Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Small adjustment to azure upload #816

Open
sak-improsec opened this issue Jun 26, 2023 Discussed in #793 · 0 comments
Open

Small adjustment to azure upload #816

sak-improsec opened this issue Jun 26, 2023 Discussed in #793 · 0 comments
Assignees
@EricZimmerman
Labels
enhancement New feature or request

Comments

@sak-improsec
Copy link

Discussed in #793

Originally posted by sak-improsec May 2, 2023
Hi Eric,
My team and I have been using KAPE for almost a year, and have built our forensic platform around it.

One thing I would like to request is the ability for the --asu flag to drop the target and module output in the same folder in Azure, rather than one for target and one for module:

image

Usecase: Full triage image uploaded to azure, along with live queries from modules like netstat, pslist, ip-config, and so on, and not having to build logic around which live data is correlated with a specific triage image.

My current "solution" is to "sneak" the module output in with the target by setting --mdest to --tdest/moduleoutput/ and as KAPE zips everything in --tdest, everything will be included. But im not a fan of this hacked way of doing it.
@AndrewRathbun AndrewRathbun added the enhancement New feature or request label Jul 25, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@EricZimmerman EricZimmerman

Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@EricZimmerman @AndrewRathbun @sak-improsec