mac-robber 1.02-9 source package in Ubuntu
Changelog
mac-robber (1.02-9) unstable; urgency=medium [ Joao Eriberto Mota Filho ] * debian/control: bumped Standards-Version to 4.5.0. * debian/copyright: updated packaging copyright years. [ Samuel Henrique ] * Configure git-buildpackage for Debian. -- Joao Eriberto Mota Filho <email address hidden> Tue, 11 Feb 2020 19:11:25 -0300
Upload details
- Uploaded by:
- Debian Security Tools
- Uploaded to:
- Sid
- Original maintainer:
- Debian Security Tools
- Architectures:
- any
- Section:
- misc
- Urgency:
- Medium Urgency
See full publishing history Publishing
Series | Published | Component | Section | |
---|---|---|---|---|
Focal | release | universe | misc |
Downloads
File | Size | SHA-256 Checksum |
---|---|---|
mac-robber_1.02-9.dsc | 1.9 KiB | 54749814654a68cb4153a75df3a75eb06b97c3679d902a26d2104cd63c9d3d6c |
mac-robber_1.02.orig.tar.gz | 11.4 KiB | 5895d332ec8d87e15f21441c61545b7f68830a2ee2c967d381773bd08504806d |
mac-robber_1.02-9.debian.tar.xz | 4.2 KiB | c312f854410a50a255594874d40c12ccb068ac43a7595cf1e63992727aa1628d |
Available diffs
- diff from 1.02-8 to 1.02-9 (882 bytes)
No changes file available.
Binary packages built by this source
- mac-robber: collects data about allocated files in mounted filesystems
mac-robber is a digital investigation tool (digital forensics) that collects
metadata from allocated files in a mounted filesystem. This is useful during
incident response when analyzing a live system or when analyzing a dead
system in a lab. The data can be used by the mactime tool in The Sleuth Kit
(TSK or SleuthKit only) to make a timeline of file activity. The mac-robber
tool is based on the grave-robber tool from TCT (The Coroners Toolkit).
.
mac-robber requires that the filesystem be mounted by the operating system,
unlike the tools in The Sleuth Kit that process the filesystem themselves.
Therefore, mac-robber will not collect data from deleted files or files that
have been hidden by rootkits. mac-robber will also modify the Access times
on directories that are mounted with write permissions.
.
mac-robber is useful when dealing with a filesystem that is not supported
by The Sleuth Kit or other filesystem analysis tools. You can run mac-robber
on an obscure, suspect UNIX filesystem that has been mounted read-only on a
trusted system.
- mac-robber-dbgsym: debug symbols for mac-robber