Difference between revisions of "FTimes"
From Forensics Wiki
(FTimes tool) |
(Fixed Infobox, added Limitations, DFRWS challange info.) |
||
| Line 1: | Line 1: | ||
{{Infobox_Software | | {{Infobox_Software | | ||
name = FTimes | | name = FTimes | | ||
| − | os = {{Multiplatform} | | + | maintainer = [[Klayton Monroe]] | |
| + | os = {{Multiplatform}} | | ||
genre = [[Evidence collection]] | | genre = [[Evidence collection]] | | ||
license = {{BSD}} | | license = {{BSD}} | | ||
| Line 8: | Line 9: | ||
'''FTimes''', short for '''File Topography and Integrity Monitoring on an Enterprise Scale''' is a system baselining and evidence collection tool designed for incident response, evidence collection (alternate data streams, hidden files), content integrity monitoring, intrusion analysis and computer forensics. | '''FTimes''', short for '''File Topography and Integrity Monitoring on an Enterprise Scale''' is a system baselining and evidence collection tool designed for incident response, evidence collection (alternate data streams, hidden files), content integrity monitoring, intrusion analysis and computer forensics. | ||
| + | |||
| + | == Limitations == | ||
| + | |||
| + | FTimes does not collect all possible attributes on every supported platform. | ||
== External Links == | == External Links == | ||
| Line 13: | Line 18: | ||
* [http://ftimes.sourceforge.net/ The FTimes Project Homepage] | * [http://ftimes.sourceforge.net/ The FTimes Project Homepage] | ||
* [http://unixsadm.blogspot.com/2007/11/building-ftimes-on-windows-using-visual.html Building FTimes on Windows using Visual Studio] | * [http://unixsadm.blogspot.com/2007/11/building-ftimes-on-windows-using-visual.html Building FTimes on Windows using Visual Studio] | ||
| + | * [http://www.korelogic.com/Resources/Projects/dfrws_challenge_2006/ DFRWS 2006 File Carving Challenge - using FTimes] | ||
Latest revision as of 02:53, 20 December 2007
| FTimes | |
|---|---|
| Maintainer: | Klayton Monroe |
| OS: | Template:Multiplatform |
| Genre: | Evidence collection |
| License: | BSD |
| Website: | ftimes.sf.net |
FTimes, short for File Topography and Integrity Monitoring on an Enterprise Scale is a system baselining and evidence collection tool designed for incident response, evidence collection (alternate data streams, hidden files), content integrity monitoring, intrusion analysis and computer forensics.
[edit] Limitations
FTimes does not collect all possible attributes on every supported platform.
