Kali
CSIRT-Collect is a PowerShell script to collect memory and (triage) disk forensics for incident response investigations. The script leverages a network share, from which it will access and copy the required executables and subsequently upload the acquired evidence to the same share post-collection. Permission requirements for said directory will be dependent on the nuances of …
Continue reading “CSIRT-Collect : PowerShell Script To Collect Memory And (Triage) Disk Forensics”
CSIRT-Collect is a PowerShell script to collect memory and (triage) disk forensics for incident response investigations. The script leverages a network share, from which it will access and copy the required executables and subsequently upload the acquired evidence to the same share post-collection. Permission requirements for said directory will be dependent on the nuances of …
Continue reading “CSIRT-Collect : PowerShell Script To Collect Memory And (Triage) Disk Forensics”
