DEFT Changelog

New in version 8.2

August 10th, 2014
  • Fixed a bug that in some conditions prevented the system to be installed;
  • Fixed the bug of DNS on /etc/resolv.conf;
  • Fixed the bug of the apt-get sources.list;
  • Improved device recognition in live-mode;
  • Updated all packages to the latest Ubuntu release available for Quantal.

New in version 8.1 (April 23rd, 2014)

  • File Manager: we Implemented the disk mount’s status. ( if the disk is mounted in RO/mode the eject button will be green, if it’s RW/mode (a futher confermation will be required before going in this mode) the eject button will be orange,
  • Full support for Bitlocker encrypted disks (thanks libbde!),
  • The Sleuthkit 4.1.3,
  • Digital Forensics Framework 1.3,
  • Full support for Android and iOS 7.1 logical acquisitions ( libmobiledevice & adb ),
  • JD GUI,
  • Skype Extractor 0.1.8.8,
  • Maltego 3.4 Tungsten,
  • a new version of the OSINT browser,
  • Fixed a bug in the /etc/apt/sources.list,
  • full update of the deft packages and DART 2 software and tools,

New in version 8 Beta (July 2nd, 2013)

  • 64 bit 3.5.0-30 Gnu Linux Kernel – brought down the limit of 4GB, Now you can use DEFT Linux on systems that have up to 25t6 TB of ram
  • The Sleuthkit 4 (the stable version of DEFT 8 will include The Sleuthkit 4.1) and Autopsy 2 – Ready for Autopsy 3 on Linux (only for Law Enforcement)
  • Digital Forensics Framework 1.3
  • Libewf and AFFlib full support
  • Xmount and Mount Ewf
  • Guymager 0.7.1, Cyclone 0.2 and Esximager
  • Recoll 1.19.5, software for indexing
  • Bulk extractor 1.3.1 with Bulk extractor GUI 1.3
  • Dumpy 0.2, an intelligence parsing tool to extract sensible data from anonymous dump – many thanks to Gianni Amato (guelfoweb) for the exclusive right
  • Skype extractor
  • Log2timeline 0.65
  • iPBA 2 and Lib iMobile device 1.1.5 (full iOS 6.* support)
  • Fastboot - re-flash Android partition tool
  • Google Chrome Open Source INTelligence browser and TOR
  • Maltego Radium (here there is a problem, we are waiting the Paterva support to fix it, sorry for that)
  • Xplico 1.0.1 and CapAnalysis

New in version 7.2 (October 24th, 2012)

  • Virtual appliance based on Vmware 5 with USB3 support
  • Kernel 3.0.0-26
  • Autopsy 3 beta 5 (using Wine – please note that you need minimum 1GB ram)
  • Log2tmeline 0.65
  • Guymager 0.6.12-1
  • Vmfs support
  • Some mirror fix

New in version 7.1 (April 3rd, 2012)

  • Bug Fix:
  • Hb4most and xterm’s problem fixed
  • Gparted
  • Updated packages:
  • libewf-20120304
  • bulk_extractor-1.2.0.tar.gz
  • guymager 0.6.5-1
  • iPhone Backup Analyzer 10/2012
  • Xplico 1.0
  • Computer Forensics side new tools:
  • UsnJrnl-parser
  • lslnk
  • New implementations:
  • After the great work done by Emanuele Gentili and Sandro Rossetti, we are delighted to introduce you the Cyber ​​Intelligence side implementations and we’d like to remember you today there is no other freely distributed system that allows you to perform Intelligence tasks:
  • OSINT:
  • “OSINT Chrome browser”: we customized Chrome with several plugins and resources to perform ‘Open Source Intelligence’ related activities,
  • Network Information Gathering:
  • Host
  • Nslookup
  • Dig
  • Nmap
  • Zenmap
  • Netcat
  • Snmpcheck
  • Nbtscan
  • Cadaver
  • Traceroute
  • Hping3
  • Xprobe
  • Scapy
  • Netdiscover
  • Wireless Information Gathering:
  • Kismet
  • Web Application Information Gathering:
  • Whatweb
  • Cmsident
  • Dirbuster
  • Burpsuite
  • Customized Chrome Browser (at least 1gb ram required)
  • Social Information Gathering:
  • Creepy
  • Snmpcheck
  • PieSpy
  • Irssi
  • Identity Protection Tools:
  • TOR-Browser
  • Anonymouse (http://anonymouse.org/anonwww.html)
  • OSINT Global Framework:
  • Maltego
  • Proactive Resources

New in version 7 (February 1st, 2012)

  • Based on Lubuntu 11.10
  • Installable Distro
  • Linux kernel 3.0.0-12, USB 3 ready
  • Libewf 20100226
  • Afflib 3.6.14
  • TSK 3.2.3
  • Autopsy 2.24
  • Digital Forensic Framework 1.2
  • PTK Forensic 1.0.5 DEFT edition
  • Pyflag
  • Maltego CE
  • KeepNote 0.7.6
  • Mobius Forensic
  • Xplico 0.7.1
  • Scalpel 2
  • Hunchbackeed Foremost 0.6
  • Findwild 1.3
  • Bulk Extractor 1.1
  • Dropbox Reader
  • Emule Forensic 1.0
  • Guymager 0.6.3-1
  • Dhash 2
  • Cyclone wizard acquire tool
  • Ipddump
  • Iphone Analyzer
  • Iphone backup analyzer
  • SQLite Database Browser 2.0b1
  • BitPim 1.0.7
  • Bbwhatsapp database converter
  • Reggripper
  • Creepy 0.1.9
  • Hydra 7.1
  • Log2timeline 0.60
  • Wine 1.3.28

New in version 6.1 (April 15th, 2011)

  • Start faster by 15% over the previous version
  • Optimization initrd
  • RegTime.py
  • Recovery.py
  • Fixed:
  • Fixed problem of large pcap file uploads in Xplico
  • Revision of all DEFT Extra’s tools to comply with their License.
  • DEFT 6 can boot from USB

New in version 6 (January 12th, 2011)

  • [new] Update FTK Imager from 2.9 to 3
  • [new] Update Digital Forensic Framework from 0.8 to 0.9
  • [new] Added Xmount 0.4.4
  • [new] Added mount_ewf utility
  • [bug fix] VWrong Guymager release, now is the 0.5.7
  • [bug fix] Fixed iso md5 file check
  • [bug fix] Fixed some grammatical errors

New in version 5.1 (May 4th, 2010)

  • Update: Sleuthkit 3.1.1 and Autopsy 2.24
  • Update: Xplico to 0.5.7 (100% support of SIP – RTP codec g711, g729, g722, g723 and g726, SDP and RTCP)
  • Update: Initrd
  • Bug fix: Dhash report (reports were not generated)
  • Bug fix: DEFT Extra bug fix (a few tools did not work if the operator click on their icons, added the dd tool for x64 machines)