Closed AndrewRathbun closed 1 year ago
https://github.com/AndrewRathbun/DFIRPowerShellScripts/blob/main/MFTECmd%24J%24MFTParser.ps1
Add a switch parameter --KAPE, which will search for MFTECmd.exe with existing code. When switch isn't present, the user will have to put where mftecmd.exe resides. This will allow script to be ran both in KAPE and standalone.
--KAPE
https://github.com/AndrewRathbun/DFIRPowerShellScripts/commit/c188ae4fe3adaf8b1710f43eef3c36d61760d23c - done
AndrewRathbun
commented
1 year ago
https://github.com/AndrewRathbun/DFIRPowerShellScripts/blob/main/MFTECmd%24J%24MFTParser.ps1
Add a switch parameter
--KAPE, which will search for MFTECmd.exe with existing code. When switch isn't present, the user will have to put where mftecmd.exe resides. This will allow script to be ran both in KAPE and standalone.