hilljack4n6 / forensic-artifact-automation Goto Github PK
View Code? Open in Web Editor NEWThis project forked from sap/forensic-artifact-automation
A collection of powershell scripts that are designed to be ran from a Microsoft Defender for Endpoint Live Response terminal, utilizing open-source tools, such as Kape (Kroll Artifact Parser and Extractor), to forensically acquire and process necessary artifact used in compromise assessments. Additional scripts provide pre-processing automation ca
License: Apache License 2.0