Remote Acquisition of Azure VM

The Invoke-ComaeAzVMWinAnalyze cmdlet remotely acquire the memory of an Azure Virtual Machine and sends it to Stardust.

Invoke-ComaeAzVMWinAnalyze [-ClientId] <string> [-ClientSecret] <string> [-ResourceGroupName] <string> [-VMName] <string>

In scope parameters:

  • ClientId
  • ClientSecret
  • ResourceGroupName is the name of the Azure resource group.
  • VMName is the name of the targer VM.
  • Hostname (optional) is an optional parameter for Enterprise customers.

To retrieve the Key value, run the Get-ComaeAPIKey command with the -ClientId and -ClientSecret params with the respective values that can be found in your Stardust account in Settings > Integrations menu.