There are 0 repository under live-response topic.
MemProcFS-Analyzer - Automated Forensic Analysis of Windows Memory Dumps for DFIR
A curated list of resources for DFIR through Microsoft Defender for Endpoint leveraging kusto queries, powershell scripts, tools such as KAPE and THOR Cloud and more.
Collect-MemoryDump - Automated Creation of Windows Memory Snapshots for DFIR
unix_collector is a live response collection script for Incident Response on UNIX-like systems using native binaries.
This is a Live Response script to help incident responders to acquire data, contain and recover.
File and file meta information collect using PowerShell in Live Response environment.
A Firefox extension to encrypt files downloaded through Microsoft 365 Defender's Live Response Sessions.
Parse IIS applicationHost.config to generate CSV file.