HTDark | Underground Hacking Forum and Cybersecurity Community
  • Earn real money by being active: Hello Guest, earn real money by simply being active on the forum — post quality content, get reactions, and help the community. Once you reach the minimum credit amount, you’ll be able to withdraw your balance directly. Learn how it works.

AutoResponder - Carbon Black Response IR Tool

Status
Not open for further replies.
itsMe

itsMe

*KillmeMories*
Staff member
Administrator
Super Moderator
Hacker
Specter
Crawler
Shadow
Joined
Jan 8, 2019
Messages
56,623
Solutions
2
Reputation
32
Reaction score
100,456
Points
2,313
Credits
32,750
‎6 Years of Service‎
 
76%
69006416-ebb02280-093f-11ea-8654-88c19c4e95e9.PNG


Carbon Black Response IR tool for hunting threats in an environment

What is it?

AutoResponder is a tool aimed to help people to carry out their Incident Response tasks WITH the help of Carbon Black Response's awesome capabilities and WITHOUT much bothering IT/System/Network Teams

What can it do?

Module     ✔️ / ❌
Delete Files     ✔️
Delete Registry Values     ✔️
Delete Win32 Service Entries     ✔️
Delete Scheduled Task Entries     ✔️
Detailed Sensor List Export     ✔️
Find Files     ✔️
Find Registry Values     ✔️
Download Files     ✔️
Download A list of Win32 Service Entries     ✔️
Download A list of Scheduled Task Entries     ✔️
Download A list of WMI Entries     ✔️
Isolate/Unisolate Sensors     ✔️
Kill Running Processes     ✔️
Restart Sensors     ✔️
Restart Endpoints     ✔️
Generate CSV reports     ✔️
Scan Collected binaries with THOR APT Scanner     ✔️
Delete WMI Entries     ❌
Solve the whole case and generate a nice report so we can all have a cold beer     ❌

To see this hidden content, you must like this content.
 
Status
Not open for further replies.
Back
Top