aboutsummaryrefslogtreecommitdiffstats
path: root/security/mac-robber/pkg-descr
diff options
context:
space:
mode:
Diffstat (limited to 'security/mac-robber/pkg-descr')
-rw-r--r--security/mac-robber/pkg-descr11
1 files changed, 11 insertions, 0 deletions
diff --git a/security/mac-robber/pkg-descr b/security/mac-robber/pkg-descr
new file mode 100644
index 000000000000..1611afb1c094
--- /dev/null
+++ b/security/mac-robber/pkg-descr
@@ -0,0 +1,11 @@
+mac-robber is a Forensics & Incident Response tool used to collect
+the Modified, Access, and Change (MAC) times from allocated files.
+It recursively reads MAC times of files and directories and prints
+them in 'time machine' format to STDOUT. This format is the same
+that the mactime tool from The Coroners Toolkit (TCT) reads.
+
+mac-robber is based on the grave-robber tool from The Coroners
+Toolkit (TCT) when using the '-m' flag, except it does not require
+Perl!
+
+WWW: http://www.atstake.com/research/tools/forensic/
generated by cgit (git 2.34.1) at 2025-01-29 08:55:55 +0800