Post

Building and Running Detect It Easy (DIE) on Kali Linux: Complete Tutorial

Posted Updated
Preview Image
By fr0stb1rd
views 2 min read
Building and Running Detect It Easy (DIE) on Kali Linux: Complete Tutorial

What is Detect It Easy (DIE)?

Detect It Easy (DIE) is a powerful file analysis tool that helps identify file types, compilers, and packers used in executable files. It’s particularly useful for:

  • Identifying file types and formats
  • Detecting compilers and packers used in executables
  • Analyzing file signatures and headers
  • Reverse engineering and malware analysis

Prerequisites

Before you begin, ensure you have the following installed:

  • Kali Linux (latest version recommended)
  • Basic understanding of file analysis concepts

Building and Running DIE

Video Tutorial: Using Pre-built Package and AppImage

Method 1: Using Pre-built Package

You can install DIE using the pre-built .deb package from the official releases:

  1. Download the appropriate .deb package for your Kali Linux version from DIE Releases
    • For Kali 2024.3: die_3.10_Kali_2024.3_amd64.deb
  2. Install the downloaded package:
    1

    sudo dpkg -i die_3.10_Kali_2024.3_amd64.deb

Method 2: Using AppImage

You can also run DIE using the portable AppImage version:

  1. Download the AppImage file from DIE Releases
    • Look for the file named die_linux_x86_64.AppImage
  2. Make the AppImage executable and run it:
    1
2

    chmod +x die_linux_x86_64.AppImage
./die_linux_x86_64.AppImage

Method 3: Building from Source

⚠️ Important Note: The build instructions below are provided as a backup reference. Always check the official build documentation for the most up-to-date instructions, as build requirements and commands may change over time.

Video Tutorial: Building DIE from Source

Step 1: Install Required Packages

First, let’s install the necessary development packages:

1
2

sudo apt-get update
sudo apt-get install qtbase5-dev qtscript5-dev qttools5-dev-tools libqt5svg5-dev git build-essential qtchooser qt5-qmake -y

Step 2: Clone the Repository

Clone the DIE repository with all submodules:

1
2

git clone --recursive https://github.com/horsicq/DIE-engine.git --depth 1
cd DIE-engine

Step 3: Build DIE

Run the build script to create the Debian package:

1

bash -x build_dpkg.sh

Step 4: Install the Package

Install the generated Debian package:

1

sudo dpkg -i release/$(ls release)

Using Detect It Easy

Launching DIE

After installation, you can launch DIE in several ways:

  1. From the terminal:
    1

    die
  2. From the applications menu (if available)

Key Features

  • File Type Detection: Automatically identifies file types and formats
  • Compiler Detection: Detects compilers used to create executables
  • Packer Detection: Identifies packers and protectors used in files
  • Signature Analysis: Analyzes file signatures and headers
  • Plugin System: Supports additional plugins for extended functionality

Common Use Cases

  1. Malware Analysis: Identify packed or obfuscated malware
  2. Software Analysis: Determine how a program was compiled
  3. File Verification: Verify file types and integrity
  4. Reverse Engineering: Initial analysis of unknown files

Uninstalling DIE

1
2
3

sudo rm -rf /usr/bin/die
sudo rm -rf ~/DIE-engine
sudo apt-get autoremove -y
Development, Linux, Security
detect it easy die kali linux reverse engineering file analysis tutorial build
This post is licensed under CC BY 4.0 by the author.