kpriv/freebsd-ports
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity
freebsd-ports/security/mac-robber/pkg-descr
Mark Pulford db1157510b Add mac-robber 1.00, a tool for listing Modify, Access, Create 
timestamps from files.

PR:		47011
Submitted by:	Yonatan <Yonatan@xpert.com>
2003-02-17 09:19:01 +00:00

11 lines
519 B
Text
Raw Blame History

mac-robber is a Forensics & Incident Response tool used to collect
the Modified, Access, and Change (MAC) times from allocated files.
It recursively reads MAC times of files and directories and prints
them in 'time machine' format to STDOUT. This format is the same
that the mactime tool from The Coroners Toolkit (TCT) reads.
mac-robber is based on the grave-robber tool from The Coroners
Toolkit (TCT) when using the '-m' flag, except it does not require
Perl!
WWW: http://www.atstake.com/research/tools/forensic/
Reference in a new issue View git blame Copy permalink