ports/contrib (3.2): volatility: 2.3 -> 2.5

11 Feb 2016

commit 24e8af4eda9fff8eb5d9f91af15ea94b125f8706
Author: Thomas Penteker <thomas.penteker@siemens.com>
Date:   Thu Feb 11 01:17:25 2016 +0100

    volatility: 2.3 -> 2.5

diff --git a/volatility/.footprint b/volatility/.footprint
index c2f62cf..e5a7554 100644
--- a/volatility/.footprint
+++ b/volatility/.footprint
@@ -4,11 +4,11 @@ drwxr-xr-x	root/root	usr/bin/
 drwxr-xr-x	root/root	usr/lib/
 drwxr-xr-x	root/root	usr/lib/python2.7/
 drwxr-xr-x	root/root	usr/lib/python2.7/site-packages/
-drwxr-xr-x	root/root	usr/lib/python2.7/site-packages/volatility-2.3-py2.7.egg-info/
--rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility-2.3-py2.7.egg-info/PKG-INFO
--rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility-2.3-py2.7.egg-info/SOURCES.txt
--rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility-2.3-py2.7.egg-info/dependency_links.txt
--rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility-2.3-py2.7.egg-info/top_level.txt
+drwxr-xr-x	root/root	usr/lib/python2.7/site-packages/volatility-2.5-py2.7.egg-info/
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility-2.5-py2.7.egg-info/PKG-INFO
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility-2.5-py2.7.egg-info/SOURCES.txt
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility-2.5-py2.7.egg-info/dependency_links.txt
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility-2.5-py2.7.egg-info/top_level.txt
 drwxr-xr-x	root/root	usr/lib/python2.7/site-packages/volatility/
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/__init__.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/__init__.pyc
@@ -44,6 +44,10 @@ drwxr-xr-x	root/root	usr/lib/python2.7/site-packages/volatility/plugins/addrspac
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/addrspaces/arm.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/addrspaces/crash.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/addrspaces/crash.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/addrspaces/crashbmp.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/addrspaces/crashbmp.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/addrspaces/elfcoredump.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/addrspaces/elfcoredump.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/addrspaces/hibernate.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/addrspaces/hibernate.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/addrspaces/hpak.py
@@ -56,16 +60,22 @@ drwxr-xr-x	root/root	usr/lib/python2.7/site-packages/volatility/plugins/addrspac
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/addrspaces/lime.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/addrspaces/macho.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/addrspaces/macho.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/addrspaces/osxpmemelf.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/addrspaces/osxpmemelf.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/addrspaces/paged.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/addrspaces/paged.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/addrspaces/standard.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/addrspaces/standard.pyc
--rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/addrspaces/vboxelf.py
--rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/addrspaces/vboxelf.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/addrspaces/vmem.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/addrspaces/vmem.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/addrspaces/vmware.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/addrspaces/vmware.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/bigpagepools.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/bigpagepools.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/bioskbd.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/bioskbd.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/cmdline.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/cmdline.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/common.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/common.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/connections.py
@@ -76,6 +86,8 @@ drwxr-xr-x	root/root	usr/lib/python2.7/site-packages/volatility/plugins/addrspac
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/crashinfo.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/dlldump.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/dlldump.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/drivermodule.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/drivermodule.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/dumpcerts.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/dumpcerts.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/dumpfiles.py
@@ -103,6 +115,8 @@ drwxr-xr-x	root/root	usr/lib/python2.7/site-packages/volatility/plugins/gui/
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/gui/constants.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/gui/desktops.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/gui/desktops.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/gui/editbox.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/gui/editbox.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/gui/eventhooks.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/gui/eventhooks.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/gui/gahti.py
@@ -134,6 +148,8 @@ drwxr-xr-x	root/root	usr/lib/python2.7/site-packages/volatility/plugins/gui/vtyp
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/gui/vtypes/win7_sp1_x64_vtypes_gui.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/gui/vtypes/win7_sp1_x86_vtypes_gui.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/gui/vtypes/win7_sp1_x86_vtypes_gui.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/gui/vtypes/win8.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/gui/vtypes/win8.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/gui/vtypes/xp.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/gui/vtypes/xp.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/gui/win32k_core.py
@@ -144,6 +160,8 @@ drwxr-xr-x	root/root	usr/lib/python2.7/site-packages/volatility/plugins/gui/vtyp
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/gui/windowstations.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/handles.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/handles.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/heaps.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/heaps.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/hibinfo.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/hibinfo.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/hpakinfo.py
@@ -154,6 +172,8 @@ drwxr-xr-x	root/root	usr/lib/python2.7/site-packages/volatility/plugins/gui/vtyp
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/imagecopy.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/imageinfo.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/imageinfo.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/joblinks.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/joblinks.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/kdbgscan.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/kdbgscan.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/kpcrscan.py
@@ -161,12 +181,16 @@ drwxr-xr-x	root/root	usr/lib/python2.7/site-packages/volatility/plugins/gui/vtyp
 drwxr-xr-x	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/__init__.py (EMPTY)
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/__init__.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/apihooks.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/apihooks.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/arp.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/arp.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/banner.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/banner.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/bash.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/bash.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/bash_hash.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/bash_hash.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/check_afinfo.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/check_afinfo.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/check_creds.py
@@ -177,6 +201,8 @@ drwxr-xr-x	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/check_fops.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/check_idt.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/check_idt.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/check_inline_kernel.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/check_inline_kernel.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/check_modules.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/check_modules.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/check_syscall.py
@@ -193,38 +219,88 @@ drwxr-xr-x	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/dmesg.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/dump_map.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/dump_map.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/elfs.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/elfs.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/enumerate_files.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/enumerate_files.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/find_file.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/find_file.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/flags.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/flags.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/getcwd.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/getcwd.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/hidden_modules.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/hidden_modules.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/ifconfig.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/ifconfig.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/info_regs.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/info_regs.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/iomem.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/iomem.pyc
--rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/keyboard_notifier.py
--rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/keyboard_notifier.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/kernel_opened_files.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/kernel_opened_files.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/keyboard_notifiers.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/keyboard_notifiers.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/ld_env.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/ld_env.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/ldrmodules.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/ldrmodules.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/libc_env.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/libc_env.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/library_list.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/library_list.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/librarydump.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/librarydump.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/lime.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/lime.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/linux_strings.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/linux_strings.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/linux_truecrypt.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/linux_truecrypt.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/linux_volshell.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/linux_volshell.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/linux_yarascan.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/linux_yarascan.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/list_raw.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/list_raw.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/lsmod.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/lsmod.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/lsof.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/lsof.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/malfind.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/malfind.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/mount.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/mount.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/mount_cache.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/mount_cache.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/netfilter.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/netfilter.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/netscan.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/netscan.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/netstat.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/netstat.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/pidhashtable.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/pidhashtable.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/pkt_queues.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/pkt_queues.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/plthook.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/plthook.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/proc_maps.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/proc_maps.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/proc_maps_rb.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/proc_maps_rb.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/procdump.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/procdump.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/process_hollow.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/process_hollow.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/process_info.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/process_info.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/process_stack.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/process_stack.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/psaux.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/psaux.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/psenv.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/psenv.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/pslist.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/pslist.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/pslist_cache.py
@@ -233,12 +309,16 @@ drwxr-xr-x	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/pstree.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/psxview.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/psxview.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/recover_filesystem.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/recover_filesystem.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/route_cache.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/route_cache.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/sk_buff_cache.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/sk_buff_cache.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/slab_info.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/slab_info.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/threads.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/threads.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/tmpfs.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/tmpfs.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/tty_check.py
@@ -246,10 +326,30 @@ drwxr-xr-x	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/vma_cache.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/linux/vma_cache.pyc
 drwxr-xr-x	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/WKdm.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/WKdm.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/__init__.py (EMPTY)
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/__init__.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/adiummsgs.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/adiummsgs.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/apihooks.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/apihooks.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/apihooks_kernel.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/apihooks_kernel.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/arp.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/arp.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/bash.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/bash.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/bash_env.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/bash_env.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/bash_hash.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/bash_hash.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/calendar.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/calendar.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/check_mig_table.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/check_mig_table.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/check_syscall_shadow.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/check_syscall_shadow.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/check_syscall_table.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/check_syscall_table.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/check_sysctl.py
@@ -258,36 +358,82 @@ drwxr-xr-x	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/check_trap_table.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/common.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/common.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/compressed_swap.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/compressed_swap.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/contacts.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/contacts.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/dead_procs.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/dead_procs.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/dead_sockets.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/dead_sockets.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/dead_vnodes.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/dead_vnodes.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/dlyd_maps.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/dlyd_maps.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/dmesg.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/dmesg.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/dump_files.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/dump_files.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/dump_map.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/dump_map.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/find_aslr_shift.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/find_aslr_shift.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/get_profile.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/get_profile.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/gkextmap.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/gkextmap.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/ifconfig.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/ifconfig.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/ip_filters.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/ip_filters.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/keychaindump.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/keychaindump.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/ldrmodules.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/ldrmodules.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/librarydump.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/librarydump.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/list_files.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/list_files.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/list_kauth_listeners.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/list_kauth_listeners.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/list_kauth_scopes.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/list_kauth_scopes.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/list_raw.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/list_raw.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/list_zones.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/list_zones.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/lsmod.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/lsmod.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/lsmod_iokit.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/lsmod_iokit.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/lsof.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/lsof.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/mac_strings.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/mac_strings.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/mac_volshell.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/mac_volshell.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/mac_yarascan.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/mac_yarascan.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/machine_info.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/machine_info.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/malfind.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/malfind.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/memdump.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/memdump.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/moddump.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/moddump.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/mount.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/mount.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/netconns.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/netconns.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/netstat.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/netstat.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/notesapp.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/notesapp.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/notifiers.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/notifiers.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/orphan_threads.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/orphan_threads.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/pgrp_hash_table.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/pgrp_hash_table.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/pid_hash_table.py
@@ -296,8 +442,12 @@ drwxr-xr-x	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/print_boot_cmdline.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/proc_maps.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/proc_maps.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/procdump.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/procdump.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/psaux.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/psaux.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/psenv.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/psenv.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/pslist.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/pslist.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/pstasks.py
@@ -306,10 +456,18 @@ drwxr-xr-x	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/pstree.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/psxview.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/psxview.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/recover_filesystem.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/recover_filesystem.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/route.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/route.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/session_hash_table.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/session_hash_table.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/socket_filters.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/socket_filters.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/threads.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/threads.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/threads_simple.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/threads_simple.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/trustedbsd.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/trustedbsd.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/mac/version.py
@@ -335,6 +493,8 @@ drwxr-xr-x	root/root	usr/lib/python2.7/site-packages/volatility/plugins/malware/
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/malware/malfind.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/malware/psxview.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/malware/psxview.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/malware/servicediff.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/malware/servicediff.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/malware/svcscan.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/malware/svcscan.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/malware/threads.py
@@ -351,8 +511,14 @@ drwxr-xr-x	root/root	usr/lib/python2.7/site-packages/volatility/plugins/malware/
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/modscan.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/modules.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/modules.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/multiscan.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/multiscan.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/netscan.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/netscan.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/notepad.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/notepad.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/objtypescan.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/objtypescan.pyc
 drwxr-xr-x	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/__init__.py (EMPTY)
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/__init__.pyc
@@ -365,13 +531,13 @@ drwxr-xr-x	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/linux/elf.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/linux/linux.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/linux/linux.pyc
--rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/linux/linux64.py
--rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/linux/linux64.pyc
 drwxr-xr-x	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/mac/
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/mac/__init__.py (EMPTY)
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/mac/__init__.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/mac/mac.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/mac/mac.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/mac/macho.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/mac/macho.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/native_types.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/native_types.pyc
 drwxr-xr-x	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/
@@ -391,6 +557,8 @@ drwxr-xr-x	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/ssdt_vtypes.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/tcpip_vtypes.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/tcpip_vtypes.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/vad_vtypes.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/vad_vtypes.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/vista.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/vista.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/vista_sp0_x64_syscalls.py
@@ -413,6 +581,12 @@ drwxr-xr-x	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/vista_sp2_x64_vtypes.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/vista_sp2_x86_vtypes.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/vista_sp2_x86_vtypes.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win10.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win10.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win10_x64_vtypes.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win10_x64_vtypes.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win10_x86_vtypes.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win10_x86_vtypes.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win2003.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win2003.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win2003_sp0_x86_syscalls.py
@@ -445,6 +619,30 @@ drwxr-xr-x	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win7_sp1_x64_vtypes.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win7_sp1_x86_vtypes.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win7_sp1_x86_vtypes.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win8.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win8.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win81_u1_x64_vtypes.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win81_u1_x64_vtypes.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win81_u1_x86_vtypes.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win81_u1_x86_vtypes.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win8_kdbg.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win8_kdbg.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win8_sp0_x64_syscalls.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win8_sp0_x64_syscalls.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win8_sp0_x64_vtypes.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win8_sp0_x64_vtypes.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win8_sp0_x86_syscalls.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win8_sp0_x86_syscalls.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win8_sp0_x86_vtypes.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win8_sp0_x86_vtypes.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win8_sp1_x64_syscalls.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win8_sp1_x64_syscalls.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win8_sp1_x64_vtypes.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win8_sp1_x64_vtypes.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win8_sp1_x86_syscalls.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win8_sp1_x86_syscalls.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win8_sp1_x86_vtypes.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/win8_sp1_x86_vtypes.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/windows.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/windows.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/windows64.py
@@ -459,6 +657,10 @@ drwxr-xr-x	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays/windows/xp_sp3_x86_vtypes.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/patcher.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/patcher.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/patchguard.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/patchguard.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/pooltracker.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/pooltracker.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/privileges.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/privileges.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/procdump.py
@@ -470,6 +672,12 @@ drwxr-xr-x	root/root	usr/lib/python2.7/site-packages/volatility/plugins/overlays
 drwxr-xr-x	root/root	usr/lib/python2.7/site-packages/volatility/plugins/registry/
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/registry/__init__.py (EMPTY)
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/registry/__init__.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/registry/amcache.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/registry/amcache.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/registry/auditpol.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/registry/auditpol.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/registry/dumpregistry.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/registry/dumpregistry.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/registry/hivelist.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/registry/hivelist.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/registry/hivescan.py
@@ -484,6 +692,10 @@ drwxr-xr-x	root/root	usr/lib/python2.7/site-packages/volatility/plugins/registry
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/registry/shellbags.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/registry/shimcache.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/registry/shimcache.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/registry/shutdown.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/registry/shutdown.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/registry/userassist.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/registry/userassist.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/sockets.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/sockets.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/sockscan.py
@@ -494,28 +706,51 @@ drwxr-xr-x	root/root	usr/lib/python2.7/site-packages/volatility/plugins/registry
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/strings.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/taskmods.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/taskmods.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/tcaudit.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/tcaudit.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/timeliner.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/timeliner.pyc
--rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/userassist.py
--rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/userassist.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/vadinfo.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/vadinfo.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/vboxinfo.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/vboxinfo.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/verinfo.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/verinfo.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/vmwareinfo.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/vmwareinfo.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/volshell.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/volshell.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/win10cookie.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/plugins/win10cookie.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/poolscan.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/poolscan.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/protos.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/protos.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/registry.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/registry.pyc
+drwxr-xr-x	root/root	usr/lib/python2.7/site-packages/volatility/renderers/
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/renderers/__init__.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/renderers/__init__.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/renderers/basic.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/renderers/basic.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/renderers/dot.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/renderers/dot.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/renderers/html.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/renderers/html.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/renderers/sqlite.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/renderers/sqlite.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/renderers/text.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/renderers/text.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/renderers/xlsx.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/renderers/xlsx.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/scan.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/scan.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/timefmt.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/timefmt.pyc
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/utils.py
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/utils.pyc
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/validity.py
+-rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/validity.pyc
 drwxr-xr-x	root/root	usr/lib/python2.7/site-packages/volatility/win32/
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/win32/__init__.py (EMPTY)
 -rw-r--r--	root/root	usr/lib/python2.7/site-packages/volatility/win32/__init__.pyc
@@ -542,23 +777,34 @@ drwxr-xr-x	root/root	usr/lib/python2.7/site-packages/volatility/win32/
 drwxr-xr-x	root/root	usr/share/
 drwxr-xr-x	root/root	usr/share/volatility/
 drwxr-xr-x	root/root	usr/share/volatility/plugins/
+-rw-rw-rw-	root/root	usr/share/volatility/plugins/__init__.py (EMPTY)
 drwxr-xr-x	root/root	usr/share/volatility/plugins/aspaces/
--rw-r--r--	root/root	usr/share/volatility/plugins/aspaces/__init__.py (EMPTY)
--rw-r--r--	root/root	usr/share/volatility/plugins/aspaces/ewf.py
--rw-r--r--	root/root	usr/share/volatility/plugins/disablewarnings.py
--rw-r--r--	root/root	usr/share/volatility/plugins/enumfunc.py
--rw-r--r--	root/root	usr/share/volatility/plugins/example.py
--rw-r--r--	root/root	usr/share/volatility/plugins/pagecheck.py
--rw-r--r--	root/root	usr/share/volatility/plugins/psdispscan.py
--rw-r--r--	root/root	usr/share/volatility/plugins/scanprof.py
--rw-r--r--	root/root	usr/share/volatility/plugins/verinfo.py
+-rw-rw-rw-	root/root	usr/share/volatility/plugins/aspaces/__init__.py (EMPTY)
+-rw-rw-rw-	root/root	usr/share/volatility/plugins/aspaces/ewf.py
+-rw-rw-rw-	root/root	usr/share/volatility/plugins/disablewarnings.py
+-rw-rw-rw-	root/root	usr/share/volatility/plugins/enumfunc.py
+-rw-rw-rw-	root/root	usr/share/volatility/plugins/example.py
+drwxr-xr-x	root/root	usr/share/volatility/plugins/malware/
+-rw-rw-rw-	root/root	usr/share/volatility/plugins/malware/__init__.py (EMPTY)
+-rw-rw-rw-	root/root	usr/share/volatility/plugins/malware/poisonivy.py
+-rw-rw-rw-	root/root	usr/share/volatility/plugins/malware/zeusscan.py
+-rw-rw-rw-	root/root	usr/share/volatility/plugins/pagecheck.py
+-rw-rw-rw-	root/root	usr/share/volatility/plugins/psdispscan.py
+-rw-rw-rw-	root/root	usr/share/volatility/plugins/scanprof.py
 drwxr-xr-x	root/root	usr/tools/
 drwxr-xr-x	root/root	usr/tools/linux/
--rw-r--r--	root/root	usr/tools/linux/Makefile
--rw-r--r--	root/root	usr/tools/linux/module.c
-drwxr-xr-x	root/root	usr/tools/linux/pmem/
--rw-r--r--	root/root	usr/tools/linux/pmem/Makefile
--rw-r--r--	root/root	usr/tools/linux/pmem/pmem.c
+-rw-rw-rw-	root/root	usr/tools/linux/Makefile
+-rw-rw-rw-	root/root	usr/tools/linux/Makefile.enterprise
+drwxr-xr-x	root/root	usr/tools/linux/kcore/
+-rw-rw-rw-	root/root	usr/tools/linux/kcore/Makefile
+-rw-rw-rw-	root/root	usr/tools/linux/kcore/elf.h
+-rw-rw-rw-	root/root	usr/tools/linux/kcore/getkcore.c
+-rw-rw-rw-	root/root	usr/tools/linux/kcore/getkcore.h
+-rw-rw-rw-	root/root	usr/tools/linux/module.c
 drwxr-xr-x	root/root	usr/tools/mac/
--rw-r--r--	root/root	usr/tools/mac/convert.py
+-rw-rw-rw-	root/root	usr/tools/mac/convert.py
+-rw-rw-rw-	root/root	usr/tools/mac/generate_profile_list.py
+-rw-rw-rw-	root/root	usr/tools/mac/mac_create_all_profiles.py
 -rwxr-xr-x	root/root	usr/tools/vtype_diff.py
+drwxr-xr-x	root/root	usr/tools/windows/
+-rw-rw-rw-	root/root	usr/tools/windows/parsesummary.py
diff --git a/volatility/.md5sum b/volatility/.md5sum
index ef9c676..fadd7bb 100644
--- a/volatility/.md5sum
+++ b/volatility/.md5sum
@@ -1 +1 @@
-2628ac9ba0cb15e08381d3761e21ca3e  volatility-2.3.tar.gz
+5be0f1a28ba98977d63df8948a6be1a5  volatility-2.5.zip
diff --git a/volatility/Pkgfile b/volatility/Pkgfile
index a4d7576..107369a 100644
--- a/volatility/Pkgfile
+++ b/volatility/Pkgfile
@@ -4,12 +4,12 @@
 # Depends on:  python
 
 name=volatility
-version=2.3
+version=2.5
 release=1
-source=(https://volatility.googlecode.com/files/volatility-${version}.tar.gz)
+source=(http://downloads.volatilityfoundation.org/releases/${version}/volatility-${version}.zip)
 
 build() {
-	cd $name-$version
+	cd $name-master
   /usr/bin/python setup.py install --prefix=/usr --root=$PKG
 
   mkdir -p $PKG/usr/share/$name

    

crux＠crux.nu

tags

participants (1)