[gentoo-commits] repo/gentoo:master commit in: app-forensics/volatility3/

public inbox for gentoo-commits@lists.gentoo.org
 help / color / mirror / Atom feed

From: "Sam James" <sam@gentoo.org>
To: gentoo-commits@lists.gentoo.org
Subject: [gentoo-commits] repo/gentoo:master commit in: app-forensics/volatility3/
Date: Tue,  5 Apr 2022 03:33:45 +0000 (UTC)	[thread overview]
Message-ID: <1649129056.e9333203c1f3a669342184cc1eca695da4b0f519.sam@gentoo> (raw)

commit:     e9333203c1f3a669342184cc1eca695da4b0f519
Author:     Mario Haustein <mario.haustein <AT> hrz <DOT> tu-chemnitz <DOT> de>
AuthorDate: Sun Jan 16 13:19:31 2022 +0000
Commit:     Sam James <sam <AT> gentoo <DOT> org>
CommitDate: Tue Apr  5 03:24:16 2022 +0000
URL:        https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=e9333203

app-forensics/volatility3: new ebuild

Package-Manager: Portage-3.0.28, Repoman-3.0.3
Signed-off-by: Mario Haustein <mario.haustein <AT> hrz.tu-chemnitz.de>
Signed-off-by: Sam James <sam <AT> gentoo.org>

 app-forensics/volatility3/Manifest                 |  1 +
 app-forensics/volatility3/metadata.xml             | 29 ++++++++++++++++++++
 app-forensics/volatility3/volatility3-2.0.0.ebuild | 31 ++++++++++++++++++++++
 3 files changed, 61 insertions(+)

diff --git a/app-forensics/volatility3/Manifest b/app-forensics/volatility3/Manifest
new file mode 100644
index 000000000000..696d54487e62
--- /dev/null
+++ b/app-forensics/volatility3/Manifest
@@ -0,0 +1 @@
+DIST volatility3-2.0.0.tar.gz 427713 BLAKE2B c88f44ad033094c7dbab703d3b5f296bb5329bfb13e375715d79616d042d68f828a895b34be07b48368f33dfab80f063f98bfd1a27c07b6ab2b40ba850dfd673 SHA512 e3ed4f05641af5315f01edd4d0afb608b2d1c8fea49a8d8b4e16b47fd10a3cd25f5c39750374801ec72c5ee8ddc3680f6a68d88a09a40faf166fd8ef1098bbef

diff --git a/app-forensics/volatility3/metadata.xml b/app-forensics/volatility3/metadata.xml
new file mode 100644
index 000000000000..edbcd55f84f9
--- /dev/null
+++ b/app-forensics/volatility3/metadata.xml
@@ -0,0 +1,29 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE pkgmetadata SYSTEM "https://www.gentoo.org/dtd/metadata.dtd">
+<pkgmetadata>
+	<maintainer type="person" proxied="yes">
+		<email>mario.haustein@hrz.tu-chemnitz.de</email>
+		<name>Mario Haustein</name>
+	</maintainer>
+	<maintainer type="person">
+		<email>sam@gentoo.org</email>
+		<name>Sam James</name>
+	</maintainer>
+	<longdescription>
+		Volatility is the world's most widely used framework for extracting
+		digital artifacts from volatile memory (RAM) samples. The extraction
+		techniques are performed completely independent of the system being
+		investigated but offer visibility into the runtime state of the system.
+	</longdescription>
+	<use>
+		<flag name='crypt'>support plugins that decrypt passwords, password hashes, etc.</flag>
+		<flag name='disasm'>support plugins that perform malware analysis and disassemble code</flag>
+		<flag name='jsonschema'>improve error messages regarding improperly configured ISF files</flag>
+		<flag name='leechcore'>support memory acquisition via leechcore</flag>
+		<flag name='snappy'>support AVMLs native compression format</flag>
+		<flag name='yara'>support YARA pattern matching engine</flag>
+	</use>
+	<upstream>
+		<remote-id type="github">volatilityfoundation/volatility3</remote-id>
+	</upstream>
+</pkgmetadata>

diff --git a/app-forensics/volatility3/volatility3-2.0.0.ebuild b/app-forensics/volatility3/volatility3-2.0.0.ebuild
new file mode 100644
index 000000000000..e36930a8b1a5
--- /dev/null
+++ b/app-forensics/volatility3/volatility3-2.0.0.ebuild
@@ -0,0 +1,31 @@
+# Copyright 1999-2022 Gentoo Authors
+# Distributed under the terms of the GNU General Public License v2
+
+EAPI=8
+
+PYTHON_COMPAT=( python3_{8..10} )
+
+inherit distutils-r1
+
+MY_PV=${PV//_beta/-beta.}
+
+DESCRIPTION="Framework for analyzing volatile memory"
+HOMEPAGE="https://github.com/volatilityfoundation/volatility3/ https://www.volatilityfoundation.org/"
+SRC_URI="https://github.com/volatilityfoundation/volatility3/archive/v${MY_PV}.tar.gz -> ${P}.tar.gz"
+S="${WORKDIR}"/${PN}-${MY_PV}
+
+LICENSE="GPL-2+"
+SLOT="0"
+KEYWORDS="~amd64 ~x86"
+IUSE="crypt disasm jsonschema leechcore snappy yara"
+
+RDEPEND="
+	>=dev-python/pefile-2017.8.1[${PYTHON_USEDEP}]
+	crypt? ( >=dev-python/pycryptodome-3[${PYTHON_USEDEP}] )
+	disasm? ( >=dev-libs/capstone-3.0.5[python,${PYTHON_USEDEP}] )
+	jsonschema? ( >=dev-python/jsonschema-2.3.0[${PYTHON_USEDEP}] )
+	leechcore? ( >=dev-python/leechcorepyc-2.4.0[${PYTHON_USEDEP}] )
+	snappy? ( >=dev-python/snappy-0.6.0[${PYTHON_USEDEP}] )
+	yara? ( >=dev-python/yara-python-3.8.0[${PYTHON_USEDEP}] )
+"
+DEPEND="${RDEPEND}"

next             reply	other threads:[~2022-04-05  3:33 UTC|newest]

Thread overview: 34+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2022-04-05  3:33 Sam James [this message]
  -- strict thread matches above, loose matches on Subject: below --
2022-04-05  3:33 [gentoo-commits] repo/gentoo:master commit in: app-forensics/volatility3/ Sam James
2022-04-05  3:33 Sam James
2022-04-10 17:01 Sam James
2022-08-04 22:53 Sam James
2022-08-04 22:53 Sam James
2022-12-15  4:44 Sam James
2022-12-16 22:57 Sam James
2022-12-16 22:57 Sam James
2023-02-25 22:23 Sam James
2023-04-25  1:57 Sam James
2023-05-01  8:34 Sam James
2023-05-01  8:34 Sam James
2023-05-26  7:15 Sam James
2023-09-17  5:19 Arthur Zamarin
2023-09-18  7:40 Sam James
2023-09-18  7:40 Sam James
2024-03-08  9:44 Arthur Zamarin
2024-04-23 20:38 Sam James
2024-04-24 17:24 Arthur Zamarin
2024-05-30 15:01 Arthur Zamarin
2024-06-30 18:34 Arthur Zamarin
2024-06-30 19:41 Sam James
2024-12-01 12:42 Sam James
2024-12-01 12:42 Sam James
2024-12-01 12:42 Sam James
2025-01-12 13:16 Sam James
2025-01-12 13:16 Sam James
2025-02-19 11:14 Sam James
2025-02-19 11:14 Sam James
2025-02-19 11:14 Sam James
2025-02-19 22:21 Sam James
2025-02-19 22:21 Sam James
2025-03-22  9:20 Arthur Zamarin

find likely ancestor, descendant, or conflicting patches for this message:
( dfblob:696d54487e6 dfblob:edbcd55f84f dfblob:e36930a8b1a )
 OR (
bs:"[gentoo-commits] repo/gentoo:master commit in: app-forensics/volatility3/" )
	(help)

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=1649129056.e9333203c1f3a669342184cc1eca695da4b0f519.sam@gentoo \
    --to=sam@gentoo.org \
    --cc=gentoo-commits@lists.gentoo.org \
    --cc=gentoo-dev@lists.gentoo.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox