Compile The Sleuth Kit on Linux

The Sleuth Kit® (TSK) is a library and collection of command line digital forensics tools that allow you to investigate volume and file system data. The library can be incorporated into larger digital forensics tools and the command line tools can be directly used to find evidence:

On Linux, it’s quite easily compiled directly from source:

# Base built tools
sudo apt install build-essential automake libtool m4 git

# Allow Java/JNI, EWF and AFF support
sudo apt install afflib-tools libewf2 libewf-dev libafflib-dev openjdk-8-jdk ant

git clone git://
cd sleuthkit

# Install in local filesystem
sudo make install

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

By continuing to use the site, you agree to the use of cookies. more information

The cookie settings on this website are set to "allow cookies" to give you the best browsing experience possible. If you continue to use this website without changing your cookie settings or you click "Accept" below then you are consenting to this.