Repository for all cbapi example scripts
☆16Sep 18, 2018Updated 7 years ago
Alternatives and similar repositories for cbapi-examples
Users that are interested in cbapi-examples are comparing it to the libraries listed below
Sorting:
- CB API scripts for IR, administration, etc.☆32Jun 3, 2019Updated 6 years ago
- Command line interface to Carbon Black Response☆38May 12, 2020Updated 5 years ago
- Carbon Black API - Python language bindings☆145Aug 22, 2024Updated last year
- PowerShell scripts to aid investigators when utilizing O365 and Magnet Axiom.☆12Aug 26, 2024Updated last year
- ☆13Nov 10, 2020Updated 5 years ago
- Useful Windows and AD tools☆15Feb 20, 2022Updated 4 years ago
- Carbon Black Feeds☆73Apr 4, 2023Updated 2 years ago
- Report Generation from the Carbon Black REST API☆15Mar 24, 2022Updated 3 years ago
- Carve $MFT records from a chunk of data (for instance a memory dump)☆16Aug 21, 2016Updated 9 years ago
- A few scripts I put together for testing purposes and to automate a few capabilities while doing IR. These scripts are also part of my bl…☆56Jan 24, 2018Updated 8 years ago
- ☆39Jun 28, 2019Updated 6 years ago
- ☆18Feb 20, 2019Updated 7 years ago
- Maps process creation logged by Sysmon uses Google Org Chart API☆23Mar 5, 2016Updated 9 years ago
- Remotely Install the Carbon Black Sensor in Bulk, using PowerShell and PSEXEC, silently, on multiple machines.☆23Jul 17, 2020Updated 5 years ago
- Quick ESXi Log Parser☆29Oct 20, 2025Updated 4 months ago
- The "Virtual Whale" OSINT CTF at BSides DFW 2019!☆22Nov 2, 2019Updated 6 years ago
- Carbon Black API Resources☆93Jan 11, 2018Updated 8 years ago
- Community Sharing Repository for Carbon Black and Bit9 Platforms☆27Apr 4, 2022Updated 3 years ago
- Parse a PowerPoint PPTX file, extracting all URL's from notes and slides, and test for validity☆28Apr 4, 2025Updated 10 months ago
- Parser for Windows PowerShell script block logs☆100Aug 4, 2024Updated last year
- Core incident handling plugins for aws_ir cli, incident pony, and more.☆21Jul 7, 2018Updated 7 years ago
- This repository contains the research and components of our research into using Sigma for AWS Incident Response.☆31Jul 12, 2023Updated 2 years ago
- NMAP NSE script that scans for http(s) server, takes a screenshot of them, and organizes the results into an HTML report.☆27Sep 20, 2014Updated 11 years ago
- A list of IOCs applicable to PoshC2☆24Aug 3, 2020Updated 5 years ago
- Threat hunting repo for my independent study on threat hunting with OSQuery☆27Jan 16, 2018Updated 8 years ago
- Maltese - Malware Traffic Emulator☆26Feb 15, 2017Updated 9 years ago
- Logstash Configs used by Netflix☆30Mar 24, 2015Updated 10 years ago
- This is a copy of the Registry Decoder repository from Google Code.☆29Aug 18, 2015Updated 10 years ago
- IR-Tools - PowerShell tools for IR☆130Jul 10, 2017Updated 8 years ago
- Hfinger - fingerprinting HTTP requests☆142May 16, 2023Updated 2 years ago
- Office365 Log Analysis Framework☆81Jun 6, 2019Updated 6 years ago
- Collection of PowerShell functinos and scripts a Blue Teamer might use☆88Oct 4, 2023Updated 2 years ago
- Carves and recreates VSS catalog and store from Windows disk image.☆99Jan 24, 2023Updated 3 years ago
- Subscribe to raw VMware Carbon Black EDR event feed and forward to another system, such as Splunk.☆73Feb 20, 2026Updated last week
- PowerShellMethodAuditor listens to the PowerShell ETW provider and logs PowerShell method invocations.☆37Sep 19, 2017Updated 8 years ago
- PSAttck is a light-weight framework for the MITRE ATT&CK Framework.☆38Jan 11, 2022Updated 4 years ago
- Fast incident overview☆41Feb 11, 2017Updated 9 years ago
- Client library for the mwdb service by CERT Polska.☆42Feb 10, 2026Updated 2 weeks ago
- Github action for linting AWS IAM policy documents☆38Jan 20, 2023Updated 3 years ago