Having failed to find a suitable framework (and data) for evaluating DF tools that deploy remote agents such as Velociraptor, KAPE, EnCase etc. I have built my own as part of my PhD research. I am looking to the community to provide feedback on the framework by answering 6 questions - essentially “does it cover everything?”, “is it likely to be useful?”, “would it be easy to use?”. The feedback can be done in under an hour but could take longer if you want to download the test data and try out your favorite tool.
1 Like