Core features: Collects volatile and file system data Analyzes memory images using Volatility Generates HTML and CybOX reports. Subscribe to the Cyber Triage Newsletter Subscribe to our monthly newsletter that delivers the most actionable, tactical, and timely DFIR tips you need in 10 minutes or less. Related What is a Windows OpenSave MRU Artifact? What is a Microsoft Office Most Recently Used Artifact “MRU” Cyber Triage 3.3.0 Cyber Triage Lite – Identifying OS Configuration