OwlArch Linux Distribution
OSINT & Malware Analysis Toolkit
OwlArch is an Arch Linux-based distribution designed for malware analysis, reverse engineering, and OSINT investigations. It combines a minimalistic Arch environment with a curated suite of security tools, automated builds, and forensic readiness.
Key Features
- Pre-installed Tools: Plenty of security tools for malware analysis, network forensics, and OSINT
- Automated Builds: Continious ISO updates via GitHub Actions
- Privacy-First: Brave browser, DNS-over-HTTPS, and hardened kernel configs
- Virtualization Ready: OVF/VMDK templates for VMware/VirtualBox
- Customizable: Easily add/remove tools via the OwlArch Package Repository
Automated Build Process
OwlArch uses GitHub Actions for continuous integration and delivery:
- Automated ISO Builds: Automated generation of bootable ISO images
- Containerized Workflow: Secure, reproducible builds using Arch Linux Docker images
- Artifact Management: ISOs uploaded to GitHub Releases for easy access
- Testing: Built-in validation for package integrity and tool functionality
View the full GitHub Actions pipeline →
And for more info press here
Tools Included
| Category | Tools |
|---|---|
| Reverse Engineering | Ghidra, Radare2, Capstone, Binary Ninja (optional) |
| Malware Analysis | Volatility, Pwndbg, Cuckoo Sandbox (integration) |
| Network Analysis | Wireshark, Suricata, Zeek, TCPDump |
| OSINT | Maltego, Spiderfoot, theHarvester, Shodan CLI, OwlSearch |
| Debugging | GDB, Frida, QEMU |
For more info press here
Quick Start
To read a quickstart guide on how to install and get started, Click here!
Documentation
- About: About
- Build Process: ISO Pipeline
- Build Process: Pages Pipeline
- Build Process: Pages Documentation
- Tool Docs: Package Repository
- Create your distro: Your distro Documentation
Community & Support
- Discussions: GitHub Forum
- Contributing: Guide
- Bugs/Requests: Issue Tracker
OwlArch - Where Arch Linux meets digital forensics 🦉🔍