux/kernel_opened_files.py
+ volatility/plugins/linux/keyboard_notifiers.py
+ volatility/plugins/linux/ld_env.py
+ volatility/plugins/linux/ldrmodules.py
+ volatility/plugins/linux/libc_env.py
+ volatility/plugins/linux/librarydump.py
+ volatility/plugins/linux/lime.py
+ volatility/plugins/linux/list_raw.py
+ volatility/plugins/linux/lsmod.py
+ volatility/plugins/linux/malfind.py
+ volatility/plugins/linux/netfilter.py
+ volatility/plugins/linux/procdump.py
+ volatility/plugins/linux/process_hollow.py
+ volatility/plugins/linux/proc_maps_rb.py
+ volatility/plugins/linux/psenv.py
+ volatility/plugins/linux/psxview.py
+ volatility/plugins/linux/recover_filesystem.py
+ volatility/plugins/linux/route_cache.py
+ volatility/plugins/mac/bash_env.py
+ volatility/plugins/mac/bash_hash.py
+ volatility/plugins/mac/compressed_swap.py
+ volatility/plugins/mac/dump_map.py
+ volatility/plugins/mac/ldrmodules.py
+ volatility/plugins/mac/list_raw.py
+ volatility/plugins/mac/malfind.py
+ volatility/plugins/mac/recover_filesystem.py
+ volatility/plugins/mac/threads.py
+ volatility/plugins/overlays/linux/linux.py
+ volatility/plugins/overlays/windows/crash_vtypes.py
+ volatility/plugins/overlays/windows/hibernate_vtypes.py
+ volatility/plugins/overlays/windows/pe_vtypes.py
+ volatility/plugins/overlays/windows/ssdt_vtypes.py
+ volatility/plugins/overlays/windows/vad_vtypes.py
+ volatility/plugins/overlays/windows/win10.py
+ volatility/plugins/overlays/windows/win8_kdbg.py
+ volatility/plugins/overlays/windows/win8.py
+ volatility/plugins/tcaudit.py
+ volatility/poolscan.py
+Copyright: 2007-2015 Volatility Foundation <info at volatilityfoundation.org>
+ 2010 Brendan Dolan-Gavitt <bdolangavitt at wesleyan.edu>
+ 2010-2014 Michael Ligh <michael.ligh at mnin.org>
+ 2011 Michael Cohen <scudette at gmail.com>
+License: GPL-2
+
+Files: debian/*
+Copyright: 2013 Michael Prokop <mika at debian.org>
+ 2013-2017 Joao Eriberto Mota Filho <eriberto at debian.org>
+License: GPL-2+
+
+License: GPL-2 or GPL-2+
+ This package is free software; you can redistribute it and/or modify
+ it under the terms of the GNU General Public License as published by
+ the Free Software Foundation; either version 2 of the License, or
+ (at your option) any later version.
+ .
+ This package is distributed in the hope that it will be useful,
+ but WITHOUT ANY WARRANTY; without even the implied warranty of
+ MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+ GNU General Public License for more details.
+ .
+ You should have received a copy of the GNU General Public License
+ along with this program. If not, see <http://www.gnu.org/licenses/>
+ .
+ On Debian systems, the complete text of the GNU General
+ Public License version 2 can be found in "/usr/share/common-licenses/GPL-2".
--
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/forensics/volatility.git
More information about the forensics-changes
mailing list