demisto / demisto-py
Demisto Client for Python
☆70Updated last week
Related projects ⓘ
Alternatives and complementary repositories for demisto-py
- Collaborative Open Playbook Standard☆150Updated last year
- Demisto SDK - Create Demisto Content with ease and efficiency☆72Updated this week
- Carbon Black API - Python language bindings☆147Updated 2 months ago
- Subscribe to raw VMware Carbon Black EDR event feed and forward to another system, such as Splunk.☆73Updated 6 months ago
- A Splunk app to use MISP in background☆109Updated 2 weeks ago
- A collection of demisto tools☆16Updated 6 years ago
- The unofficial XSOAR CLI☆14Updated last year
- Demisto Content Developer Docs☆41Updated this week
- Phantom Apps Repo☆82Updated 3 years ago
- Converts Sigma detection rules to a Splunk alert configuration.☆107Updated 4 years ago
- VMware Carbon Black Cloud Python SDK☆40Updated last month
- MineMeld nodes for MISP☆18Updated 9 months ago
- Log Entry to Sigma Rule Converter☆105Updated 2 years ago
- Synapse: a Meta Alert Feeder for TheHive, a Security Incident Response Platform☆71Updated last year
- InvestigationPlaybookSpec☆72Updated 7 years ago
- A utility repo to assist with converting between MISP and STIX formats☆64Updated 3 years ago
- A Splunk app with saved reports derived from Sigma rules☆72Updated 6 years ago
- Dump of organized knowledge on DFIR☆132Updated 3 years ago
- Data validator agains Splunk Common Information Model (CIM)☆75Updated 7 months ago
- A Python library to help with some common threat hunting data analysis operations☆139Updated last year
- Carbon Black Feeds☆70Updated last year
- Syslog Connector for the Carbon Black Cloud☆28Updated last month
- Prototypes for MineMeld nodes☆39Updated 3 years ago
- Threat Alert Logic Repository☆89Updated 5 years ago
- Sysmon Splunk App☆46Updated 6 years ago
- Definition, description and relationship types of MISP objects☆91Updated this week
- Technical add-on for Splunk related to TheHive/Cortex from TheHive project☆49Updated 2 weeks ago
- TAXII client implementation from EclecticIQ☆98Updated 3 years ago
- Risk Based Alerting Supporting Add-On (SA) for Splunk☆45Updated 3 years ago
- An OpenTAXII Configuration for MISP☆81Updated 2 years ago