The Windows-IntegrityChecker is a PowerShell script that allows you to monitor changes in files within a specified directory. It helps you detect new files, file modifications, and deleted files by comparing their current hash values with a stored baseline.
Prerequisites
- PowerShell
- Cloned or downloaded copy of this repository in your local machine.
- Open a PowerShell terminal and navigate to the repository directory.
- Customize the script by modifying the variables, paths, or algorithms to align with your specific needs.
Option A: Collecting a New Baseline
- Ensure you have a folder named "Files" in the same directory as the PowerShell script.
- Place the files you want to monitor in the "Files" folder.
- Run the script by executing .\file_monitoring.ps1 in the PowerShell terminal.
- The script will calculate the hash for each file and store them in the baseline.txt file.
Option B: Monitoring Files with Saved Baseline
- Clone or download the repository containing the File Monitoring Tool.
- Open a PowerShell terminal and navigate to the repository directory.
- Execute the script by running .\file_monitoring.ps1 in the PowerShell terminal.
- The script will continuously monitor the files in the specified directory for any changes.
- Any new files created will be displayed with a green notification message.
- Modified files will trigger a yellow notification message.
- Deleted files will be highlighted with a red notification message.
Contributions Contributions are welcome! If you encounter any issues, have suggestions, or would like to add new features to the File Monitoring Tool, feel free to submit a pull request or open an issue in the GitHub repository.
License This project is licensed under the MIT License.