FLSmac provides a simple to use interface written in perl to integrate the most commonly
used FLS and mactime commands to create a forensics timeline from a disk image.
In addition, it shows you the command as it is being built so that you can
verify its accuracy AND learn how the commands were assembled.

Installation
Simply un-tar the folder to the location of your choosing (ex: tar -xvf flsmac.tar).

Usage
./flsmac.pl

Optional Parameters
-h Displays help file
[image_name] Send the file name as input image

Requirements
SleuthKit and perl must be installed
SleuthKit is available from:
http://www.sleuthkit.org/sleuthkit/download.php

Limitations
- Has to create a temporary file to catch the output of FLS at
/tmp/flsmactmp which is deleted after mactime execution.
- Only includes what the author of flsmac deemed the
"most commonly" used commands - although more can be easily added.

contact = bxr9458 at rit dot edu

Project Samples

FLSmac interface

Project Activity

See All Activity >

Follow FLSmac

FLSmac Web Site

Other Useful Business Software
Our Free Plans just got better! | Auth0 Icon
Our Free Plans just got better! | Auth0

With up to 25k MAUs and unlimited Okta connections, our Free Plan lets you focus on what you do best—building great apps.

You asked, we delivered! Auth0 is excited to expand our Free and Paid plans to include more options so you can focus on building, deploying, and scaling applications without having to worry about your security. Auth0 now, thank yourself later.
Try free now
Rate This Project
Login To Rate This Project

User Reviews

Be the first to post a review of FLSmac!

Additional Project Details

Registered

2013-05-03
Report inappropriate content