# Install md5deep with Homebrew, dnf, MacPorts, zypper, apt, Nix

Recursively compute digests on files/directories. Version 4.4 via Homebrew; verified from local package data.

## Install

```sh
sudo av install brew:md5deep
```

Additional install commands:

### macOS

- Homebrew (100%):

```sh
brew install md5deep
```

  Evidence: local Homebrew formula metadata

- MacPorts (94%):

```sh
sudo port install md5deep
```

  Evidence: MacPorts ports tree: security/md5deep/Portfile from https://api.github.com/repos/macports/macports-ports/git/trees/master?recursive=1

### Linux

- dnf (92%):

```sh
sudo dnf install md5deep
```

  Evidence: Fedora Rawhide package metadata: md5deep from https://dl.fedoraproject.org/pub/fedora/linux/development/rawhide/Everything/x86_64/os/repodata/e5ca8ce900cd68f5419e1c39ae517343100b306336cbaeb70a3c153121d95094-primary.xml.zst

- zypper (92%):

```sh
sudo zypper install hashdeep
```

  Evidence: openSUSE Tumbleweed package metadata: hashdeep from https://download.opensuse.org/tumbleweed/repo/oss/repodata/be8d3611d25469107f32075a1697e69ec57a2b850b42348a658cc671ad5ec2b50760d02c3e59524d50da9a11d5be799bdaffba2e166e8ca8858512e3c0bd665d-primary.xml.zst

- Debian apt (92%):

```sh
sudo apt install hashdeep
```

  Evidence: Debian stable package indexes: hashdeep from https://deb.debian.org/debian/dists/stable/main/binary-amd64/Packages.xz

- Nix (92%):

```sh
nix profile install nixpkgs#hashdeep
```

  Evidence: nixpkgs package indexes: pkgs/by-name/ha/hashdeep/package.nix from https://api.github.com/repos/NixOS/nixpkgs/git/trees/master?recursive=1

## Package facts

- **Package key:** brew:md5deep
- **Package manager:** Homebrew
- **Package manager page:** <https://formulae.brew.sh/formula/md5deep>
- **Version:** 4.4
- **Source summary:** Recursively compute digests on files/directories
- **Homepage:** <https://github.com/jessek/hashdeep>
- **Repository:** <https://github.com/jessek/hashdeep>
- **Upstream docs:** <https://github.com/jessek/hashdeep#readme>
- **License:** GPL-2.0-or-later
- **Source archive:** <https://github.com/jessek/hashdeep/archive/refs/tags/release-4.4.tar.gz>
- **Generated:** 2026-07-08T07:18:31+00:00

## Executables

- hashdeep (cli)
- md5deep (cli)
- sha1deep (cli)
- sha256deep (cli)
- tigerdeep (cli)
- whirlpooldeep (cli)
- hashdeep (alias)
- md5deep (alias)
- sha1deep (alias)
- sha256deep (alias)
- tigerdeep (alias)
- whirlpooldeep (alias)

## Build dependencies

- autoconf
- automake

## Install behavior

- Post-install hook: not defined
- Bottle: available on arm64_big_sur, arm64_linux, arm64_monterey, arm64_sequoia, arm64_sonoma, arm64_tahoe, arm64_ventura, big_sur, catalina, monterey, sonoma, ventura

## Freshness

- Page generated: 2026-07-08
- Package-manager version: 4.4
- Local data: ok
- Upstream repository: https://github.com/jessek/hashdeep
- info: No package-manager update timestamp was available.
- info: No cached GitHub release or tag data was available.
## Project history and usage

md5deep is the historical package name for the hashdeep tool family: recursive file hashing utilities that compute message digests and compare files against known hash sets. The upstream README describes support for MD5, SHA-1, SHA-256, Tiger, and Whirlpool.

### Project history

The upstream NEWS file traces the project to version 0.12 on 2002-11-01, described as the first internally published version, with md5sum compatibility switches and initial documentation cleanup. Version 1.0 followed on 2004-03-15 with hierarchy traversal moved into `dig.c`, symbolic-link handling, standard-input support, expert mode, NSRL import fixes, and better error handling.

The project expanded from md5deep into a broader forensics-oriented hashing suite. NEWS records SHA-1 support in 2004, SHA-256 in 2004, Whirlpool in 2005, Tiger in 2005, and the `hashdeep` program in 2008 for multihashing and hash-file auditing.

Version 4.0 in 2012 was a major rewrite: the NEWS file says most of the program was rewritten in C++, multiprocessor support was enabled on all platforms, and many bugs were fixed. The README notes that the package still has historically different options and features depending on whether it is invoked as `hashdeep` or `md5deep`.

### Adoption history

The supplied package-manager metadata shows the suite distributed by Homebrew as `md5deep`, by Debian/Ubuntu and Nix as `hashdeep`, and by Fedora, MacPorts, and openSUSE under related package names. That cross-distro packaging reflects its long-standing role in Unix file-integrity and digital-forensics workflows.

The tool family survived partly because it is scriptable and format-oriented: it can generate recursive hash manifests, load known-hash files with `-k`, and audit a directory with `hashdeep -a`.

### How it is used

Common usage is recursive hashing of directories and files, then comparison against known hash sets. The README demonstrates generating an audit file with `hashdeep -r dir > /tmp/auditfile` and later checking it with `hashdeep -a -k /tmp/auditfile -r dir`.

The suite installs several algorithm-specific command names, including `md5deep`, `sha1deep`, `sha256deep`, `tigerdeep`, and `whirlpooldeep`, plus the broader `hashdeep` interface.

### Why package nerds care

For package-history people, md5deep/hashdeep is a classic example of a small command-line utility becoming infrastructure for incident response, disk imaging, and reproducible file inventories. Its NEWS file documents the path from a recursive md5sum-compatible tool to a multi-algorithm auditing suite.

It also shows how Unix package names can preserve history: Homebrew still packages `md5deep` while other ecosystems expose `hashdeep`, even though the modern README frames the repository as hashdeep.

### Timeline

- 2002-11-01: Version 0.12 first internally published.
- 2004-03-15: Version 1.0 released with traversal, symbolic-link, stdin, and expert-mode improvements.
- 2008-05-10: Version 3.0 added the `hashdeep` program for multihashing and auditing.
- 2012-01-06: Version 4.0 rewrote most of the program in C++ and enabled multiprocessor support.
- 2014-01-29: Version 4.4 added case-insensitive auditing and command-line checks.

### Related projects

- The README lists MD5, SHA-1, SHA-256, Tiger, and Whirlpool as the supported algorithms.
- The NEWS file references interoperability with NSRL, EnCase hash sets, Hashkeeper, and iLook-style hashes.

### Sources

- <https://github.com/jessek/hashdeep#readme>
- <https://github.com/jessek/hashdeep/blob/master/NEWS>
- <https://github.com/jessek/hashdeep/tree/master/man>
- source_facts.package-manager


## Security Notes

narrow executable package without higher-risk signals.

- **Geiger risk:** green / low
- narrow executable package without higher-risk signals

## Source Database Details

- **Source Database:** Homebrew formula API
- **Tap:** homebrew/core
- **Full Name:** md5deep
- **Aliases:** hashdeep
- **Version Scheme:** 0
- **Revision:** 1
- **Head Version:** HEAD
- **Bottle Stable Root URL:** <https://ghcr.io/v2/homebrew/core>
- **Deprecated:** no
- **Disabled:** no
- **Keg Only:** no
- **URL Keys:** head, stable

## Other Package-Manager Records

- dnf - md5deep - 4.4-27.fc44: normalized package name match | Fedora Rawhide package metadata: md5deep from https://dl.fedoraproject.org/pub/fedora/linux/development/rawhide/Everything/x86_64/os/repodata/e5ca8ce900cd68f5419e1c39ae517343100b306336cbaeb70a3c153121d95094-primary.xml.zst | A set of cross-platform tools to compute hashes | http://md5deep.sf.net/
- zypper - hashdeep - 4.4-5.16: normalized package name match | openSUSE Tumbleweed package metadata: hashdeep from https://download.opensuse.org/tumbleweed/repo/oss/repodata/be8d3611d25469107f32075a1697e69ec57a2b850b42348a658cc671ad5ec2b50760d02c3e59524d50da9a11d5be799bdaffba2e166e8ca8858512e3c0bd665d-primary.xml.zst | Compute MD5, SHA-1, SHA-256, Tiger or Whirlpool message digests | http://md5deep.sourceforge.net/
- MacPorts - md5deep: normalized package name match | MacPorts ports tree: security/md5deep/Portfile from https://api.github.com/repos/macports/macports-ports/git/trees/master?recursive=1
- Debian apt - hashdeep - 4.4+git20170824+ds-1: installed executable or alias match | Debian stable package indexes: hashdeep from https://deb.debian.org/debian/dists/stable/main/binary-amd64/Packages.xz | recursively compute hashsums or piecewise hashings | https://md5deep.sourceforge.net
- Nix - hashdeep: installed executable or alias match | nixpkgs package indexes: pkgs/by-name/ha/hashdeep/package.nix from https://api.github.com/repos/NixOS/nixpkgs/git/trees/master?recursive=1
- Ubuntu apt - hashdeep - 4.4-7.1: installed executable or alias match | Ubuntu 24.04 LTS package indexes: hashdeep from https://archive.ubuntu.com/ubuntu/dists/noble/universe/binary-amd64/Packages.gz | recursively compute hashsums or piecewise hashings | http://md5deep.sf.net


## Related links

- [Source-control packages](https://www.automicvault.com/pkg/source-control-tools/) - Belongs to a source-control command family.
- [Terminal utility packages](https://www.automicvault.com/pkg/terminal-utilities/) - Matched terminal and command-line workflow metadata.
- [Networking and protocol packages](https://www.automicvault.com/pkg/networking-protocol-tools/) - Matched network, protocol, or remote-service metadata.
- [Security and crypto packages](https://www.automicvault.com/pkg/security-crypto-tools/) - Matched security, identity, cryptography, password, signing, or certificate metadata.
- [autoconf](https://www.automicvault.com/pkg/brew/autoconf/) - Build dependency declared by Homebrew.
- [automake](https://www.automicvault.com/pkg/brew/automake/) - Build dependency declared by Homebrew.
- [rhash](https://www.automicvault.com/pkg/brew/rhash/) - Shares av.db curated category or tags: checksums, cli, cryptography, file-integrity, hashing.
- [md5sha1sum](https://www.automicvault.com/pkg/brew/md5sha1sum/) - Shares av.db curated category or tags: checksums, cli, cryptography, hashing, security.
- [nettle](https://www.automicvault.com/pkg/brew/nettle/) - Shares av.db curated category or tags: cli, cryptography, hashing, security.
- [sha1dc](https://www.automicvault.com/pkg/brew/sha1dc/) - Shares av.db curated category or tags: cli, cryptography, hashing, security.
- [sha2](https://www.automicvault.com/pkg/brew/sha2/) - Shares av.db curated category or tags: cli, cryptography, hashing, security.
- [sha3sum](https://www.automicvault.com/pkg/brew/sha3sum/) - Shares av.db curated category or tags: cli, cryptography, hashing, security.
- [aescrypt](https://www.automicvault.com/pkg/brew/aescrypt/) - Shares av.db curated category or tags: cli, cryptography, security.
- [aespipe](https://www.automicvault.com/pkg/brew/aespipe/) - Shares av.db curated category or tags: cli, cryptography, security.
- [age](https://www.automicvault.com/pkg/brew/age/) - Security-sensitive metadata or terminology overlaps. Shared terms: cli, cryptography, file, files, security.

## Combined YAML source

View the package source record on GitHub. [combined/md5deep.yml](https://github.com/automic-vault/db/blob/main/combined/md5deep.yml)


## Sources

- Nucleus package database
- Geiger risk classifier
- package-page enrichment
- curated package history
- package version freshness
- av.db category and tag curation
- package relationship graph
- external package-manager database matches
- cross-ecosystem install command graph
