NSRL Downloads

HOME

GENERAL INFORMATION

TECHNICAL INFORMATION

Technical Papers
Presentations

DOWNLOADS

CFTT Website

NSRL Site Statistics

NIST is an agency of the
U.S. Commerce Department's
Technology Administration.

Date created: 8/20/2003
Last updated: April 28, 2009

Technical comments: nsrl@nist.gov

Website comments: web897@nist.gov

Downloads

On this page, we will make links available to hashsets, to source code, and to executable tools produced by the NSRL.

ISO 9660 images of Current RDS CDs

Non-RDS Hash datasets - hashes and digests not published in the RDS (NEW Jan. 2010)

Test data for SHA-1, MD5 or SHA-256 implementations

WiReD - Windows Registry Dataset - BETA release CD ISO

Bloom filter research as applied to RDS 2.13; code, test data, etc.

Converting RDS format to other formats

Perl modules as discussed in the Digital Forensics - Using Perl to Harvest Hash Sets paper

NSRL Knoppix - bootable CD ISO for collecting metadata, hashing and storing in NIST NSRL format

ISO 9660 images of RDS CDs

If you have a fast Internet connection, you may download ISO 9660 image files and burn your own copy of the RDS CDs.

Be aware that the ISO image files are each approximately 300MB in size.

The RDS, from RDS 2.20 onward, does not support the categorization used in previous releases. For example, you cannot use CD "B" for exclusion of known operating system applications, as was possible previously.

NOTE: the data format has not changed, merely the allocation of space across the media.

The discs contain the following ranges of SHA-1 hash values:
CD "A" 0000000000000000000000000000000000000000
- 3FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF

CD "B" 4000000000000000000000000000000000000000
- 7FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF

CD "C" 8000000000000000000000000000000000000000
- BFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF

CD "D" C000000000000000000000000000000000000000
- FFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFFF

See the description of the RDS contents for details

RDS 2.27 , December 2009

signatures of the four ISO images

description of the RDS contents

Be aware that the converted ZIP files are each approximately 800MB in size.
NIST has also converted the RDS format data into data files for some commercial products:

Hashes of the zip files

Contact nsrl@nist.gov with questions about other formats.

It is your responsibility to verify the ISO image files with the signatures and file sizes once they are downloaded. After you have used the image to create a CD, it is your responsibility to verify the data files on that CD with the signatures provided on that CD.

Converting RDS format to other formats

There is a Windows GUI tool HashConverter.zip that the NSRL is allowed redistribute.

You can pick up the NSRL Perl conversion code at rds2hk.zip
When you unpack the zip file, there is one file, "rds2hk.pl".
enter
      perl rds2hk.pl -h
and you will get the help output:

Usage : rds2hk.pl [-h] -f format [-d RDS_directory]
      [-l logfile] [-p product_id] [-u]
      -h : help with command line options
      -f format : one of hk , 1.5 , 2.0 (MANDATORY)
      -l logfile : print log info to a file
      -d dir : directory holding NSRLProd.txt, NSRLFile.txt
      NSRLOS.txt and NSRLMfg.txt
      -p integer : use one ProductCode from NSRLProd.txt
      -u : guarantee a unique product line in hk output

Enter the command
      perl rds2hk.pl -f hk -d SOME_DIR

and you'll get two files, "outfile.hke" and "outfile.hsh"
that you can rename and pull into Hashkeeper.

Mappings of File SHA-1s to Path/File names

The project was not initially collecting the full path information for all of the files on all of the media in the NSRL collection, but we have some of that data, and it is available here.

You can download a zipped text file, NSRLLocn.txt, which contains the SHA-1, AppID, MediaID, and full path string for 28,569,382 files as of Jan. 7, 2004.

The SHA-1 of the zip file is 7E0B63CDFDBAC7D4664057F15FC7AC66ABE0E2EB and the MD5 is 59C2AB12EBB966C7F984B63D4C057B20 . The size is 460 MB.