carbonblack / cbapi-pythonLinks
Carbon Black API - Python language bindings
☆145Updated 10 months ago
Alternatives and similar repositories for cbapi-python
Users that are interested in cbapi-python are comparing it to the libraries listed below
Sorting:
- Carbon Black Feeds☆73Updated 2 years ago
- Carbon Black API Resources☆93Updated 7 years ago
- Subscribe to raw VMware Carbon Black EDR event feed and forward to another system, such as Splunk.☆73Updated last year
- CrowdStrike Falcon Orchestrator provides automated workflow and response capabilities☆186Updated last year
- ☆192Updated last year
- Mark Baggett's (@MarkBaggett - GSE #15, SANS SEC573 Author) tool for detecting randomness using NLP techniques rather than pure entropy c…☆128Updated 2 years ago
- A Splunk app to use MISP in background☆110Updated 3 weeks ago
- ATT&CK Remote Threat Hunting Incident Response☆200Updated 6 months ago
- Security Monitoring Resolution Categories☆138Updated 3 years ago
- Threat Feed Aggregation, Made Easy☆168Updated 4 years ago
- Lists of sources and utilities utilized to hunt, detect and prevent evildoers.☆166Updated 6 years ago
- Collecting & Hunting for IOCs with gusto and style☆116Updated 6 years ago
- Office365 Log Analysis Framework☆82Updated 6 years ago
- A threat hunting / data analysis environment based on Python, Pandas, PySpark and Jupyter Notebook.☆246Updated 3 years ago
- Converts Sigma detection rules to a Splunk alert configuration.☆111Updated 5 years ago
- Tools to automate and/or expedite response.☆115Updated 11 months ago
- Cyber Analytics Platform and Examination System (CAPES) Project Page☆60Updated 5 years ago
- Threat Alert Logic Repository☆92Updated 6 years ago
- Main Build directory☆179Updated 6 years ago
- Salt States for Configuring the SIFT Workstation☆104Updated this week
- ☆131Updated last year
- Powershell Threat Hunting Module☆284Updated 8 years ago
- InvestigationPlaybookSpec☆72Updated 7 years ago
- Sysmon Splunk App☆46Updated 6 years ago
- "Evolving AppCompat/AmCache data analysis beyond grep"☆205Updated 3 years ago
- Syslog Connector for the Carbon Black Cloud☆30Updated 8 months ago
- Collection of useful, up to date, Carbon Black Response Queries☆83Updated 4 years ago
- This was code for analyzing round 1 of the MITRE Enterprise ATT&CK Evaluation. Please check out https://github.com/joshzelonis/Enterprise…☆95Updated 5 years ago
- Assimilate is a series of scripts for using the Naïve Bayes algorithm to find potential malicious activity in HTTP headers☆91Updated 7 years ago
- Splunk Boss of the SOC v1 data set.☆111Updated 7 years ago