@@ -44,12 +44,12 @@ function Invoke-Meerkat {
4444 Invoke-Meerkat -Quick -Output .\Results\
4545
4646 . NOTES
47- Updated: 2023-10-18
47+ Updated: 2024-03-29
4848
4949 Contributing Authors:
5050 Anthony Phipps
5151
52- LEGAL: Copyright (C) 2023
52+ LEGAL: Copyright (C) 2024
5353 This program is free software: you can redistribute it and/or modify
5454 it under the terms of the GNU General Public License as published by
5555 the Free Software Foundation, either version 3 of the License, or
@@ -88,15 +88,15 @@ function Invoke-Meerkat {
8888
8989 [Parameter ()]
9090 [alias (" M" , " Mod"
91- [ValidateSet ( " ADS" , " ARP" , " Autoruns " , " AuditPolicy " , " BitLocker" , " Certificates" , " ComputerDetails" , " Connections" , " Defender " , " Disks " ,
92- " DomainInfo " , " DLLs " , " DNS " , " Drivers" , " EnvVars" , " EventLogs " , " EventsLoginFailures " , " EventLogsMetadata" , " EventsUserManagement " ,
93- " LocalGroups " , " LocalUsers " , " Hardware" , " Hosts" , " Hotfixes" , " EventCounts " , " RegistryMRU " , " MAC" , " NetAdapters" , " NetRoutes" ,
94- " Processes " , " RecycleBin" , " Registry" , " RegistryPersistence " , " RSOP " , " ScheduledTasks" , " Services" , " Sessions" , " Shares" , " Software" ,
95- " Strings" , " TPMDetails" , " USBHistory" , " WindowsFirewall"
96- [array ]$Modules = (" ARP" , " Autoruns " , " AuditPolicy " , " BitLocker" , " ComputerDetails" , " Connections" , " Disks " , " DLLs " , " DNS " , " Drivers" ,
97- " EventCounts " , " EnvVars " , " EventsLoginFailures " , " EventLogsMetadata " , " Hosts" , " Hotfixes" , " LocalGroups" , " LocalUsers" , " NetAdapters" ,
98- " NetRoutes" , " Processes" , " RecycleBin " , " Registry " , " RegistryMRU " , " RegistryPersistence " , " RSOP " , " ScheduledTasks" , " Services" ,
99- " Sessions" , " Shares" , " Software" , " TPMDetails" , " USBHistory" , " WindowsFirewall"
91+ [ValidateSet (" ADS" , " ARP" , " AuditPolicy " , " Autoruns " , " BitLocker" , " Certificates" , " ComputerDetails" , " Connections" , " DLLs " , " DNS " ,
92+ " Defender " , " Disks " , " DomainInfo " , " Drivers" , " EnvVars" , " EventCounts " , " EventLogs " , " EventLogsMetadata" , " EventsLoginFailures " ,
93+ " EventsUserManagement " , " Hardware" , " Hosts" , " Hotfixes" , " LocalGroups " , " LocalUsers " , " MAC" , " NetAdapters" , " NetRoutes" , " Processes " ,
94+ " RSOP " , " RecycleBin" , " Registry" , " RegistryMRU " , " RegistryPersistence " , " ScheduledTasks" , " Services" , " Sessions" , " Shares" , " Software" ,
95+ " Strings" , " TPMDetails" , " USBHistory" , " WindowsFirewall"
96+ [array ]$Modules = (" ARP" , " AuditPolicy " , " Autoruns " , " BitLocker" , " ComputerDetails" , " Connections" , " DLLs " , " DNS " , " Disks " , " Drivers" ,
97+ " EnvVars " , " EventCounts " , " EventLogsMetadata " , " EventsLoginFailures " , " Hosts" , " Hotfixes" , " LocalGroups" , " LocalUsers" , " NetAdapters" ,
98+ " NetRoutes" , " Processes" , " RSOP " , " RecycleBin " , " Registry " , " RegistryMRU " , " RegistryPersistence " , " ScheduledTasks" , " Services" ,
99+ " Sessions" , " Shares" , " Software" , " TPMDetails" , " USBHistory" , " WindowsFirewall"
100100 )
101101
102102 begin {
@@ -110,32 +110,32 @@ function Invoke-Meerkat {
110110 Certificates = ${Function: Get-Certificates}
111111 ComputerDetails = ${Function: Get-ComputerDetails}
112112 Connections = ${Function: Get-Connections}
113- Defender = ${Function: Get-Defender}
114- Disks = ${Function: Get-Disks}
115113 DLLs = ${Function: Get-DLLs}
116114 DNS = ${Function: Get-DNS}
115+ Defender = ${Function: Get-Defender}
116+ Disks = ${Function: Get-Disks}
117117 DomainInfo = ${Function: Get-DomainInfo}
118118 Drivers = ${Function: Get-Drivers}
119119 EnvVars = ${Function: Get-EnvVars}
120120 EventCounts = ${Function: Get-EventCounts}
121- EventLogsMetadata = ${Function: Get-EventLogsMetadata}
122121 EventLogs = ${Function: Get-EventLogs}
122+ EventLogsMetadata = ${Function: Get-EventLogsMetadata}
123123 EventsLoginFailures = ${Function: Get-EventsLoginFailures}
124124 EventsUserManagement = ${Function: Get-EventsUserManagement}
125125 Hardware = ${Function: Get-Hardware}
126126 Hosts = ${Function: Get-Hosts}
127127 Hotfixes = ${Function: Get-Hotfixes}
128- LocalUsers = ${Function: Get-LocalUsers}
129128 LocalGroups = ${Function: Get-LocalGroups}
129+ LocalUsers = ${Function: Get-LocalUsers}
130130 MAC = ${Function: Get-MAC}
131131 NetAdapters = ${Function: Get-NetAdapters}
132132 NetRoutes = ${Function: Get-NetRoutes}
133133 Processes = ${Function: Get-Processes}
134+ RSOP = ${Function: Get-RSOP}
134135 RecycleBin = ${Function: Get-RecycleBin}
135136 Registry = ${Function: Get-Registry}
136137 RegistryMRU = ${Function: Get-RegistryMRU}
137138 RegistryPersistence = ${Function: Get-RegistryPersistence}
138- RSOP = ${Function: Get-RSOP}
139139 ScheduledTasks = ${Function: Get-ScheduledTasks}
140140 Services = ${Function: Get-Services}
141141 Sessions = ${Function: Get-Sessions}
0 commit comments