How To Install tlsh-tools on Kali Linux

Introduction

In this tutorial we learn how to install tlsh-tools on Kali Linux.

What is tlsh-tools

tlsh-tools is:

The Trend Micro Locality Sensitive Hash is a fuzzy hash algorithm that can be used to compare similar but not identical files.

Identifying near duplicates and similar files is known to be useful to identify malware samples with similar binary file structure, variants of spam email, or backups with corrupted files.

This package contains the tlsh_unittest utility, a command-line tool to generate TLSH hash values and compare TLSH hash values to determine similar files.

There are three methods to install tlsh-tools on Kali Linux. We can use apt-get, apt and aptitude. In the following sections we will describe each method. You can choose one of them.

Install tlsh-tools Using apt-get

Update apt database with apt-get using the following command.

sudo apt-get update

After updating apt database, We can install tlsh-tools using apt-get by running the following command:

sudo apt-get -y install tlsh-tools

Install tlsh-tools Using apt

Update apt database with apt using the following command.

sudo apt update

After updating apt database, We can install tlsh-tools using apt by running the following command:

sudo apt -y install tlsh-tools

Install tlsh-tools Using aptitude

If you want to follow this method, you might need to install aptitude on Kali Linux first since aptitude is usually not installed by default on Kali Linux. Update apt database with aptitude using the following command.

sudo aptitude update

After updating apt database, We can install tlsh-tools using aptitude by running the following command:

sudo aptitude -y install tlsh-tools

How To Uninstall tlsh-tools on Kali Linux

To uninstall only the tlsh-tools package we can use the following command:

sudo apt-get remove tlsh-tools

Uninstall tlsh-tools And Its Dependencies

To uninstall tlsh-tools and its dependencies that are no longer needed by Kali Linux, we can use the command below:

sudo apt-get -y autoremove tlsh-tools

Remove tlsh-tools Configurations and Data

To remove tlsh-tools configuration and data from Kali Linux we can use the following command:

sudo apt-get -y purge tlsh-tools

Remove tlsh-tools configuration, data, and all of its dependencies

We can use the following command to remove tlsh-tools configurations, data and all of its dependencies, we can use the following command:

sudo apt-get -y autoremove --purge tlsh-tools

Dependencies

tlsh-tools have the following dependencies:

• libc6
• libgcc-s1
• libstdc++6
• libtlsh0

References

• tlsh-tools website

Summary

In this tutorial we learn how to install tlsh-tools package on Kali Linux using different package management tools: apt, apt-get and aptitude.