This EnScript was original designed to aid in the triage and processing of multiple hosts by multiple examiners while conducting Incident Response & Investigations and quickly collate all the data together. This can also be used to create simple timelines.
EnScript to send file metadata directly to Splunk
Tools
License Type
Free
Tool Type
Small Tool
Developer
Guidance/OpenText
Utilities - Misc
EnScripts
{{#ratings}}
{{#editor}}
{{/editor}}
{{#user}}
{{/user}}
{{/ratings}}
{{#ownerCreatedBlock}}
{{/ownerCreatedBlock}}
{{#category}}
-
{{#owner}}
-
{{#url}}
{{#avatarSrc}}
{{/avatarSrc}} {{^avatarSrc}} {{& avatar}} {{/avatarSrc}} {{name}} {{/url}} {{^url}} {{#avatar}} {{& avatar}} {{/avatar}} {{name}} {{/url}}
- {{/owner}} {{#created}}
- {{created}} {{/created}}
Category: {{category.title}}
{{/category}}
{{#fields}}
{{#showLabel}}
{{/fields}}
{{label}}:
{{/showLabel}}
{{& text}}
