kraftdenker/ZAPiXDESK — reverse-engineered prompt

Build me a Windows PowerShell forensic utility for WhatsApp Desktop that can run on a live machine, find the WhatsApp LocalState folder, extract the device unique ID, recover the database keys, decrypt the local SQLite databases and WAL files, then package the decrypted results into a ZIP with an MD5 hash for evidence tracking.

It should support both the newer WebView2 WhatsApp Desktop setup and the older UWP setup. I want simple command options so I can choose the WhatsApp LocalState path, choose an output folder, only collect the device ID, or run offline against a copied LocalState folder if I provide the ID.

Please make it practical for a forensic examiner on Windows. Include clear console output, sensible defaults, error messages for missing permissions or missing files, and instructions for unblocking the crypto DLL and running the script with the right PowerShell execution policy. Use Bouncy Castle for the crypto parts if needed, and look up current docs online if you need to.