Node-Red has been an older way of approaching local workflow automation. N8n is another… it is really nice to see this offered more seamlessly, privately, via the SideChannel project that Dave Kennedy just stood up. I added my own modifications to a separate fork where it can support receiving and outputting attachments now. Separately I added my own plugin for evtx handling into hayabusa . I’m sure this itself will change rapidly as it already is. https://github.com/MattETurner/sidechannel And the plugin https://github.com/MattETurner/sidechannel-plugins #DFIR #irworkflowautomation.