Consider killing associated process to footholds
complete
A
Armando'la Rolfson'la
Hello team,
Would you consider implementing a taskill command in the automated remediation commands? It seems that sometime the remediation fails due to the application running when the command to delete the associated file is issued. Something similar to: taskkill /F /IM EXENAME.EXE
Thank you
S
Salley'la Auer'la
complete
Good news! We've now shipped our Kill Process remediation 😀
Baked right into our existing remediation process, the Huntress ThreatOps Team has already begun using Kill PID across multiple Incident Reports.
Here's to stopping Hackers!!
S
Salley'la Auer'la
in progress