Giters

dwmetz / Ginsu

Takes a larger image and 'chops' it down to <= 3GB zips to traverse Windows Defender for Endpoint

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

Ginsu

'Chops' collections to 3GB sections to traverse Microsoft Defender console

Function:

PowerShell utility to compresses a folder using 7zip and split the resulting archives into 3GB or less sections.

Prerequisites:
  • 7za.exe executable 'put' via Defender console
Notes:
  • File Name: Ginsu.ps1
  • Author: Doug Metz
  • Version: 1.0
Synopsis:

This script uses 7zip (7za.exe) to compress a specified folder and then splits the resulting archive into sections of 3GB or less. It will work (and was designed for) files larger than 3GB. Windows Defender Live Response currently only supports pulling back files of 3GB or less via the console. If your collection is larger than that, you will need to repackage it using Ginsu, or use a method outside of the console to retrieve the files.

About

Takes a larger image and 'chops' it down to <= 3GB zips to traverse Windows Defender for Endpoint

License:MIT License

Languages

Language:PowerShell 100.0%