{"bugs":[],"categories":[{"categoryid":440,"name":"app-forensics","summary":"The app-forensics category contains software which helps detect and analyse security breaches."}],"changelog":[{"authoremail":"repomirrorci@gentoo.org","authorname":"Repository mirror & CI","commitid":"e817756739654c06c8a96e8fb68a3da1ba3af055","committime":"2024-04-30T18:48:55","packageid":51820,"repoid":1,"summary":"Merge updates from master"},{"authoremail":"watermanpaint@posteo.net","authorname":"Lucio Sauer","body":"bump copyright of touched ebuilds to 2024\n\nSigned-off-by: Lucio Sauer \nSigned-off-by: Michał Górny ","commitid":"794061a3298b5716db015defa7b3e2c583b73980","committime":"2024-04-12T10:47:52","packageid":51820,"repoid":1,"summary":"*\/*: inline mirror:\/\/sourceforge"},{"authoremail":"repomirrorci@gentoo.org","authorname":"Repository mirror & CI","commitid":"6e82ae8d262b8632a0dede252074b65a591b2d3d","committime":"2023-10-08T18:46:56","packageid":51820,"repoid":1,"summary":"Merge updates from master"},{"authoremail":"soap@gentoo.org","authorname":"David Seifert","body":"Closes: https:\/\/bugs.gentoo.org\/712634\nSigned-off-by: David Seifert ","commitid":"742f324603932505f02f83dc0d5cf3eef8e2759e","committime":"2023-10-08T18:32:25","packageid":51820,"repoid":1,"summary":"app-forensics\/mac-robber: update EAPI 6 -> 8"},{"authoremail":"repo-qa-checks@gentoo.org","authorname":"Repository QA checks","commitid":"d154a2b0e00fffd4c56ecc7d75b1b47906dea48e","committime":"2018-05-20T12:56:08","packageid":51820,"repoid":1,"summary":"Merge updates from master"},{"authoremail":"zlogene@gentoo.org","authorname":"Mikle Kolyada","body":"Package-Manager: Portage-2.3.24, Repoman-2.3.6","commitid":"0af1266958afffd746c489d5d36911232592c4ee","committime":"2018-05-20T12:37:24","packageid":51820,"repoid":1,"summary":"app-forensics\/mac-robber: EAPI bump"},{"authoremail":"repo-qa-checks@gentoo.org","authorname":"Repository QA checks","commitid":"25093d6359f778b8d1052f66ba9e26fc29ded21a","committime":"2017-02-28T20:35:29","packageid":51820,"repoid":1,"summary":"Merge updates from master"},{"authoremail":"robbat2@gentoo.org","authorname":"Robin H. Johnson","body":"Signed-off-by: Robin H. Johnson ","commitid":"61b861acd7b49083dab687e133f30f3331cb7480","committime":"2017-02-28T19:47:27","packageid":51820,"repoid":1,"summary":"Drop $Id$ per council decision in bug #611234."},{"authoremail":"repo-qa-checks@gentoo.org","authorname":"Repository QA checks","commitid":"945f0d2a26da4f944fd06ad6a874f69d37ce1e06","committime":"2015-08-09T09:26:46","packageid":51820,"repoid":1,"summary":"2015-08-09 09:26:21 UTC"},{"authoremail":"robbat2@gentoo.org","authorname":"Robin H. Johnson","body":"This commit represents a new era for Gentoo:\nStoring the gentoo-x86 tree in Git, as converted from CVS.\n\nThis commit is the start of the NEW history.\nAny historical data is intended to be grafted onto this point.\n\nCreation process:\n1. Take final CVS checkout snapshot\n2. Remove ALL ChangeLog* files\n3. Transform all Manifests to thin\n4. Remove empty Manifests\n5. Convert all stale $Header$\/$Id$ CVS keywords to non-expanded Git $Id$\n5.1. Do not touch files with -kb\/-ko keyword flags.\n\nSigned-off-by: Robin H. Johnson \nX-Thanks: Alec Warner - did the GSoC 2006 migration tests\nX-Thanks: Robin H. Johnson - infra guy, herding this project\nX-Thanks: Nguyen Thai Ngoc Duy - Former Gentoo developer, wrote Git features for the migration\nX-Thanks: Brian Harring - wrote much python to improve cvs2svn\nX-Thanks: Rich Freeman - validation scripts\nX-Thanks: Patrick Lauer - Gentoo dev, running new 2014 work in migration\nX-Thanks: Michał Górny - scripts, QA, nagging\nX-Thanks: All of other Gentoo developers - many ideas and lots of paint on the bikeshed","commitid":"56bd759df1d0c750a065b8c845e93d5dfa6b549d","committime":"2015-08-08T20:49:04","packageid":51820,"repoid":1,"summary":"proj\/gentoo: Initial commit"},{"authoremail":"repo-qa-checks@gentoo.org","authorname":"Repository QA checks","commitid":"a637bd65b7fef8e2be4e7fc6e9097479372e0e2e","committime":"2015-06-19T16:38:33","packageid":51820,"repoid":1,"summary":"2015-06-19 16:35:30 UTC"}],"dependencies":[],"depending":[],"ebuilds":[{"archs":["x86","~amd64","~ppc"],"ebuildid":802271,"firstseen":"2023-10-08T20:06:50.852361","license":"GPL-2","moddate":"2025-04-12T16:59:45","packageid":51820,"repoid":1,"slot":"0","uses":[],"version":"1.02-r1"}],"masks":[],"package":{"categoryid":440,"description":"mac-robber is a digital forensics and incident response tool that collects data","firstseen":"2010-05-04T00:54:45.661860","maintainer":"forensics@gentoo.org","maintainername":"Gentoo Forensics Project","name":"mac-robber","packageid":51820,"summary":"mac-robber is a digital forensics and incident response tool that collects data from allocated files in a mounted file system. The data can be used by the mactime tool in The Sleuth Kit to make a timeline of file activity. The mac-robber tool is based on the grave-robber tool from TCT and is written in C instead of Perl. mac-robber requires that the file system be mounted by the operating system, unlike the tools in The Sleuth Kit that process the file system themselves. Therefore, mac-robber will not collect data from deleted files or files that have been hidden by rootkits. mac-robber will also modify the Access times on directories that are mounted with write permissions. \"What is mac-robber good for then\", you ask? mac-robber is useful when dealing with a file system that is not supported by The Sleuth Kit or other forensic tools. mac-robber is very basic C and should compile on any UNIX system. Therefore, you can run mac-robber on an obscure, suspect UNIX file system that has been mounted read-only on a trusted system. I have also used mac-robber during investigations of common UNIX systems such as AIX."},"rdependencies":[],"repos":[{"branch":"master","lastcommit":"d5f74420573c23a05f44012145ecdaf6d501ae97","name":"gentoo","path":"\/usr\/portage","repoid":1,"upstream":"origin"}],"tracked":false,"urls":["http:\/\/www.sleuthkit.org\/mac-robber\/index.php"],"uses":[]}