Hashdeep

It is useful to calculate md5, sha, any kind of CRC / hash deep / recursively in a folder.

Contingut

cd folder1
hashdeep -r -e -l . > hashdeep_$(date +%y%m%d).txt

To avoid following links:

hashdeep -r -e -o f -l . > hashdeep_$(date +%y%m%d).txt

To get a deterministic order, use -j0 which disables multithreading (see the man page)

It's faster to create again another hashfile.txt from the second folder and then compare the two hashfiles.txt

To compare the hashfiles.txt we need to sort them (unless they were created with the -j0 option), so for each of them:

sort -k 4 -t, hashdeep_$(date +%y%m%d).txt > hashdeep_$(date +%y%m%d).txt.sorted

diff first.sorted second.sorted |grep "<" |cut -d, -f4 |less

diff first.sorted second.sorted |grep ">" |cut -d, -f4 |less

cd folder2
hashdeep -r -l -X -k hashdeep_$(date +%y%m%d).txt .

-r Recursive mode
-l relative file paths
-X Negative matching (only list differences): Only those files NOT in the list of known hashes are displayed. Display each failed hash that does not match the list of known hashes
(-v Verbose mode, it does nothing?)
-k Load list of known hashes
hashdeep.txt File containing hashes
dir Name of the directory in question

cd folder2
hashdeep -r -l -avv -k hashdeep_$(date +%y%m%d).txt .

-a audit mode: Each input file is compared against the set of knowns. An audit is said to pass if each input file is matched against exactly one file in set of knowns. Any collisions, new files, or missing files will make the audit fail
-vv More verbose mode (display list of files missing, new files and changed files)
- -vvv More verbose mode (also list files that are OK)