wbin_install_cert.sh

#!/bin/bash
# By Francesco "dfirfpi" Picasso <francesco.picasso@gmail.com>
#
# First create "/wbin" folder and chown to the user.
# Then git clone in "/wbin" the project
# chmod +x install/install_all
#
# Note: remember to add the repo https://forensics.cert.org/ !!!
#
#-------------------------------------------------------------------

LOG="wbin_install.log"
ROOT_FOLDER="/wbin"
INS_FOLDER="$ROOT_FOLDER/install"

[ -d ${ROOT_FOLDER} ] || { echo "wbin folder does not exist!"; exit 1; }
[ -d ${INS_FOLDER} ] || { echo "wbin/install folder does not exist!"; exit 1; }

echo "Starting DFIRFPI tools installation" > ${LOG}

#-------------------------------------------------------------------

ARC_FOLDER="$ROOT_FOLDER/archive"
WIN_FOLDER="$ROOT_FOLDER/win"

# 1st level folders
[ -d ${ARC_FOLDER} ] || mkdir ${ARC_FOLDER}
[ -d ${WIN_FOLDER} ] || mkdir ${WIN_FOLDER}

REG_FOLDER="$WIN_FOLDER/registry"
SHB_FOLDER="$WIN_FOLDER/shellbags"
USB_FOLDER="$WIN_FOLDER/usb"

# 1st level Windows folder
[ -d ${REG_FOLDER} ] || mkdir ${REG_FOLDER}
[ -d ${SHB_FOLDER} ] || mkdir ${SHB_FOLDER}
[ -d ${USB_FOLDER} ] || mkdir ${USB_FOLDER}

#-------------------------------------------------------------------
# Requirements

sudo dnf -y install cpan >> ${LOG} 2>&1
sudo dnf -y install python python-pip python-setuptools >> ${LOG} 2>&1
sudo dnf -y install openssl-libs openssl >> ${LOG} 2>&1

sudo dnf -y install fuse fuse-python >> ${LOG} 2>&1
sudo dnf -y install libewf libewf-python ewftools >> ${LOG} 2>&1
sudo dnf -y install afflib afftools >> ${LOG} 2>&1
sudo dnf -y install sleuthkit sleuthkit-libs >> ${LOG} 2>&1

sudo dnf -y install anayzeMFT artifacts >> ${LOG} 2>&1
sudo dnf -y install bencode binplist >> ${LOG} 2>&1
sudo dnf -y install cryptcat >> ${LOG} 2>&1
sudo dnf -y install DropboxReader >> ${LOG} 2>&1
sudo dnf -y install dc3dd dd_rescue ddrescue ddrescueview >> ${LOG} 2>&1
sudo dnf -y install ddrutility dfvfs dff dfwinreg distorm3 >> ${LOG} 2>&1
sudo dnf -y install eindeutig epub >> ${LOG} 2>&1
sudo dnf -y install fatback fcrackzip ffmpeg-libs >> ${LOG} 2>&1
sudo dnf -y install frag_find frag_find-tools fundl >> ${LOG} 2>&1
sudo dnf -y install ghostpdl guymager >> ${LOG} 2>&1
sudo dnf -y install hachoir-core hachoir-metadata hachoir-parser hachoir-wx >> ${LOG} 2>&1
sudo dnf -y install kracked >> ${LOG} 2>&1
sudo dnf -y install libavdevice >> ${LOG} 2>&1
sudo dnf -y install libbde libbde-python libbde-tools >> ${LOG} 2>&1
sudo dnf -y install libbfio >> ${LOG} 2>&1
sudo dnf -y install libesedb libesedb-python libesedb-tools >> ${LOG} 2>&1
sudo dnf -y install libevt libevt-python libevt-tools >> ${LOG} 2>&1
sudo dnf -y install libevtx libevtx-python libevtx-tools >> ${LOG} 2>&1
sudo dnf -y install libfsntfs libfsntfs-python libfsntfs-tools >> ${LOG} 2>&1
sudo dnf -y install libfvde libfvde-tools >> ${LOG} 2>&1
sudo dnf -y install libfwnt libfwnt-python libfwnt-python3 >> ${LOG} 2>&1
sudo dnf -y install libfwsi libfwsi-python >> ${LOG} 2>&1
sudo dnf -y install libiconv libiconv-utils >> ${LOG} 2>&1
sudo dnf -y install liblnk liblnk-python liblnk-tools >> ${LOG} 2>&1
sudo dnf -y install libluksde libluksde-python libluksde-tools >> ${LOG} 2>&1
sudo dnf -y install libmsiecf libmsiecf-python libmsiecf-tools >> ${LOG} 2>&1
sudo dnf -y install libolecf libolecf-python libolecf-tools >> ${LOG} 2>&1
sudo dnf -y install libpff libpff-python libpff-tools >> ${LOG} 2>&1
sudo dnf -y install libpst libpst-libs libpst-python >> ${LOG} 2>&1
sudo dnf -y install libqcow libqcow-python libqcow-tools >> ${LOG} 2>&1
sudo dnf -y install libregf libregf-python libregf-tools >> ${LOG} 2>&1
sudo dnf -y install libscca libscca-python libscca-python3 libscca-tools >> ${LOG} 2>&1
sudo dnf -y install libsigscan libsigscan-python libsigscan-python3 libsigscan-tools >> ${LOG} 2>&1
sudo dnf -y install libsmdev libsmdev-python libsmdev-python3 libsmdev-tools >> ${LOG} 2>&1
sudo dnf -y install libsmraw libsmraw-python libsmraw-tools >> ${LOG} 2>&1
sudo dnf -y install libunrar >> ${LOG} 2>&1
sudo dnf -y install libvhdi libvhdi-python libvhdi-tools >> ${LOG} 2>&1
sudo dnf -y install libvmdk libvmdk-python libvmdk-tools >> ${LOG} 2>&1
sudo dnf -y install libvshadow libvshadow-python libvshadow-tools >> ${LOG} 2>&1
sudo dnf -y install libvslvm libvslvm-python libvslvm-python3 libvslvm-tools >> ${LOG} 2>&1
sudo dnf -y install libsmdev libsmdev-python libsmdev-python3 libsmdev-tools >> ${LOG} 2>&1
sudo dnf -y install log2timeline >> ${LOG} 2>&1
sudo dnf -y install md5deep md5 missidentify mount_ewf >> ${LOG} 2>&1
sudo dnf -y install nDPI netsa-python netsa-rayon netsa_silk null-package >> ${LOG} 2>&1
sudo dnf -y install partclone perl-File-Mork perl-Max-PropertyList >> ${LOG} 2>&1
sudo dnf -y install perl-Parse-Evtx perl-Parse-Evtx-tools perl-Parse-Win32Registry >> ${LOG} 2>&1
sudo dnf -y install prism pstotext pyew python-binplist python-construct >> ${LOG} 2>&1
sudo dnf -y install python-dfdatetime python-rarfile python-registry pytsk >> ${LOG} 2>&1
sudo dnf -y install rar reglookup rifiuti rifiuti2 >> ${LOG} 2>&1
sudo dnf -y install scrounge-ntfs sfdumper ssdeep stegdetect >> ${LOG} 2>&1
sudo dnf -y install snort snort-sample-rules >> ${LOG} 2>&1
sudo dnf -y install testdisk >> ${LOG} 2>&1
sudo dnf -y install undbx unrar untex >> ${LOG} 2>&1
sudo dnf -y install videosnarf >> ${LOG} 2>&1
sudo dnf -y install xslxwriter xmount xplico >> ${LOG} 2>&1
sudo dnf -y install yaf yara yara-python >> ${LOG} 2>&1

sudo dnf -y install plaso >> ${LOG} 2>&1
sudo dnf -y install radare radare-extras python-radare bokken >> ${LOG} 2>&1

#-------------------------------------------------------------------
# Special, up to date versions

# TODO
# plaso HEAD version install ${INS_FOLDER}/install_plaso.sh
# autopsy (latest)
# bulk-extractor
# shellbags
# usn
# volatility + rekall
# willy...

${INS_FOLDER}/install_regripper.sh
${INS_FOLDER}/install_usbdeviceforensics.sh

#-------------------------------------------------------------------