1. Usage
The folder structure is quite simple:
Logs: Is where the logs from your session will be saved. This includes HEGs self-produced timeline of events, but also a collection of the relevant event log files where events will have been generated --- Security, System, PowerShell etc
Scripts: Is where all the scripts that drive HEG are stored.
Staging: Is where operations are carried out. For example, if a particular test needs a download location to save test documents, or executables before launching.
To launch, simply execute .\HEG.ps1 from an elevated PowerShell Window, and it will do the rest.
