How To Install lime-forensics-dkms on Debian 10
Introduction
In this tutorial we learn how to install lime-forensics-dkms on Debian 10.
What is lime-forensics-dkms
lime-forensics-dkms is:
LiME (Linux Memory Extractor, formerly DMD) is a Loadable Kernel Module (LKM), which allows the acquisition of volatile memory (RAM) from Linux and Linux-based devices, such as those powered by Android. In others words, you can use it to get a memory image from a machine.
The tool supports acquiring memory either to the file system of the device or over the network. LiME is unique in that it is the first tool that allows full memory captures from Android devices. It also minimizes its interaction between user and kernel space processes during acquisition. It will produce memory captures that are more forensically sound than those of other tools designed for Linux memory acquisition. The dump format provided as “lime” is fully compatible with volatility framework.
This package provides the source code for the lime-forensics kernel modules to be build with dkms.
Kernel source or headers are required to compile these modules.
There are three methods to install lime-forensics-dkms on Debian 10. We can use apt-get, apt and aptitude. In the following sections we will describe each method. You can choose one of them.
Install lime-forensics-dkms Using apt-get
Update apt database with apt-get using the following command.
sudo apt-get update
After updating apt database, We can install lime-forensics-dkms using apt-get by running the following command:
sudo apt-get -y install lime-forensics-dkms
Install lime-forensics-dkms Using apt
Update apt database with apt using the following command.
sudo apt update
After updating apt database, We can install lime-forensics-dkms using apt by running the following command:
sudo apt -y install lime-forensics-dkms
Install lime-forensics-dkms Using aptitude
If you want to follow this method, you might need to install aptitude first since aptitude is usually not installed by default on Debian. Update apt database with aptitude using the following command.
sudo aptitude update
After updating apt database, We can install lime-forensics-dkms using aptitude by running the following command:
sudo aptitude -y install lime-forensics-dkms
How To Uninstall lime-forensics-dkms on Debian 10
To uninstall only the lime-forensics-dkms package we can use the following command:
sudo apt-get remove lime-forensics-dkms
Uninstall lime-forensics-dkms And Its Dependencies
To uninstall lime-forensics-dkms and its dependencies that are no longer needed by Debian 10, we can use the command below:
sudo apt-get -y autoremove lime-forensics-dkms
Remove lime-forensics-dkms Configurations and Data
To remove lime-forensics-dkms configuration and data from Debian 10 we can use the following command:
sudo apt-get -y purge lime-forensics-dkms
Remove lime-forensics-dkms configuration, data, and all of its dependencies
We can use the following command to remove lime-forensics-dkms configurations, data and all of its dependencies, we can use the following command:
sudo apt-get -y autoremove --purge lime-forensics-dkms
Dependencies
lime-forensics-dkms have the following dependencies:
References
Summary
In this tutorial we learn how to install lime-forensics-dkms package on Debian 10 using different package management tools: apt, apt-get and aptitude.