carbonblack / carbon-black-cloud-sdk-python
VMware Carbon Black Cloud Python SDK
☆40Updated last month
Related projects ⓘ
Alternatives and complementary repositories for carbon-black-cloud-sdk-python
- Carbon Black API - Python language bindings☆147Updated 2 months ago
- Carbon Black Feeds☆70Updated last year
- A Splunk app with saved reports derived from Sigma rules☆72Updated 6 years ago
- Tools to automate and/or expedite response.☆113Updated 4 months ago
- Collection of useful, up to date, Carbon Black Response Queries☆83Updated 4 years ago
- WebUI of MineMeld☆43Updated last year
- A Splunk app to use MISP in background☆109Updated 2 weeks ago
- InvestigationPlaybookSpec☆72Updated 7 years ago
- Subscribe to raw VMware Carbon Black EDR event feed and forward to another system, such as Splunk.☆73Updated 6 months ago
- Volatility plugins developed and maintained by the community☆21Updated last month
- Salt States for Configuring the SIFT Workstation☆96Updated this week
- Command line interface to Carbon Black Response☆38Updated 4 years ago
- Synapse: a Meta Alert Feeder for TheHive, a Security Incident Response Platform☆71Updated last year
- BulkStrike enables the usage of CrowdStrike Real Time Response (RTR) to bulk execute commands on multiple machines.☆41Updated last year
- Office365 Log Analysis Framework☆81Updated 5 years ago
- Tool to extract indicators of compromise from security reports in PDF format☆72Updated 4 months ago
- This repository is created to add value to existing Network Security Monitoring solutions.☆42Updated 8 years ago
- Provides detection capabilities and log conversion to evtx or syslog capabilities☆52Updated 2 years ago
- ☆34Updated 3 years ago
- Scripts for TheHive.☆22Updated 4 years ago
- Collection of walkthroughs on various threat hunting techniques☆75Updated 4 years ago
- CB API scripts for IR, administration, etc.☆33Updated 5 years ago
- Sigma Detection Rule Repository☆85Updated 4 years ago
- Expert Investigation Guides☆50Updated 3 years ago
- Mark Baggett's (@MarkBaggett - GSE #15, SANS SEC573 Author) tool for detecting randomness using NLP techniques rather than pure entropy c…☆123Updated 2 years ago
- ATT&CK Remote Threat Hunting Incident Response☆198Updated 5 years ago
- Sysmon Splunk App☆46Updated 6 years ago
- ☆39Updated 5 years ago
- Term concordances for each course in the SANS DFIR curriculum. Used for automated index generation.☆65Updated 4 years ago
- Recon Hunt Queries☆75Updated 3 years ago