yafic is Yet Another File Integrity Checker. yafic saves
information about the state of a filesystem to a database.
Later, yafic can be used to compare the current state of
the filesystem against the saved database, letting you
know of any changed, added, or removed files.
"YARA is a tool aimed at helping malware researchers to identify and classify
malware samples. With YARA you can create descriptions of malware families
based on textual or binary patterns contained on samples of those families.
Each description consists of a set of strings and a Boolean expression which
determines its logic."
Jailkit is a set of utilities to limit user accounts to specific files
using chroot() and or specific commands. Setting up a chroot shell, a
shell limited to some specific command, or daemon inside a chroot jail
is a lot easier and can be automated using these utilities.
The klish is a framework for implementing a CISCO-like CLI on a UNIX systems.
UDisks2 service provides interfaces to enumerate
and perform operations on disks and storage devices
via D-Bus API. Bsdisks is an implementation of UDisks2
service for FreeBSD.
The aird daemon handles Apple IR receiver button events. If your system
has an USB Apple IR receiver, most likely you'll also have an Apple
Remote. An Apple remote has six (6) buttons: Volume up, Volume down,
Play/Pause, Forward, Backward and Menu. For each button you can assign a
command to execute.
Apple IR receiver modules are found on:
o MacBook (any generation)
o MacBook Pro (any generation)
o Intel iMac
o Intel MacMini
PEFS is a kernel level stacked cryptographic filesystem for FreeBSD.
Key features:
* Transparently runs on top of existing file systems
* Random per file tweak value for encryption
* Stores metadata only in encrypted file name
* Arbitrary number of keys per file system, mixing keys in same
directory and key chains
* Modern cryptographic algorithms: AES and Camellia in XTS mode,
PKCS#5v2 and HKDF for key generation.
areca-cli is a Command Line Interface to query and manipulate the Areca
ARC-xxx SATA RAID controllers.
The Sleuth Kit (TSK) is a library and collection of command line tools that
allow you to investigate volume and file system data. The library can be
incorporated into larger digital forensics tools and the command line tools
can be directly used to find evidence.
The media management tools allow you to examine the layout of disks and
other media. The Sleuth Kit supports DOS partitions, BSD partitions (disk
labels), Mac partitions, Sun slices (Volume Table of Contents), and GPT
disks. With these tools, you can identify where partitions are located and
extract them so that they can be analyzed with file system analysis tools.
b43-fwcutter is a tool which can extract firmware from various BCM43xx drivers.