Consider killing associated process to footholds
complete
C
Clay Eden
Hello team,
Would you consider implementing a taskill command in the automated remediation commands? It seems that sometime the remediation fails due to the application running when the command to delete the associated file is issued. Something similar to: taskkill /F /IM EXENAME.EXE
Thank you
J
Josh Lambert
complete
Good news! We've now shipped our Kill Process remediation 😀
Baked right into our existing remediation process, the Huntress ThreatOps Team has already begun using Kill PID across multiple Incident Reports.
Here's to stopping Hackers!!
J
Josh Lambert
in progress