UAC is a Live Response collection script for Incident Response that makes use of native binaries and tools to automate the collection of AIX, Android, ESXi, FreeBSD, Linux, macOS, NetBSD, NetScaler, OpenBSD and Solaris systems artifacts.
Add new artifact to collect the "*.journal~". These journal files are created when system crashes or fails to shut down properly.
Also, add artifacts related to "journalctl" command. These artifacts verify the integrity of journal files and show a listing of time periods between boots.
Add new artifact to collect the "*.journal~". These journal files are created when system crashes or fails to shut down properly. Also, add artifacts related to "journalctl" command. These artifacts verify the integrity of journal files and show a listing of time periods between boots.