debian/0000755000000000000000000000000011612530534007166 5ustar debian/rules0000755000000000000000000000003511612530534010244 0ustar #!/usr/bin/make -f %: dh $@ debian/source/0000755000000000000000000000000011612530534010466 5ustar debian/source/format0000644000000000000000000000001411612530534011674 0ustar 3.0 (quilt) debian/install0000644000000000000000000000002411612530534010553 0ustar aeskeyfind /usr/bin debian/manpages0000644000000000000000000000002411612530534010700 0ustar debian/aeskeyfind.1 debian/aeskeyfind.10000644000000000000000000000231011612530534011366 0ustar .TH "aeskeyfind" "1" "07-23-2011" "User Commands" "User Commands" .SH "NAME" aeskeyfind \- Locates 128-bit and 256-bit AES keys in a captured memory image. .SH SYNOPSIS .B aeskeyfind [OPTION] MEMORY-IMAGE .SH DESCRIPTION aeskeyfind is a tool that illustrates automatic techniques for locating 128-bit and 256-bit AES keys in a captured memory image. .SH OPTIONS .LP .ne 3 .TP .BI -v\c verbose output -- prints the extended keys and the constraints on the rows of the key schedule .ne 3 .TP .BI -q\c don't display a progress bar .ne 3 .TP .BI -t\ THRESHOLD\c sets the maximum number of bit errors allowed in a candidate key schedule .ne 3 .TP .BI -h\c displays usage help .SH BUGS Likely. .SH "SEE ALSO" \fBbiosmemimage\fR(1), \fBrsakeyfind\fR(1) .SH AUTHOR .TP aeskeyfind was written by Nadia Heninger and Ariel Feldman. .TP This manual page was adapted by Julien Valroff from rsakeyfind.1, originally written by Jacob Appelbaum for the \fBDebian\fP system (but may be used by others). Permission is granted to copy, distribute and/or modify this document under the terms of the GNU General Public License, Version 2 or any later version published by the Free Software Foundation. debian/docs0000644000000000000000000000000711612530534010036 0ustar README debian/compat0000644000000000000000000000000211612530534010364 0ustar 8 debian/copyright0000644000000000000000000000521011612530534011117 0ustar Format: http://dep.debian.net/deps/dep5/ Upstream-Contact: Nadia Heninger Ariel Feldman Source: http://citp.princeton.edu/memory/code/ Files: * Copyright: 2008 Nadia Heninger 2008 Ariel Feldman License: BSD-3-clause Redistribution and use of this software in source and binary forms, with or without modification, are permitted provided that the following conditions are met: . * Redistributions of source code must retain the above copyright notice, this list of conditions and the following disclaimer. . * Redistributions in binary form must reproduce the above copyright notice, this list of conditions and the following disclaimer in the documentation and/or other materials provided with the distribution. . * Neither the names of the authors nor the names of their institutions may be used to endorse or promote products derived from this software without specific prior written permission. . THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. Files: debian/* Copyright: 2008-2009 Jacob Appelbaum 2011 Julien Valroff License: GPL-2+ This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. . This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. . You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. . On Debian systems, the complete text of the GNU General Public License can be found in /usr/share/common-licenses/GPL-2 file. debian/control0000644000000000000000000000173111612530534010573 0ustar Source: aeskeyfind Section: utils Priority: optional Maintainer: Debian Forensics Uploaders: Jacob Appelbaum Build-Depends: debhelper (>= 8.0.0) Standards-Version: 3.9.2 Homepage: http://citp.princeton.edu/memory/code/ Vcs-Browser: http://git.debian.org/?p=forensics/aeskeyfind.git Vcs-Git: git://git.debian.org/git/forensics/aeskeyfind.git Package: aeskeyfind Architecture: any Depends: ${shlibs:Depends}, ${misc:Depends} Description: tool for locating AES keys in a captures memory image This program illustrates automatic techniques for locating 128-bit and 256-bit AES keys in a captured memory image. . The program uses various algorythms and also performs a simple entropy test to filter out blocks that are not keys. It counts the number of repeated bytes and skips blocks that have too many repeats. . This method works even if several bits of the key schedule have been corrupted due to memory decay. debian/watch0000644000000000000000000000012711612530534010217 0ustar version=3 http://citp.princeton.edu/memory-content/src/aeskeyfind-(.*)\.tar\.gz debian debian/changelog0000644000000000000000000000201411612530534011035 0ustar aeskeyfind (1:1.0-1) unstable; urgency=low * Team upload. [ Daniel Baumann ] * Minimizing rules file. * Using debhelper install file rather than adding install target in upstream Makefile. [ Julien Valroff ] * Fix version number (add an epoch to ensure the new version number is higher than the previously uploaded package) * Bump debhelper compat to 8 * Bump standards version to 3.9.2 (no changes needed) * Switch to 3.0 (quilt) source package format * Add watch file * Add manpage * Fix VCS* fields * Move to `utils' section as per the override * Update copyright file as per current DEP-5 * Remove useless lintian override: use Team Upload entry * Update short description and complete long description -- Julien Valroff Sat, 23 Jul 2011 13:32:29 +0200 aeskeyfind (1.0.0-1) unstable; urgency=low * Initial release (Closes: #495416) * Adjusted the Makefile to add $DESTDIR -- Jacob Appelbaum Thu, 25 Jun 2009 12:44:00 -0300