From f52ab2d06b4c417605d1d62596eca5caecfc9d27 Mon Sep 17 00:00:00 2001 From: Antonio Date: Mon, 18 Nov 2024 16:05:37 +0100 Subject: [PATCH] dissect: add module packages --- lists/to-release | 30 +++++++++++ packages/python-acquire/PKGBUILD | 48 +++++++++++++++++ packages/python-dissect.archive/PKGBUILD | 46 ++++++++++++++++ packages/python-dissect.btrfs/PKGBUILD | 47 +++++++++++++++++ packages/python-dissect.cim/PKGBUILD | 46 ++++++++++++++++ packages/python-dissect.clfs/PKGBUILD | 46 ++++++++++++++++ packages/python-dissect.cstruct/PKGBUILD | 11 ++-- packages/python-dissect.esedb/PKGBUILD | 46 ++++++++++++++++ packages/python-dissect.etl/PKGBUILD | 47 +++++++++++++++++ packages/python-dissect.eventlog/PKGBUILD | 46 ++++++++++++++++ packages/python-dissect.evidence/PKGBUILD | 46 ++++++++++++++++ packages/python-dissect.executable/PKGBUILD | 46 ++++++++++++++++ packages/python-dissect.extfs/PKGBUILD | 46 ++++++++++++++++ packages/python-dissect.fat/PKGBUILD | 46 ++++++++++++++++ packages/python-dissect.ffs/PKGBUILD | 46 ++++++++++++++++ packages/python-dissect.fve/PKGBUILD | 47 +++++++++++++++++ packages/python-dissect.hypervisor/PKGBUILD | 47 +++++++++++++++++ packages/python-dissect.jffs/PKGBUILD | 46 ++++++++++++++++ packages/python-dissect.ntfs/PKGBUILD | 46 ++++++++++++++++ packages/python-dissect.ole/PKGBUILD | 46 ++++++++++++++++ packages/python-dissect.regf/PKGBUILD | 46 ++++++++++++++++ packages/python-dissect.shellitem/PKGBUILD | 46 ++++++++++++++++ packages/python-dissect.sql/PKGBUILD | 46 ++++++++++++++++ packages/python-dissect.squashfs/PKGBUILD | 47 +++++++++++++++++ packages/python-dissect.target/PKGBUILD | 58 +++++++++++++++++++++ packages/python-dissect.thumbcache/PKGBUILD | 46 ++++++++++++++++ packages/python-dissect.util/PKGBUILD | 46 ++++++++++++++++ packages/python-dissect.vmfs/PKGBUILD | 46 ++++++++++++++++ packages/python-dissect.volume/PKGBUILD | 46 ++++++++++++++++ packages/python-dissect.xfs/PKGBUILD | 46 ++++++++++++++++ packages/python-flow.record/PKGBUILD | 47 +++++++++++++++++ 31 files changed, 1390 insertions(+), 5 deletions(-) create mode 100644 packages/python-acquire/PKGBUILD create mode 100644 packages/python-dissect.archive/PKGBUILD create mode 100644 packages/python-dissect.btrfs/PKGBUILD create mode 100644 packages/python-dissect.cim/PKGBUILD create mode 100644 packages/python-dissect.clfs/PKGBUILD create mode 100644 packages/python-dissect.esedb/PKGBUILD create mode 100644 packages/python-dissect.etl/PKGBUILD create mode 100644 packages/python-dissect.eventlog/PKGBUILD create mode 100644 packages/python-dissect.evidence/PKGBUILD create mode 100644 packages/python-dissect.executable/PKGBUILD create mode 100644 packages/python-dissect.extfs/PKGBUILD create mode 100644 packages/python-dissect.fat/PKGBUILD create mode 100644 packages/python-dissect.ffs/PKGBUILD create mode 100644 packages/python-dissect.fve/PKGBUILD create mode 100644 packages/python-dissect.hypervisor/PKGBUILD create mode 100644 packages/python-dissect.jffs/PKGBUILD create mode 100644 packages/python-dissect.ntfs/PKGBUILD create mode 100644 packages/python-dissect.ole/PKGBUILD create mode 100644 packages/python-dissect.regf/PKGBUILD create mode 100644 packages/python-dissect.shellitem/PKGBUILD create mode 100644 packages/python-dissect.sql/PKGBUILD create mode 100644 packages/python-dissect.squashfs/PKGBUILD create mode 100644 packages/python-dissect.target/PKGBUILD create mode 100644 packages/python-dissect.thumbcache/PKGBUILD create mode 100644 packages/python-dissect.util/PKGBUILD create mode 100644 packages/python-dissect.vmfs/PKGBUILD create mode 100644 packages/python-dissect.volume/PKGBUILD create mode 100644 packages/python-dissect.xfs/PKGBUILD create mode 100644 packages/python-flow.record/PKGBUILD diff --git a/lists/to-release b/lists/to-release index e69de29bb2d..6ba9a7fb697 100644 --- a/lists/to-release +++ b/lists/to-release @@ -0,0 +1,30 @@ +python-acquire +python-dissect.archive +python-dissect.btrfs +python-dissect.cim +python-dissect.clfs +python-dissect.cstruct +python-dissect.esedb +python-dissect.etl +python-dissect.eventlog +python-dissect.evidence +python-dissect.executable +python-dissect.extfs +python-dissect.fat +python-dissect.ffs +python-dissect.fve +python-dissect.hypervisor +python-dissect.jffs +python-dissect.ntfs +python-dissect.ole +python-dissect.regf +python-dissect.shellitem +python-dissect.sql +python-dissect.squashfs +python-dissect.target +python-dissect.thumbcache +python-dissect.util +python-dissect.vmfs +python-dissect.volume +python-dissect.xfs +python-flow.record diff --git a/packages/python-acquire/PKGBUILD b/packages/python-acquire/PKGBUILD new file mode 100644 index 00000000000..0e38e48273e --- /dev/null +++ b/packages/python-acquire/PKGBUILD @@ -0,0 +1,48 @@ +# This file is part of BlackArch Linux ( https://www.blackarch.org/ ). +# See COPYING for license details. + +pkgname=python-acquire +_pkgname=${pkgname#python-} +pkgver=3.17.r0.gef2e3d1 +pkgrel=1 +pkgdesc='Quickly gather forensic artifacts from disk images or a live system into a lightweight container.' +arch=('x86_64' 'aarch64') +groups=('blackarch' 'blackarch-forensic') +url='https://github.com/fox-it/acquire' +license=('AGPL-3.0-or-later') +depends=('python' 'python-dissect.cstruct' 'python-dissect.target' + 'python-minio' 'python-pycryptodome' 'python-requests' + 'python-requests-toolbelt' 'python-rich') +makedepends=('git' 'python-pip' 'python-build' 'python-installer' + 'python-wheel' 'python-setuptools' 'python-setuptools-scm') +options=(!emptydirs) +source=("git+https://github.com/fox-it/$_pkgname.git") +sha512sums=('SKIP') + +pkgver() { + cd $_pkgname + + ( set -o pipefail + git describe --long --tags --abbrev=7 2>/dev/null | + sed 's/\([^-]*-g\)/r\1/;s/-/./g' || + printf "%s.%s" "$(git rev-list --count HEAD)" \ + "$(git rev-parse --short=7 HEAD)" + ) +} + +prepare() { + git -C "$srcdir/$_pkgname" clean -dfx +} + +build() { + cd $_pkgname + + python -m build --wheel --no-isolation +} + +package() { + cd $_pkgname + + python -m installer --destdir="$pkgdir" dist/*.whl +} + diff --git a/packages/python-dissect.archive/PKGBUILD b/packages/python-dissect.archive/PKGBUILD new file mode 100644 index 00000000000..d9dd577a865 --- /dev/null +++ b/packages/python-dissect.archive/PKGBUILD @@ -0,0 +1,46 @@ +# This file is part of BlackArch Linux ( https://www.blackarch.org/ ). +# See COPYING for license details. + +pkgname=python-dissect.archive +_pkgname=${pkgname#python-} +pkgver=1.3.r0.g5dfad11 +pkgrel=1 +pkgdesc='A Dissect module implementing parsers for various archive and backup formats.' +arch=('x86_64' 'aarch64') +groups=('blackarch' 'blackarch-forensic') +url='https://github.com/fox-it/dissect.archive' +license=('AGPL-3.0-or-later') +depends=('python' 'python-dissect.cstruct' 'python-dissect.util') +makedepends=('git' 'python-pip' 'python-build' 'python-installer' + 'python-wheel' 'python-setuptools' 'python-setuptools-scm') +options=(!emptydirs) +source=("git+https://github.com/fox-it/$_pkgname.git") +sha512sums=('SKIP') + +pkgver() { + cd $_pkgname + + ( set -o pipefail + git describe --long --tags --abbrev=7 2>/dev/null | + sed 's/\([^-]*-g\)/r\1/;s/-/./g' || + printf "%s.%s" "$(git rev-list --count HEAD)" \ + "$(git rev-parse --short=7 HEAD)" + ) +} + +prepare() { + git -C "$srcdir/$_pkgname" clean -dfx +} + +build() { + cd $_pkgname + + python -m build --wheel --no-isolation +} + +package() { + cd $_pkgname + + python -m installer --destdir="$pkgdir" dist/*.whl +} + diff --git a/packages/python-dissect.btrfs/PKGBUILD b/packages/python-dissect.btrfs/PKGBUILD new file mode 100644 index 00000000000..81750993939 --- /dev/null +++ b/packages/python-dissect.btrfs/PKGBUILD @@ -0,0 +1,47 @@ +# This file is part of BlackArch Linux ( https://www.blackarch.org/ ). +# See COPYING for license details. + +pkgname=python-dissect.btrfs +_pkgname=${pkgname#python-} +pkgver=1.6.r0.gfe4bbda +pkgrel=1 +pkgdesc='A Dissect module implementing a parser for the btrfs file system.' +arch=('x86_64' 'aarch64') +groups=('blackarch' 'blackarch-forensic') +url='https://github.com/fox-it/dissect.btrfs' +license=('AGPL-3.0-or-later') +depends=('python' 'python-dissect.cstruct' 'python-dissect.util' + 'python-zstandard' 'lzo') +makedepends=('git' 'python-pip' 'python-build' 'python-installer' + 'python-wheel' 'python-setuptools' 'python-setuptools-scm') +options=(!emptydirs) +source=("git+https://github.com/fox-it/$_pkgname.git") +sha512sums=('SKIP') + +pkgver() { + cd $_pkgname + + ( set -o pipefail + git describe --long --tags --abbrev=7 2>/dev/null | + sed 's/\([^-]*-g\)/r\1/;s/-/./g' || + printf "%s.%s" "$(git rev-list --count HEAD)" \ + "$(git rev-parse --short=7 HEAD)" + ) +} + +prepare() { + git -C "$srcdir/$_pkgname" clean -dfx +} + +build() { + cd $_pkgname + + python -m build --wheel --no-isolation +} + +package() { + cd $_pkgname + + python -m installer --destdir="$pkgdir" dist/*.whl +} + diff --git a/packages/python-dissect.cim/PKGBUILD b/packages/python-dissect.cim/PKGBUILD new file mode 100644 index 00000000000..d1302ad0c13 --- /dev/null +++ b/packages/python-dissect.cim/PKGBUILD @@ -0,0 +1,46 @@ +# This file is part of BlackArch Linux ( https://www.blackarch.org/ ). +# See COPYING for license details. + +pkgname=python-dissect.cim +_pkgname=${pkgname#python-} +pkgver=3.10.r0.g4d1effc +pkgrel=1 +pkgdesc='A Dissect module implementing a parser for the Windows Common Information Model (CIM) database, used in the Windows operating system.' +arch=('x86_64' 'aarch64') +groups=('blackarch' 'blackarch-forensic') +url='https://github.com/fox-it/dissect.cim' +license=('AGPL-3.0-or-later') +depends=('python' 'python-dissect.cstruct' 'python-dissect.util') +makedepends=('git' 'python-pip' 'python-build' 'python-installer' + 'python-wheel' 'python-setuptools' 'python-setuptools-scm') +options=(!emptydirs) +source=("git+https://github.com/fox-it/$_pkgname.git") +sha512sums=('SKIP') + +pkgver() { + cd $_pkgname + + ( set -o pipefail + git describe --long --tags --abbrev=7 2>/dev/null | + sed 's/\([^-]*-g\)/r\1/;s/-/./g' || + printf "%s.%s" "$(git rev-list --count HEAD)" \ + "$(git rev-parse --short=7 HEAD)" + ) +} + +prepare() { + git -C "$srcdir/$_pkgname" clean -dfx +} + +build() { + cd $_pkgname + + python -m build --wheel --no-isolation +} + +package() { + cd $_pkgname + + python -m installer --destdir="$pkgdir" dist/*.whl +} + diff --git a/packages/python-dissect.clfs/PKGBUILD b/packages/python-dissect.clfs/PKGBUILD new file mode 100644 index 00000000000..3b6f927ebf8 --- /dev/null +++ b/packages/python-dissect.clfs/PKGBUILD @@ -0,0 +1,46 @@ +# This file is part of BlackArch Linux ( https://www.blackarch.org/ ). +# See COPYING for license details. + +pkgname=python-dissect.clfs +_pkgname=${pkgname#python-} +pkgver=1.9.r0.gd3e3b7f +pkgrel=1 +pkgdesc='A Dissect module implementing a parser for the CLFS (Common Log File System) file system of Windows.' +arch=('x86_64' 'aarch64') +groups=('blackarch' 'blackarch-forensic') +url='https://github.com/fox-it/dissect.clfs' +license=('AGPL-3.0-or-later') +depends=('python' 'python-dissect.cstruct') +makedepends=('git' 'python-pip' 'python-build' 'python-installer' + 'python-wheel' 'python-setuptools' 'python-setuptools-scm') +options=(!emptydirs) +source=("git+https://github.com/fox-it/$_pkgname.git") +sha512sums=('SKIP') + +pkgver() { + cd $_pkgname + + ( set -o pipefail + git describe --long --tags --abbrev=7 2>/dev/null | + sed 's/\([^-]*-g\)/r\1/;s/-/./g' || + printf "%s.%s" "$(git rev-list --count HEAD)" \ + "$(git rev-parse --short=7 HEAD)" + ) +} + +prepare() { + git -C "$srcdir/$_pkgname" clean -dfx +} + +build() { + cd $_pkgname + + python -m build --wheel --no-isolation +} + +package() { + cd $_pkgname + + python -m installer --destdir="$pkgdir" dist/*.whl +} + diff --git a/packages/python-dissect.cstruct/PKGBUILD b/packages/python-dissect.cstruct/PKGBUILD index 3ca4a22c566..c0729f3ab7f 100644 --- a/packages/python-dissect.cstruct/PKGBUILD +++ b/packages/python-dissect.cstruct/PKGBUILD @@ -3,17 +3,18 @@ pkgname=python-dissect.cstruct _pkgname=${pkgname#python-} -pkgver=4.2.r2.ged1daf2 +pkgver=4.3.r0.ged1daf2 pkgrel=1 pkgdesc='A Dissect module implementing a parser for C-like structures.' -arch=('any') +arch=('x86_64' 'aarch64') +groups=('blackarch' 'blackarch-forensic') url='https://github.com/fox-it/dissect.cstruct' license=('Apache-2.0') depends=('python') -makedepends=('git' 'lzo' 'python-pip' 'python-build' 'python-installer' +makedepends=('git' 'python-pip' 'python-build' 'python-installer' 'python-wheel' 'python-setuptools' 'python-setuptools-scm') options=(!emptydirs) -source=("git+https://github.com/fox-it/$_pkgname") +source=("git+https://github.com/fox-it/$_pkgname.git") sha512sums=('SKIP') pkgver() { @@ -28,7 +29,7 @@ pkgver() { } prepare() { - git -C "${srcdir}/${_pkgname}" clean -dfx + git -C "$srcdir/$_pkgname" clean -dfx } build() { diff --git a/packages/python-dissect.esedb/PKGBUILD b/packages/python-dissect.esedb/PKGBUILD new file mode 100644 index 00000000000..881c4132a30 --- /dev/null +++ b/packages/python-dissect.esedb/PKGBUILD @@ -0,0 +1,46 @@ +# This file is part of BlackArch Linux ( https://www.blackarch.org/ ). +# See COPYING for license details. + +pkgname=python-dissect.esedb +_pkgname=${pkgname#python-} +pkgver=3.14.r0.gb052185 +pkgrel=1 +pkgdesc='A Dissect module implementing a parser for Microsofts Extensible Storage Engine Database (ESEDB), used for example in Active Directory, Exchange and Windows Update.' +arch=('x86_64' 'aarch64') +groups=('blackarch' 'blackarch-forensic') +url='https://github.com/fox-it/dissect.esedb' +license=('Apache-2.0') +depends=('python' 'python-dissect.cstruct' 'python-dissect.util') +makedepends=('git' 'python-pip' 'python-build' 'python-installer' + 'python-wheel' 'python-setuptools' 'python-setuptools-scm') +options=(!emptydirs) +source=("git+https://github.com/fox-it/$_pkgname.git") +sha512sums=('SKIP') + +pkgver() { + cd $_pkgname + + ( set -o pipefail + git describe --long --tags --abbrev=7 2>/dev/null | + sed 's/\([^-]*-g\)/r\1/;s/-/./g' || + printf "%s.%s" "$(git rev-list --count HEAD)" \ + "$(git rev-parse --short=7 HEAD)" + ) +} + +prepare() { + git -C "$srcdir/$_pkgname" clean -dfx +} + +build() { + cd $_pkgname + + python -m build --wheel --no-isolation +} + +package() { + cd $_pkgname + + python -m installer --destdir="$pkgdir" dist/*.whl +} + diff --git a/packages/python-dissect.etl/PKGBUILD b/packages/python-dissect.etl/PKGBUILD new file mode 100644 index 00000000000..973a5a49f56 --- /dev/null +++ b/packages/python-dissect.etl/PKGBUILD @@ -0,0 +1,47 @@ +# This file is part of BlackArch Linux ( https://www.blackarch.org/ ). +# See COPYING for license details. + +pkgname=python-dissect.etl +_pkgname=${pkgname#python-} +pkgver=3.10.r0.g23354d6 +pkgrel=1 +pkgdesc='A Dissect module implementing a parser for Event Trace Log (ETL) files, used by the Windows operating system to log kernel events.' +arch=('x86_64' 'aarch64') +groups=('blackarch' 'blackarch-forensic') +url='https://github.com/fox-it/dissect.etl' +license=('AGPL-3.0-or-later') +depends=('python' 'python-defusedxml' 'python-dissect.cstruct' + 'python-dissect.util') +makedepends=('git' 'python-pip' 'python-build' 'python-installer' + 'python-wheel' 'python-setuptools' 'python-setuptools-scm') +options=(!emptydirs) +source=("git+https://github.com/fox-it/$_pkgname.git") +sha512sums=('SKIP') + +pkgver() { + cd $_pkgname + + ( set -o pipefail + git describe --long --tags --abbrev=7 2>/dev/null | + sed 's/\([^-]*-g\)/r\1/;s/-/./g' || + printf "%s.%s" "$(git rev-list --count HEAD)" \ + "$(git rev-parse --short=7 HEAD)" + ) +} + +prepare() { + git -C "$srcdir/$_pkgname" clean -dfx +} + +build() { + cd $_pkgname + + python -m build --wheel --no-isolation +} + +package() { + cd $_pkgname + + python -m installer --destdir="$pkgdir" dist/*.whl +} + diff --git a/packages/python-dissect.eventlog/PKGBUILD b/packages/python-dissect.eventlog/PKGBUILD new file mode 100644 index 00000000000..c94975f1893 --- /dev/null +++ b/packages/python-dissect.eventlog/PKGBUILD @@ -0,0 +1,46 @@ +# This file is part of BlackArch Linux ( https://www.blackarch.org/ ). +# See COPYING for license details. + +pkgname=python-dissect.eventlog +_pkgname=${pkgname#python-} +pkgver=3.9.r0.g97fdfd7 +pkgrel=1 +pkgdesc='A Dissect module implementing parsers for the Windows EVT, EVTX and WEVT log file formats.' +arch=('x86_64' 'aarch64') +groups=('blackarch' 'blackarch-forensic') +url='https://github.com/fox-it/dissect.eventlog' +license=('AGPL-3.0-or-later') +depends=('python' 'python-dissect.cstruct' 'python-dissect.util') +makedepends=('git' 'python-pip' 'python-build' 'python-installer' + 'python-wheel' 'python-setuptools' 'python-setuptools-scm') +options=(!emptydirs) +source=("git+https://github.com/fox-it/$_pkgname.git") +sha512sums=('SKIP') + +pkgver() { + cd $_pkgname + + ( set -o pipefail + git describe --long --tags --abbrev=7 2>/dev/null | + sed 's/\([^-]*-g\)/r\1/;s/-/./g' || + printf "%s.%s" "$(git rev-list --count HEAD)" \ + "$(git rev-parse --short=7 HEAD)" + ) +} + +prepare() { + git -C "$srcdir/$_pkgname" clean -dfx +} + +build() { + cd $_pkgname + + python -m build --wheel --no-isolation +} + +package() { + cd $_pkgname + + python -m installer --destdir="$pkgdir" dist/*.whl +} + diff --git a/packages/python-dissect.evidence/PKGBUILD b/packages/python-dissect.evidence/PKGBUILD new file mode 100644 index 00000000000..d3311633f13 --- /dev/null +++ b/packages/python-dissect.evidence/PKGBUILD @@ -0,0 +1,46 @@ +# This file is part of BlackArch Linux ( https://www.blackarch.org/ ). +# See COPYING for license details. + +pkgname=python-dissect.evidence +_pkgname=${pkgname#python-} +pkgver=3.10.r0.g852ced4 +pkgrel=1 +pkgdesc='A Dissect module implementing a parsers for various forensic evidence file containers, currently: AD1, ASDF and EWF.' +arch=('x86_64' 'aarch64') +groups=('blackarch' 'blackarch-forensic') +url='https://github.com/fox-it/dissect.evidence' +license=('AGPL-3.0-or-later') +depends=('python' 'python-dissect.cstruct' 'python-dissect.util') +makedepends=('git' 'python-pip' 'python-build' 'python-installer' + 'python-wheel' 'python-setuptools' 'python-setuptools-scm') +options=(!emptydirs) +source=("git+https://github.com/fox-it/$_pkgname.git") +sha512sums=('SKIP') + +pkgver() { + cd $_pkgname + + ( set -o pipefail + git describe --long --tags --abbrev=7 2>/dev/null | + sed 's/\([^-]*-g\)/r\1/;s/-/./g' || + printf "%s.%s" "$(git rev-list --count HEAD)" \ + "$(git rev-parse --short=7 HEAD)" + ) +} + +prepare() { + git -C "$srcdir/$_pkgname" clean -dfx +} + +build() { + cd $_pkgname + + python -m build --wheel --no-isolation +} + +package() { + cd $_pkgname + + python -m installer --destdir="$pkgdir" dist/*.whl +} + diff --git a/packages/python-dissect.executable/PKGBUILD b/packages/python-dissect.executable/PKGBUILD new file mode 100644 index 00000000000..d9991d212b3 --- /dev/null +++ b/packages/python-dissect.executable/PKGBUILD @@ -0,0 +1,46 @@ +# This file is part of BlackArch Linux ( https://www.blackarch.org/ ). +# See COPYING for license details. + +pkgname=python-dissect.executable +_pkgname=${pkgname#python-} +pkgver=1.7.r0.g7bf4930 +pkgrel=1 +pkgdesc='A Dissect module implementing parsers for various executable formats such as PE, ELF and Macho-O.' +arch=('x86_64' 'aarch64') +groups=('blackarch' 'blackarch-forensic') +url='https://github.com/fox-it/dissect.executable' +license=('AGPL-3.0-or-later') +depends=('python' 'python-dissect.cstruct' 'python-dissect.util') +makedepends=('git' 'python-pip' 'python-build' 'python-installer' + 'python-wheel' 'python-setuptools' 'python-setuptools-scm') +options=(!emptydirs) +source=("git+https://github.com/fox-it/$_pkgname.git") +sha512sums=('SKIP') + +pkgver() { + cd $_pkgname + + ( set -o pipefail + git describe --long --tags --abbrev=7 2>/dev/null | + sed 's/\([^-]*-g\)/r\1/;s/-/./g' || + printf "%s.%s" "$(git rev-list --count HEAD)" \ + "$(git rev-parse --short=7 HEAD)" + ) +} + +prepare() { + git -C "$srcdir/$_pkgname" clean -dfx +} + +build() { + cd $_pkgname + + python -m build --wheel --no-isolation +} + +package() { + cd $_pkgname + + python -m installer --destdir="$pkgdir" dist/*.whl +} + diff --git a/packages/python-dissect.extfs/PKGBUILD b/packages/python-dissect.extfs/PKGBUILD new file mode 100644 index 00000000000..1cadc0f91f5 --- /dev/null +++ b/packages/python-dissect.extfs/PKGBUILD @@ -0,0 +1,46 @@ +# This file is part of BlackArch Linux ( https://www.blackarch.org/ ). +# See COPYING for license details. + +pkgname=python-dissect.extfs +_pkgname=${pkgname#python-} +pkgver=3.12.r0.g9b0df29 +pkgrel=1 +pkgdesc='A Dissect module implementing a parser for the ExtFS file system, the native filesystem for Linux operating systems.' +arch=('x86_64' 'aarch64') +groups=('blackarch' 'blackarch-forensic') +url='https://github.com/fox-it/dissect.extfs' +license=('AGPL-3.0-or-later') +depends=('python' 'python-dissect.cstruct' 'python-dissect.util') +makedepends=('git' 'python-pip' 'python-build' 'python-installer' + 'python-wheel' 'python-setuptools' 'python-setuptools-scm') +options=(!emptydirs) +source=("git+https://github.com/fox-it/$_pkgname.git") +sha512sums=('SKIP') + +pkgver() { + cd $_pkgname + + ( set -o pipefail + git describe --long --tags --abbrev=7 2>/dev/null | + sed 's/\([^-]*-g\)/r\1/;s/-/./g' || + printf "%s.%s" "$(git rev-list --count HEAD)" \ + "$(git rev-parse --short=7 HEAD)" + ) +} + +prepare() { + git -C "$srcdir/$_pkgname" clean -dfx +} + +build() { + cd $_pkgname + + python -m build --wheel --no-isolation +} + +package() { + cd $_pkgname + + python -m installer --destdir="$pkgdir" dist/*.whl +} + diff --git a/packages/python-dissect.fat/PKGBUILD b/packages/python-dissect.fat/PKGBUILD new file mode 100644 index 00000000000..2ac7896578a --- /dev/null +++ b/packages/python-dissect.fat/PKGBUILD @@ -0,0 +1,46 @@ +# This file is part of BlackArch Linux ( https://www.blackarch.org/ ). +# See COPYING for license details. + +pkgname=python-dissect.fat +_pkgname=${pkgname#python-} +pkgver=3.11.r0.gfe9d7dc +pkgrel=1 +pkgdesc='A Dissect module implementing parsers for the FAT and exFAT file systems, commonly used on flash memory based storage devices and UEFI partitions.' +arch=('x86_64' 'aarch64') +groups=('blackarch' 'blackarch-forensic') +url='https://github.com/fox-it/dissect.fat' +license=('AGPL-3.0-or-later') +depends=('python' 'python-dissect.cstruct' 'python-dissect.util') +makedepends=('git' 'python-pip' 'python-build' 'python-installer' + 'python-wheel' 'python-setuptools' 'python-setuptools-scm') +options=(!emptydirs) +source=("git+https://github.com/fox-it/$_pkgname.git") +sha512sums=('SKIP') + +pkgver() { + cd $_pkgname + + ( set -o pipefail + git describe --long --tags --abbrev=7 2>/dev/null | + sed 's/\([^-]*-g\)/r\1/;s/-/./g' || + printf "%s.%s" "$(git rev-list --count HEAD)" \ + "$(git rev-parse --short=7 HEAD)" + ) +} + +prepare() { + git -C "$srcdir/$_pkgname" clean -dfx +} + +build() { + cd $_pkgname + + python -m build --wheel --no-isolation +} + +package() { + cd $_pkgname + + python -m installer --destdir="$pkgdir" dist/*.whl +} + diff --git a/packages/python-dissect.ffs/PKGBUILD b/packages/python-dissect.ffs/PKGBUILD new file mode 100644 index 00000000000..8e7f7549cd2 --- /dev/null +++ b/packages/python-dissect.ffs/PKGBUILD @@ -0,0 +1,46 @@ +# This file is part of BlackArch Linux ( https://www.blackarch.org/ ). +# See COPYING for license details. + +pkgname=python-dissect.ffs +_pkgname=${pkgname#python-} +pkgver=3.10.r0.g498cb70 +pkgrel=1 +pkgdesc='A Dissect module implementing a parser for the FFS file system, commonly used by BSD operating systems.' +arch=('x86_64' 'aarch64') +groups=('blackarch' 'blackarch-forensic') +url='https://github.com/fox-it/dissect.ffs' +license=('AGPL-3.0-or-later') +depends=('python' 'python-dissect.cstruct' 'python-dissect.util') +makedepends=('git' 'python-pip' 'python-build' 'python-installer' + 'python-wheel' 'python-setuptools' 'python-setuptools-scm') +options=(!emptydirs) +source=("git+https://github.com/fox-it/$_pkgname.git") +sha512sums=('SKIP') + +pkgver() { + cd $_pkgname + + ( set -o pipefail + git describe --long --tags --abbrev=7 2>/dev/null | + sed 's/\([^-]*-g\)/r\1/;s/-/./g' || + printf "%s.%s" "$(git rev-list --count HEAD)" \ + "$(git rev-parse --short=7 HEAD)" + ) +} + +prepare() { + git -C "$srcdir/$_pkgname" clean -dfx +} + +build() { + cd $_pkgname + + python -m build --wheel --no-isolation +} + +package() { + cd $_pkgname + + python -m installer --destdir="$pkgdir" dist/*.whl +} + diff --git a/packages/python-dissect.fve/PKGBUILD b/packages/python-dissect.fve/PKGBUILD new file mode 100644 index 00000000000..d3328f512eb --- /dev/null +++ b/packages/python-dissect.fve/PKGBUILD @@ -0,0 +1,47 @@ +# This file is part of BlackArch Linux ( https://www.blackarch.org/ ). +# See COPYING for license details. + +pkgname=python-dissect.fve +_pkgname=${pkgname#python-} +pkgver=4.0.r0.g39523e4 +pkgrel=1 +pkgdesc="A Dissect module implementing a parsers for full volume encryption implementations, currently Microsoft's Bitlocker Disk Encryption (BDE) and Linux Unified Key Setup (LUKS1 and LUKS2)." +arch=('x86_64' 'aarch64') +groups=('blackarch' 'blackarch-forensic') +url='https://github.com/fox-it/dissect.fve' +license=('AGPL-3.0-or-later') +depends=('python' 'python-argon2-cffi' 'python-dissect.cstruct' + 'python-dissect.util' 'python-pycryptodome') +makedepends=('git' 'python-pip' 'python-build' 'python-installer' + 'python-wheel' 'python-setuptools' 'python-setuptools-scm') +options=(!emptydirs) +source=("git+https://github.com/fox-it/$_pkgname.git") +sha512sums=('SKIP') + +pkgver() { + cd $_pkgname + + ( set -o pipefail + git describe --long --tags --abbrev=7 2>/dev/null | + sed 's/\([^-]*-g\)/r\1/;s/-/./g' || + printf "%s.%s" "$(git rev-list --count HEAD)" \ + "$(git rev-parse --short=7 HEAD)" + ) +} + +prepare() { + git -C "$srcdir/$_pkgname" clean -dfx +} + +build() { + cd $_pkgname + + python -m build --wheel --no-isolation +} + +package() { + cd $_pkgname + + python -m installer --destdir="$pkgdir" dist/*.whl +} + diff --git a/packages/python-dissect.hypervisor/PKGBUILD b/packages/python-dissect.hypervisor/PKGBUILD new file mode 100644 index 00000000000..a129acd9ce9 --- /dev/null +++ b/packages/python-dissect.hypervisor/PKGBUILD @@ -0,0 +1,47 @@ +# This file is part of BlackArch Linux ( https://www.blackarch.org/ ). +# See COPYING for license details. + +pkgname=python-dissect.hypervisor +_pkgname=${pkgname#python-} +pkgver=3.16.r0.g50464c1 +pkgrel=1 +pkgdesc='A Dissect module implementing parsers for various hypervisor disk, backup and configuration files.' +arch=('x86_64' 'aarch64') +groups=('blackarch' 'blackarch-forensic') +url='https://github.com/fox-it/dissect.hypervisor' +license=('AGPL-3.0-or-later') +depends=('python' 'python-defusedxml' 'python-dissect.cstruct' + 'python-dissect.util') +makedepends=('git' 'python-pip' 'python-build' 'python-installer' + 'python-wheel' 'python-setuptools' 'python-setuptools-scm') +options=(!emptydirs) +source=("git+https://github.com/fox-it/$_pkgname.git") +sha512sums=('SKIP') + +pkgver() { + cd $_pkgname + + ( set -o pipefail + git describe --long --tags --abbrev=7 2>/dev/null | + sed 's/\([^-]*-g\)/r\1/;s/-/./g' || + printf "%s.%s" "$(git rev-list --count HEAD)" \ + "$(git rev-parse --short=7 HEAD)" + ) +} + +prepare() { + git -C "$srcdir/$_pkgname" clean -dfx +} + +build() { + cd $_pkgname + + python -m build --wheel --no-isolation +} + +package() { + cd $_pkgname + + python -m installer --destdir="$pkgdir" dist/*.whl +} + diff --git a/packages/python-dissect.jffs/PKGBUILD b/packages/python-dissect.jffs/PKGBUILD new file mode 100644 index 00000000000..6418e03eb92 --- /dev/null +++ b/packages/python-dissect.jffs/PKGBUILD @@ -0,0 +1,46 @@ +# This file is part of BlackArch Linux ( https://www.blackarch.org/ ). +# See COPYING for license details. + +pkgname=python-dissect.jffs +_pkgname=${pkgname#python-} +pkgver=1.3.r0.g21c1617 +pkgrel=1 +pkgdesc='A Dissect module implementing a parser for the JFFS2 file system, commonly used by router operating systems.' +arch=('x86_64' 'aarch64') +groups=('blackarch' 'blackarch-forensic') +url='https://github.com/fox-it/dissect.jffs' +license=('AGPL-3.0-or-later') +depends=('python' 'python-dissect.cstruct' 'python-dissect.util') +makedepends=('git' 'python-pip' 'python-build' 'python-installer' + 'python-wheel' 'python-setuptools' 'python-setuptools-scm') +options=(!emptydirs) +source=("git+https://github.com/fox-it/$_pkgname.git") +sha512sums=('SKIP') + +pkgver() { + cd $_pkgname + + ( set -o pipefail + git describe --long --tags --abbrev=7 2>/dev/null | + sed 's/\([^-]*-g\)/r\1/;s/-/./g' || + printf "%s.%s" "$(git rev-list --count HEAD)" \ + "$(git rev-parse --short=7 HEAD)" + ) +} + +prepare() { + git -C "$srcdir/$_pkgname" clean -dfx +} + +build() { + cd $_pkgname + + python -m build --wheel --no-isolation +} + +package() { + cd $_pkgname + + python -m installer --destdir="$pkgdir" dist/*.whl +} + diff --git a/packages/python-dissect.ntfs/PKGBUILD b/packages/python-dissect.ntfs/PKGBUILD new file mode 100644 index 00000000000..13f01787b64 --- /dev/null +++ b/packages/python-dissect.ntfs/PKGBUILD @@ -0,0 +1,46 @@ +# This file is part of BlackArch Linux ( https://www.blackarch.org/ ). +# See COPYING for license details. + +pkgname=python-dissect.ntfs +_pkgname=${pkgname#python-} +pkgver=3.13.r0.gef5529b +pkgrel=1 +pkgdesc='A Dissect module implementing a parser for the NTFS file system, used by the Windows operating system.' +arch=('x86_64' 'aarch64') +groups=('blackarch' 'blackarch-forensic') +url='https://github.com/fox-it/dissect.ntfs' +license=('AGPL-3.0-or-later') +depends=('python' 'python-dissect.cstruct' 'python-dissect.util') +makedepends=('git' 'python-pip' 'python-build' 'python-installer' + 'python-wheel' 'python-setuptools' 'python-setuptools-scm') +options=(!emptydirs) +source=("git+https://github.com/fox-it/$_pkgname.git") +sha512sums=('SKIP') + +pkgver() { + cd $_pkgname + + ( set -o pipefail + git describe --long --tags --abbrev=7 2>/dev/null | + sed 's/\([^-]*-g\)/r\1/;s/-/./g' || + printf "%s.%s" "$(git rev-list --count HEAD)" \ + "$(git rev-parse --short=7 HEAD)" + ) +} + +prepare() { + git -C "$srcdir/$_pkgname" clean -dfx +} + +build() { + cd $_pkgname + + python -m build --wheel --no-isolation +} + +package() { + cd $_pkgname + + python -m installer --destdir="$pkgdir" dist/*.whl +} + diff --git a/packages/python-dissect.ole/PKGBUILD b/packages/python-dissect.ole/PKGBUILD new file mode 100644 index 00000000000..c954f4a7f0d --- /dev/null +++ b/packages/python-dissect.ole/PKGBUILD @@ -0,0 +1,46 @@ +# This file is part of BlackArch Linux ( https://www.blackarch.org/ ). +# See COPYING for license details. + +pkgname=python-dissect.ole +_pkgname=${pkgname#python-} +pkgver=3.9.r0.ge21455d +pkgrel=1 +pkgdesc='A Dissect module implementing a parser for the Object Linking & Embedding (OLE) format, commonly used by document editors on Windows operating systems.' +arch=('x86_64' 'aarch64') +groups=('blackarch' 'blackarch-forensic') +url='https://github.com/fox-it/dissect.ole' +license=('AGPL-3.0-or-later') +depends=('python' 'python-dissect.cstruct' 'python-dissect.util') +makedepends=('git' 'python-pip' 'python-build' 'python-installer' + 'python-wheel' 'python-setuptools' 'python-setuptools-scm') +options=(!emptydirs) +source=("git+https://github.com/fox-it/$_pkgname.git") +sha512sums=('SKIP') + +pkgver() { + cd $_pkgname + + ( set -o pipefail + git describe --long --tags --abbrev=7 2>/dev/null | + sed 's/\([^-]*-g\)/r\1/;s/-/./g' || + printf "%s.%s" "$(git rev-list --count HEAD)" \ + "$(git rev-parse --short=7 HEAD)" + ) +} + +prepare() { + git -C "$srcdir/$_pkgname" clean -dfx +} + +build() { + cd $_pkgname + + python -m build --wheel --no-isolation +} + +package() { + cd $_pkgname + + python -m installer --destdir="$pkgdir" dist/*.whl +} + diff --git a/packages/python-dissect.regf/PKGBUILD b/packages/python-dissect.regf/PKGBUILD new file mode 100644 index 00000000000..51c2b95e986 --- /dev/null +++ b/packages/python-dissect.regf/PKGBUILD @@ -0,0 +1,46 @@ +# This file is part of BlackArch Linux ( https://www.blackarch.org/ ). +# See COPYING for license details. + +pkgname=python-dissect.regf +_pkgname=${pkgname#python-} +pkgver=3.11.r0.g94b58df +pkgrel=1 +pkgdesc='A Dissect module implementing a parser for Windows registry file format, used to store application and OS configuration on Windows operating systems.' +arch=('x86_64' 'aarch64') +groups=('blackarch' 'blackarch-forensic') +url='https://github.com/fox-it/dissect.regf' +license=('AGPL-3.0-or-later') +depends=('python' 'python-dissect.cstruct' 'python-dissect.util') +makedepends=('git' 'python-pip' 'python-build' 'python-installer' + 'python-wheel' 'python-setuptools' 'python-setuptools-scm') +options=(!emptydirs) +source=("git+https://github.com/fox-it/$_pkgname.git") +sha512sums=('SKIP') + +pkgver() { + cd $_pkgname + + ( set -o pipefail + git describe --long --tags --abbrev=7 2>/dev/null | + sed 's/\([^-]*-g\)/r\1/;s/-/./g' || + printf "%s.%s" "$(git rev-list --count HEAD)" \ + "$(git rev-parse --short=7 HEAD)" + ) +} + +prepare() { + git -C "$srcdir/$_pkgname" clean -dfx +} + +build() { + cd $_pkgname + + python -m build --wheel --no-isolation +} + +package() { + cd $_pkgname + + python -m installer --destdir="$pkgdir" dist/*.whl +} + diff --git a/packages/python-dissect.shellitem/PKGBUILD b/packages/python-dissect.shellitem/PKGBUILD new file mode 100644 index 00000000000..be6379ef41d --- /dev/null +++ b/packages/python-dissect.shellitem/PKGBUILD @@ -0,0 +1,46 @@ +# This file is part of BlackArch Linux ( https://www.blackarch.org/ ). +# See COPYING for license details. + +pkgname=python-dissect.shellitem +_pkgname=${pkgname#python-} +pkgver=3.10.r0.g975a812 +pkgrel=1 +pkgdesc='A Dissect module implementing a parser for the Shellitem structures, commonly used by Microsoft Windows.' +arch=('x86_64' 'aarch64') +groups=('blackarch' 'blackarch-forensic') +url='https://github.com/fox-it/dissect.shellitem' +license=('AGPL-3.0-or-later') +depends=('python' 'python-dissect.cstruct' 'python-dissect.util') +makedepends=('git' 'python-pip' 'python-build' 'python-installer' + 'python-wheel' 'python-setuptools' 'python-setuptools-scm') +options=(!emptydirs) +source=("git+https://github.com/fox-it/$_pkgname.git") +sha512sums=('SKIP') + +pkgver() { + cd $_pkgname + + ( set -o pipefail + git describe --long --tags --abbrev=7 2>/dev/null | + sed 's/\([^-]*-g\)/r\1/;s/-/./g' || + printf "%s.%s" "$(git rev-list --count HEAD)" \ + "$(git rev-parse --short=7 HEAD)" + ) +} + +prepare() { + git -C "$srcdir/$_pkgname" clean -dfx +} + +build() { + cd $_pkgname + + python -m build --wheel --no-isolation +} + +package() { + cd $_pkgname + + python -m installer --destdir="$pkgdir" dist/*.whl +} + diff --git a/packages/python-dissect.sql/PKGBUILD b/packages/python-dissect.sql/PKGBUILD new file mode 100644 index 00000000000..28f34f62be1 --- /dev/null +++ b/packages/python-dissect.sql/PKGBUILD @@ -0,0 +1,46 @@ +# This file is part of BlackArch Linux ( https://www.blackarch.org/ ). +# See COPYING for license details. + +pkgname=python-dissect.sql +_pkgname=${pkgname#python-} +pkgver=3.10.r0.g863d97e +pkgrel=1 +pkgdesc='A Dissect module implementing a parsers for the SQLite database file format, commonly used by applications to store configuration data.' +arch=('x86_64' 'aarch64') +groups=('blackarch' 'blackarch-forensic') +url='https://github.com/fox-it/dissect.sql' +license=('AGPL-3.0-or-later') +depends=('python' 'python-dissect.cstruct' 'python-dissect.util') +makedepends=('git' 'python-pip' 'python-build' 'python-installer' + 'python-wheel' 'python-setuptools' 'python-setuptools-scm') +options=(!emptydirs) +source=("git+https://github.com/fox-it/$_pkgname.git") +sha512sums=('SKIP') + +pkgver() { + cd $_pkgname + + ( set -o pipefail + git describe --long --tags --abbrev=7 2>/dev/null | + sed 's/\([^-]*-g\)/r\1/;s/-/./g' || + printf "%s.%s" "$(git rev-list --count HEAD)" \ + "$(git rev-parse --short=7 HEAD)" + ) +} + +prepare() { + git -C "$srcdir/$_pkgname" clean -dfx +} + +build() { + cd $_pkgname + + python -m build --wheel --no-isolation +} + +package() { + cd $_pkgname + + python -m installer --destdir="$pkgdir" dist/*.whl +} + diff --git a/packages/python-dissect.squashfs/PKGBUILD b/packages/python-dissect.squashfs/PKGBUILD new file mode 100644 index 00000000000..7983e1e3436 --- /dev/null +++ b/packages/python-dissect.squashfs/PKGBUILD @@ -0,0 +1,47 @@ +# This file is part of BlackArch Linux ( https://www.blackarch.org/ ). +# See COPYING for license details. + +pkgname=python-dissect.squashfs +_pkgname=${pkgname#python-} +pkgver=1.8.r0.g16bc3de +pkgrel=1 +pkgdesc='A Dissect module implementing a parser for the SquashFS file system.' +arch=('x86_64' 'aarch64') +groups=('blackarch' 'blackarch-forensic') +url='https://github.com/fox-it/dissect.squashfs' +license=('AGPL-3.0-or-later') +depends=('python' 'python-dissect.cstruct' 'python-dissect.util' + 'python-zstandard' 'lz4' 'lzo' ) +makedepends=('git' 'python-pip' 'python-build' 'python-installer' + 'python-wheel' 'python-setuptools' 'python-setuptools-scm') +options=(!emptydirs) +source=("git+https://github.com/fox-it/$_pkgname.git") +sha512sums=('SKIP') + +pkgver() { + cd $_pkgname + + ( set -o pipefail + git describe --long --tags --abbrev=7 2>/dev/null | + sed 's/\([^-]*-g\)/r\1/;s/-/./g' || + printf "%s.%s" "$(git rev-list --count HEAD)" \ + "$(git rev-parse --short=7 HEAD)" + ) +} + +prepare() { + git -C "$srcdir/$_pkgname" clean -dfx +} + +build() { + cd $_pkgname + + python -m build --wheel --no-isolation +} + +package() { + cd $_pkgname + + python -m installer --destdir="$pkgdir" dist/*.whl +} + diff --git a/packages/python-dissect.target/PKGBUILD b/packages/python-dissect.target/PKGBUILD new file mode 100644 index 00000000000..bcad6b7027d --- /dev/null +++ b/packages/python-dissect.target/PKGBUILD @@ -0,0 +1,58 @@ +# This file is part of BlackArch Linux ( https://www.blackarch.org/ ). +# See COPYING for license details. + +pkgname=python-dissect.target +_pkgname=${pkgname#python-} +pkgver=3.20.r4.g67d34fe +pkgrel=1 +pkgdesc='The Dissect module tying all other Dissect modules together. It provides a programming API and command line tools which allow easy access to various data sources inside disk images or file collections (a.k.a. targets).' +arch=('x86_64' 'aarch64') +groups=('blackarch' 'blackarch-forensic') +url='https://github.com/fox-it/dissect.target' +license=('AGPL-3.0-or-later') +depends=('python' 'python-asn1crypto' 'python-defusedxml' + 'python-dissect.archive' 'python-dissect.btrfs' 'python-dissect.cim' + 'python-dissect.clfs' 'python-dissect.cstruct' 'python-dissect.esedb' + 'python-dissect.etl' 'python-dissect.eventlog' + 'python-dissect.evidence' 'python-dissect.extfs' 'python-dissect.fat' + 'python-dissect.ffs' 'python-dissect.fve' 'python-dissect.hypervisor' + 'python-dissect.jffs' 'python-dissect.ntfs' 'python-dissect.ole' + 'python-dissect.regf' 'python-dissect.shellitem' + 'python-dissect.squashfs' 'python-dissect.sql' + 'python-dissect.thumbcache' 'python-dissect.util' + 'python-dissect.vmfs' 'python-dissect.volume' 'python-dissect.xfs' + 'python-flow.record' 'python-fusepy' 'python-pycryptodome' + 'python-ruamel-yaml' 'python-structlog' 'python-zstandard' 'ipython') +makedepends=('git' 'python-pip' 'python-build' 'python-installer' + 'python-wheel' 'python-setuptools' 'python-setuptools-scm') +options=(!emptydirs) +source=("git+https://github.com/fox-it/$_pkgname.git") +sha512sums=('SKIP') + +pkgver() { + cd $_pkgname + + ( set -o pipefail + git describe --long --tags --abbrev=7 2>/dev/null | + sed 's/\([^-]*-g\)/r\1/;s/-/./g' || + printf "%s.%s" "$(git rev-list --count HEAD)" \ + "$(git rev-parse --short=7 HEAD)" + ) +} + +prepare() { + git -C "$srcdir/$_pkgname" clean -dfx +} + +build() { + cd $_pkgname + + python -m build --wheel --no-isolation +} + +package() { + cd $_pkgname + + python -m installer --destdir="$pkgdir" dist/*.whl +} + diff --git a/packages/python-dissect.thumbcache/PKGBUILD b/packages/python-dissect.thumbcache/PKGBUILD new file mode 100644 index 00000000000..1396a80b246 --- /dev/null +++ b/packages/python-dissect.thumbcache/PKGBUILD @@ -0,0 +1,46 @@ +# This file is part of BlackArch Linux ( https://www.blackarch.org/ ). +# See COPYING for license details. + +pkgname=python-dissect.thumbcache +_pkgname=${pkgname#python-} +pkgver=1.9.r0.gc38995e +pkgrel=1 +pkgdesc='A Dissect module implementing a parser for windows thumbcache.' +arch=('x86_64' 'aarch64') +groups=('blackarch' 'blackarch-forensic') +url='https://github.com/fox-it/dissect.thumbcache' +license=('AGPL-3.0-or-later') +depends=('python' 'python-dissect.cstruct' 'python-dissect.util') +makedepends=('git' 'python-pip' 'python-build' 'python-installer' + 'python-wheel' 'python-setuptools' 'python-setuptools-scm') +options=(!emptydirs) +source=("git+https://github.com/fox-it/$_pkgname.git") +sha512sums=('SKIP') + +pkgver() { + cd $_pkgname + + ( set -o pipefail + git describe --long --tags --abbrev=7 2>/dev/null | + sed 's/\([^-]*-g\)/r\1/;s/-/./g' || + printf "%s.%s" "$(git rev-list --count HEAD)" \ + "$(git rev-parse --short=7 HEAD)" + ) +} + +prepare() { + git -C "$srcdir/$_pkgname" clean -dfx +} + +build() { + cd $_pkgname + + python -m build --wheel --no-isolation +} + +package() { + cd $_pkgname + + python -m installer --destdir="$pkgdir" dist/*.whl +} + diff --git a/packages/python-dissect.util/PKGBUILD b/packages/python-dissect.util/PKGBUILD new file mode 100644 index 00000000000..06b9b5a4b4c --- /dev/null +++ b/packages/python-dissect.util/PKGBUILD @@ -0,0 +1,46 @@ +# This file is part of BlackArch Linux ( https://www.blackarch.org/ ). +# See COPYING for license details. + +pkgname=python-dissect.util +_pkgname=${pkgname#python-} +pkgver=3.19.r0.g2a9439e +pkgrel=1 +pkgdesc='A Dissect module implementing various utility functions for the other Dissect modules.' +arch=('x86_64' 'aarch64') +groups=('blackarch' 'blackarch-forensic') +url='https://github.com/fox-it/dissect.util' +license=('Apache-2.0') +depends=('python' 'lz4' 'lzo') +makedepends=('git' 'python-pip' 'python-build' 'python-installer' + 'python-wheel' 'python-setuptools' 'python-setuptools-scm') +options=(!emptydirs) +source=("git+https://github.com/fox-it/$_pkgname.git") +sha512sums=('SKIP') + +pkgver() { + cd $_pkgname + + ( set -o pipefail + git describe --long --tags --abbrev=7 2>/dev/null | + sed 's/\([^-]*-g\)/r\1/;s/-/./g' || + printf "%s.%s" "$(git rev-list --count HEAD)" \ + "$(git rev-parse --short=7 HEAD)" + ) +} + +prepare() { + git -C "$srcdir/$_pkgname" clean -dfx +} + +build() { + cd $_pkgname + + python -m build --wheel --no-isolation +} + +package() { + cd $_pkgname + + python -m installer --destdir="$pkgdir" dist/*.whl +} + diff --git a/packages/python-dissect.vmfs/PKGBUILD b/packages/python-dissect.vmfs/PKGBUILD new file mode 100644 index 00000000000..a8c63e152c4 --- /dev/null +++ b/packages/python-dissect.vmfs/PKGBUILD @@ -0,0 +1,46 @@ +# This file is part of BlackArch Linux ( https://www.blackarch.org/ ). +# See COPYING for license details. + +pkgname=python-dissect.vmfs +_pkgname=${pkgname#python-} +pkgver=3.10.r0.g13e1c48 +pkgrel=1 +pkgdesc='A Dissect module implementing a parser for the VMFS file system, used by VMware virtualization software.' +arch=('x86_64' 'aarch64') +groups=('blackarch' 'blackarch-forensic') +url='https://github.com/fox-it/dissect.vmfs' +license=('AGPL-3.0-or-later') +depends=('python' 'python-dissect.cstruct' 'python-dissect.util') +makedepends=('git' 'python-pip' 'python-build' 'python-installer' + 'python-wheel' 'python-setuptools' 'python-setuptools-scm') +options=(!emptydirs) +source=("git+https://github.com/fox-it/$_pkgname.git") +sha512sums=('SKIP') + +pkgver() { + cd $_pkgname + + ( set -o pipefail + git describe --long --tags --abbrev=7 2>/dev/null | + sed 's/\([^-]*-g\)/r\1/;s/-/./g' || + printf "%s.%s" "$(git rev-list --count HEAD)" \ + "$(git rev-parse --short=7 HEAD)" + ) +} + +prepare() { + git -C "$srcdir/$_pkgname" clean -dfx +} + +build() { + cd $_pkgname + + python -m build --wheel --no-isolation +} + +package() { + cd $_pkgname + + python -m installer --destdir="$pkgdir" dist/*.whl +} + diff --git a/packages/python-dissect.volume/PKGBUILD b/packages/python-dissect.volume/PKGBUILD new file mode 100644 index 00000000000..c405c3805dd --- /dev/null +++ b/packages/python-dissect.volume/PKGBUILD @@ -0,0 +1,46 @@ +# This file is part of BlackArch Linux ( https://www.blackarch.org/ ). +# See COPYING for license details. + +pkgname=python-dissect.volume +_pkgname=${pkgname#python-} +pkgver=3.13.r0.gdd3b289 +pkgrel=1 +pkgdesc='A Dissect module implementing a parser for different disk volume and partition systems, for example LVM2, GPT and MBR.' +arch=('x86_64' 'aarch64') +groups=('blackarch' 'blackarch-forensic') +url='https://github.com/fox-it/dissect.volume' +license=('AGPL-3.0-or-later') +depends=('python' 'python-dissect.cstruct' 'python-dissect.util') +makedepends=('git' 'python-pip' 'python-build' 'python-installer' + 'python-wheel' 'python-setuptools' 'python-setuptools-scm') +options=(!emptydirs) +source=("git+https://github.com/fox-it/$_pkgname.git") +sha512sums=('SKIP') + +pkgver() { + cd $_pkgname + + ( set -o pipefail + git describe --long --tags --abbrev=7 2>/dev/null | + sed 's/\([^-]*-g\)/r\1/;s/-/./g' || + printf "%s.%s" "$(git rev-list --count HEAD)" \ + "$(git rev-parse --short=7 HEAD)" + ) +} + +prepare() { + git -C "$srcdir/$_pkgname" clean -dfx +} + +build() { + cd $_pkgname + + python -m build --wheel --no-isolation +} + +package() { + cd $_pkgname + + python -m installer --destdir="$pkgdir" dist/*.whl +} + diff --git a/packages/python-dissect.xfs/PKGBUILD b/packages/python-dissect.xfs/PKGBUILD new file mode 100644 index 00000000000..22c9004038e --- /dev/null +++ b/packages/python-dissect.xfs/PKGBUILD @@ -0,0 +1,46 @@ +# This file is part of BlackArch Linux ( https://www.blackarch.org/ ). +# See COPYING for license details. + +pkgname=python-dissect.xfs +_pkgname=${pkgname#python-} +pkgver=3.11.r0.g5e2c336 +pkgrel=1 +pkgdesc='A Dissect module implementing a parser for the XFS file system, commonly used by RedHat Linux distributions.' +arch=('x86_64' 'aarch64') +groups=('blackarch' 'blackarch-forensic') +url='https://github.com/fox-it/dissect.xfs' +license=('AGPL-3.0-or-later') +depends=('python' 'python-dissect.cstruct' 'python-dissect.util') +makedepends=('git' 'python-pip' 'python-build' 'python-installer' + 'python-wheel' 'python-setuptools' 'python-setuptools-scm') +options=(!emptydirs) +source=("git+https://github.com/fox-it/$_pkgname.git") +sha512sums=('SKIP') + +pkgver() { + cd $_pkgname + + ( set -o pipefail + git describe --long --tags --abbrev=7 2>/dev/null | + sed 's/\([^-]*-g\)/r\1/;s/-/./g' || + printf "%s.%s" "$(git rev-list --count HEAD)" \ + "$(git rev-parse --short=7 HEAD)" + ) +} + +prepare() { + git -C "$srcdir/$_pkgname" clean -dfx +} + +build() { + cd $_pkgname + + python -m build --wheel --no-isolation +} + +package() { + cd $_pkgname + + python -m installer --destdir="$pkgdir" dist/*.whl +} + diff --git a/packages/python-flow.record/PKGBUILD b/packages/python-flow.record/PKGBUILD new file mode 100644 index 00000000000..3526e8cdd95 --- /dev/null +++ b/packages/python-flow.record/PKGBUILD @@ -0,0 +1,47 @@ +# This file is part of BlackArch Linux ( https://www.blackarch.org/ ). +# See COPYING for license details. + +pkgname=python-flow.record +_pkgname=${pkgname#python-} +pkgver=3.18.r0.gc482853 +pkgrel=1 +pkgdesc='Recordization library.' +arch=('x86_64' 'aarch64') +groups=('blackarch' 'blackarch-forensic') +url='https://github.com/fox-it/flow.record' +license=('AGPL-3.0-or-later') +depends=('python' 'python-maxminddb' 'python-msgpack' 'python-zstandard' + 'elasticsearch' 'httpx' 'lz4') +makedepends=('git' 'python-pip' 'python-build' 'python-installer' + 'python-wheel' 'python-setuptools' 'python-setuptools-scm') +options=(!emptydirs) +source=("git+https://github.com/fox-it/$_pkgname.git") +sha512sums=('SKIP') + +pkgver() { + cd $_pkgname + + ( set -o pipefail + git describe --long --tags --abbrev=7 2>/dev/null | + sed 's/\([^-]*-g\)/r\1/;s/-/./g' || + printf "%s.%s" "$(git rev-list --count HEAD)" \ + "$(git rev-parse --short=7 HEAD)" + ) +} + +prepare() { + git -C "$srcdir/$_pkgname" clean -dfx +} + +build() { + cd $_pkgname + + python -m build --wheel --no-isolation +} + +package() { + cd $_pkgname + + python -m installer --destdir="$pkgdir" dist/*.whl +} +