Pre-installed tools

Your PiRogue comes with a set a pre-installed and pre-configured tools covering different purposes.

Network traffic capture #

• tcpdump to capture network traffic into PCAP files - documentation
• mitm-proxy to intercept and capture HTTPS traffic - documentation

Network traffic analysis #

• suricata to detect malicious traffic based on rules - documentation
• nfstream to inspect traffic and determine the application involved in each flow - documentation

Device analysis & forensic #

• adb to interact with Android devices - documentation
• libimobiledevice to interact with iOS devices - documentation
• mvt to conduct device forensic analysis - documentation
• frida to instrument programs running on a device - documentation

Data visualization #

• influxdb to store data generated by nfstream and suricata - documentation
• chronograph to search and export data stored in influxdb - documentation
• grafana to display data on dashboards - documentation

Utilities #

• vim to edit files - documentation
• git to version files - documentation
• jq to manipulate JSON files - documentation
• gnupg2 to sign, encrypt and verify files - documentation
• python3 to write and execute Python programs - documentation