[Forensics-changes] [volatility] 01/01: * New binary: - Created volatility-tools to provide, separately, the code used to generate profiles to Volatility. - Added the volatility-tools.dirs file to provides /usr/src/volatility-tools. - Added a README.Debian to talk about the profiles creation process. - Renamed debian/docs to debian/volatility.docs; debian/links to volatility.links; manpages to volatility.manpages. - Updated the debian/rules file. * debian/control: - Added volatility-tools and yara as volatility dependency. - Added volatility-profiles as volatility recommendation. - Bumped Standards-Version from 3.9.4 to 3.9.5. * debian/copyright: - Added Michael Prokop to maintainers. - Updated the packaging years. * debian/watch: improved.

[Eriberto Mota]

This is an automated email from the git hooks/post-receive script.

eriberto-guest pushed a commit to branch debian
in repository volatility.

commit 4fd9584918d6c217853b0aa4776017115ea1bd53
Author: Joao Eriberto Mota Filho <eriberto at eriberto.pro.br>
Date:   Fri Jan 17 08:09:55 2014 -0200

      * New binary:
          - Created volatility-tools to provide, separately, the code used to
            generate profiles to Volatility.
          - Added the volatility-tools.dirs file to provides
            /usr/src/volatility-tools.
          - Added a README.Debian to talk about the profiles creation process.
          - Renamed debian/docs to debian/volatility.docs; debian/links to
            volatility.links; manpages to volatility.manpages.
          - Updated the debian/rules file.
      * debian/control:
          - Added volatility-tools and yara as volatility dependency.
          - Added volatility-profiles as volatility recommendation.
          - Bumped Standards-Version from 3.9.4 to 3.9.5.
      * debian/copyright:
          - Added Michael Prokop to maintainers.
          - Updated the packaging years.
      * debian/watch: improved.
---
 debian/changelog                         | 22 ++++++++++++++++++++++
 debian/control                           | 20 +++++++++++++++++---
 debian/copyright                         |  3 ++-
 debian/links                             |  1 -
 debian/rules                             |  5 +++++
 debian/volatility-tools.README.Debian    | 23 +++++++++++++++++++++++
 debian/volatility-tools.dirs             |  1 +
 debian/{docs => volatility.docs}         |  0
 debian/volatility.links                  |  2 ++
 debian/{manpages => volatility.manpages} |  0
 debian/watch                             |  2 +-
 11 files changed, 73 insertions(+), 6 deletions(-)

diff --git a/debian/changelog b/debian/changelog
index 1f3baa7..6d5c17a 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,25 @@
+volatility (2.3.1-2) experimental; urgency=medium
+
+  * New binary:
+      - Created volatility-tools to provide, separately, the code used to
+        generate profiles to Volatility.
+      - Added the volatility-tools.dirs file to provides
+        /usr/src/volatility-tools.
+      - Added a README.Debian to talk about the profiles creation process.
+      - Renamed debian/docs to debian/volatility.docs; debian/links to
+        volatility.links; manpages to volatility.manpages.
+      - Updated the debian/rules file.
+  * debian/control:
+      - Added volatility-tools and yara as volatility dependency.
+      - Added volatility-profiles as volatility recommendation.
+      - Bumped Standards-Version from 3.9.4 to 3.9.5.
+  * debian/copyright:
+      - Added Michael Prokop to maintainers.
+      - Updated the packaging years.
+  * debian/watch: improved.
+
+ -- Joao Eriberto Mota Filho <eriberto at eriberto.pro.br>  Tue, 07 Jan 2014 15:36:52 -0200
+
 volatility (2.3.1-1) unstable; urgency=low
 
   * Initial release (Closes: #728251)
diff --git a/debian/control b/debian/control
index 05d2721..f8b72d8 100644
--- a/debian/control
+++ b/debian/control
@@ -5,15 +5,17 @@ Maintainer: Debian Forensics <forensics-devel at lists.alioth.debian.org>
 Uploaders: Joao Eriberto Mota Filho <eriberto at eriberto.pro.br>, Michael Prokop <mika at debian.org>
 Build-Depends: debhelper (>= 9), python
 X-Python-Version: >= 2.6
-Standards-Version: 3.9.4
+Standards-Version: 3.9.5
 Homepage: https://code.google.com/p/volatility
-Vcs-Git: git://anonscm.debian.org/forensics/volatility.git
+Vcs-Git: git://anonscm.debian.org/collab-maint/volatility.git
 Vcs-Browser: http://anonscm.debian.org/gitweb/?p=forensics/volatility.git;a=summary
 
 Package: volatility
 Architecture: all
 Suggests: lime-forensics-dmks, libraw1394-11
-Depends: ${misc:Depends}, ${python:Depends}, python-crypto, python-imaging, python-openpyxl
+Depends: ${misc:Depends}, ${python:Depends}, python-crypto, python-imaging,
+         python-openpyxl, volatility-tools, yara
+Recommends: volatility-profiles
 Description: advanced memory forensics framework
  The Volatility Framework is a completely open collection of tools for the
  extraction of digital artifacts from volatile memory (RAM) samples. It is
@@ -46,3 +48,15 @@ Description: advanced memory forensics framework
     - Command histories.
     - Passwords, as LM/NTLM hashes and LSA secrets.
     - Others.
+
+Package: volatility-tools
+Architecture: all
+Depends: ${misc:Depends}, dwarfdump
+Suggests: gcc, linux-headers, make, zip
+Description: generate profiles to Volatility Framework
+ The Volatility Framework is a completely open collection of tools for the
+ extraction of digital artifacts from volatile memory (RAM) samples. It is
+ useful in forensics analysis.
+ .
+ This package provides the code used to generate Linux and MAC profiles to
+ Volatility.
diff --git a/debian/copyright b/debian/copyright
index f6317a1..3efbde4 100644
--- a/debian/copyright
+++ b/debian/copyright
@@ -40,7 +40,8 @@ License: GPL-2.0+ or Apache-2.0
 
 
 Files: debian/*
-Copyright: 2013 Joao Eriberto Mota Filho <eriberto at eriberto.pro.br>
+Copyright: 2013      Michael Prokop <mika at debian.org>
+           2013-2014 Joao Eriberto Mota Filho <eriberto at eriberto.pro.br>
 License: GPL-2.0
 
 
diff --git a/debian/links b/debian/links
deleted file mode 100644
index 6f80d3a..0000000
--- a/debian/links
+++ /dev/null
@@ -1 +0,0 @@
-/usr/share/volatility/vol.py /usr/bin/volatility
diff --git a/debian/rules b/debian/rules
index d17c334..37150ee 100755
--- a/debian/rules
+++ b/debian/rules
@@ -2,6 +2,7 @@
 #export DH_VERBOSE=1
 
 DESTDIR=$(CURDIR)/debian/volatility
+DESTDIR2=$(CURDIR)/debian/volatility-tools
 
 %:
 	dh $@ --parallel --with python2
@@ -9,5 +10,9 @@ DESTDIR=$(CURDIR)/debian/volatility
 override_dh_auto_install:
 	python setup.py install --root=debian/volatility --install-layout=deb --install-scripts=/usr/share/volatility --install-data=/usr/share/volatility
 
+#	volatility-tools package:
+	mv $(DESTDIR)/usr/share/volatility/tools/* $(DESTDIR2)/usr/src/volatility-tools
+	rm -rf $(DESTDIR)/usr/share/volatility/tools
+
 # Recommended line:
 override_dh_auto_build:
diff --git a/debian/volatility-tools.README.Debian b/debian/volatility-tools.README.Debian
new file mode 100644
index 0000000..293df5c
--- /dev/null
+++ b/debian/volatility-tools.README.Debian
@@ -0,0 +1,23 @@
+volatility-tools for Debian
+---------------------------
+
+To generate a profile to a Linux version, follow these steps:
+
+1. Log in the system that is using the target kernel.
+2. Install gcc, make, zip and the linux-headers-(?) packages.
+3. Go to /usr/src/volatility-tools/linux.
+4. Run 'make' command.
+5. Run 'zip profile-name-to-use.zip module.dwarf /boot/System.map-(?)'
+6. Copy the zip file to volatility profiles folder. Use the
+   'dpkg -L volatility-profiles' command to find the folder.
+7. Use the command 'volatility --info | grep Linux' to see if the profile
+   was recognised.
+
+PS: In commands, (?) must be replaced by the correct option.
+
+To see more about profiles, go to
+https://code.google.com/p/volatility/wiki/LinuxMemoryForensics
+
+Thanks.
+
+ -- Joao Eriberto Mota Filho <eriberto at eriberto.pro.br>  Tue, 07 Jan 2014 16:52:30 -0200
diff --git a/debian/volatility-tools.dirs b/debian/volatility-tools.dirs
new file mode 100644
index 0000000..cd6aa27
--- /dev/null
+++ b/debian/volatility-tools.dirs
@@ -0,0 +1 @@
+usr/src/volatility-tools
diff --git a/debian/docs b/debian/volatility.docs
similarity index 100%
rename from debian/docs
rename to debian/volatility.docs
diff --git a/debian/volatility.links b/debian/volatility.links
new file mode 100644
index 0000000..a0f9f17
--- /dev/null
+++ b/debian/volatility.links
@@ -0,0 +1,2 @@
+/usr/share/volatility/vol.py /usr/bin/volatility
+/usr/src/volatility-tools /usr/share/volatility/tools
diff --git a/debian/manpages b/debian/volatility.manpages
similarity index 100%
rename from debian/manpages
rename to debian/volatility.manpages
diff --git a/debian/watch b/debian/watch
index 9756c60..ba6648b 100644
--- a/debian/watch
+++ b/debian/watch
@@ -1,2 +1,2 @@
 version=3
-https://code.google.com/p/volatility/downloads/list .*name=volatility-(\d.*)\.tar\.gz.*
+https://code.google.com/p/volatility/downloads/list .*name=volatility-(\d\S*)\.tar\.gz.*

-- 
Alioth's /usr/local/bin/git-commit-notice on /srv/git.debian.org/git/forensics/volatility.git