How to Install and Uninstall mac-robber Package on Ubuntu 21.10 (Impish Indri)

Last updated: May 15,2024

1. Install "mac-robber" package

This is a short guide on how to install mac-robber on Ubuntu 21.10 (Impish Indri)

$ sudo apt update $ sudo apt install mac-robber

2. Uninstall "mac-robber" package

This is a short guide on how to uninstall mac-robber on Ubuntu 21.10 (Impish Indri):

$ sudo apt remove mac-robber $ sudo apt autoclean && sudo apt autoremove

3. Information about the mac-robber package on Ubuntu 21.10 (Impish Indri)

Package: mac-robber
Architecture: amd64
Version: 1.02-12
Priority: optional
Section: universe/utils
Origin: Ubuntu
Maintainer: Ubuntu Developers
Original-Maintainer: Debian Security Tools
Bugs: https://bugs.launchpad.net/ubuntu/+filebug
Installed-Size: 34
Depends: libc6 (>= 2.4)
Suggests: sleuthkit
Enhances: sleuthkit
Filename: pool/universe/m/mac-robber/mac-robber_1.02-12_amd64.deb
Size: 10136
MD5sum: f734760b939ea52f9acffa71558d106a
SHA1: a89953c1c90a1610253a0b449aed414bd80b524c
SHA256: 6c79ad154604ece201e17809cb5507a178ab873080ae781062ac33fd5d89a54c
SHA512: 748eb86b24abbaa8801e58912fedb227d73dd287acf5ecc76c87e4c0e00f252b5e76b5e970ab059276fdaf465972b5fae5963237dbc5eabbbc92690bcce6c46f
Homepage: https://www.sleuthkit.org/mac-robber
Description-en: collects data about allocated files in mounted filesystems
mac-robber is a digital investigation tool (digital forensics) that collects
metadata from allocated files in a mounted filesystem. This is useful during
incident response when analyzing a live system or when analyzing a dead
system in a lab. The data can be used by the mactime tool in The Sleuth Kit
(TSK or SleuthKit only) to make a timeline of file activity. The mac-robber
tool is based on the grave-robber tool from TCT (The Coroners Toolkit).
.
mac-robber requires that the filesystem be mounted by the operating system,
unlike the tools in The Sleuth Kit that process the filesystem themselves.
Therefore, mac-robber will not collect data from deleted files or files that
have been hidden by rootkits. mac-robber will also modify the Access times
on directories that are mounted with write permissions.
.
mac-robber is useful when dealing with a filesystem that is not supported
by The Sleuth Kit or other filesystem analysis tools. You can run mac-robber
on an obscure, suspect UNIX filesystem that has been mounted read-only on a
trusted system.
Description-md5: a6b5a6400c4d5a7fbaaaa60c532ae6fb

4. References on Ubuntu 21.10 (Impish Indri)

lzma-dev (9.22-2.2)
m16c-flash (0.1-1.1build2)
m17n-db (1.8.0-3)
m17n-docs (1.6.2-2.1)
m17n-lib-bin (1.8.0-2build1)
m17n-lib-mimx (1.8.0-2build1)
m2r (0.2.1-5)
m2vrequantiser (1.1-5)
m4 (1.4.18-5ubuntu1)
macaulay2 (1.18+ds-1~exp3)
macchanger (1.7.0-5.4)
macfanctld (0.6+repack1-2)
mactelnet-server (0.4.4-4)
madbomber (0.2.5-8.1)
madfuload (1.2-4.2)
madlib-doc (1.3.0-2.2)

5. The same packages on other Linux Distributions

mac-robber (1.02-9) Ubuntu 20.04 LTS (Focal Fossa)
mac-robber (1.02-5) Ubuntu 18.04 LTS (Bionic Beaver)
mac-robber (1.02-4) Ubuntu 16.04 LTS (Xenial Xerus)
mac-robber (1.02-bp155.2.10) openSUSE Leap
mac-robber (1.02-14.1) openSuSE Tumbleweed
mac-robber (1.02-13) Ubuntu 22.04 LTS (Jammy Jellyfish)
mac-robber (1.02-12) Debian 11 (Bullseye)
mac-robber (1.02-7) Debian 10 (Buster)
mac-robber (1.02-13) Ubuntu 22.10 (Kinetic Kudu)
mac-robber (1.02-13) Kali Linux
mac-robber (1.02-9) Linux Mint 20.3 (Una)
mac-robber (1.02-13) Linux Mint 21 (Vanessa)
mac-robber (1.02-13) Debian 12 (Bookworm)
mac-robber (1.02-13) Linux Mint 21.3 (Virginia)
mac-robber (1.02-13) Ubuntu 23.10 (Mantic Minotaur)
mac-robber (1.02-13) Ubuntu 24.04 LTS (Noble Numbat)

Popular Linux Distros

Ubuntu
Arch
Linux Mint
Fedora
Kali Linux
Debian
openSuSE
CentOS
Oracle Linux
Rocky Linux
Manjaro
AlmaLinux
Amazon Linux
Red Hat Enterprise Linux