demisto / demisto-py
Demisto Client for Python
☆70Updated 3 weeks ago
Alternatives and similar repositories for demisto-py:
Users that are interested in demisto-py are comparing it to the libraries listed below
- Demisto SDK - Create Demisto Content with ease and efficiency☆76Updated this week
- Collaborative Open Playbook Standard☆154Updated last year
- A collection of demisto tools☆17Updated 6 years ago
- Carbon Black Feeds☆72Updated last year
- Subscribe to raw VMware Carbon Black EDR event feed and forward to another system, such as Splunk.☆73Updated 10 months ago
- InvestigationPlaybookSpec☆72Updated 7 years ago
- The unofficial XSOAR CLI☆14Updated 2 years ago
- Dump of organized knowledge on DFIR☆133Updated 3 years ago
- Converts Sigma detection rules to a Splunk alert configuration.☆109Updated 4 years ago
- Carbon Black API - Python language bindings☆145Updated 7 months ago
- A Splunk app with saved reports derived from Sigma rules☆73Updated 6 years ago
- Provides detection capabilities and log conversion to evtx or syslog capabilities☆52Updated 2 years ago
- A Python library to help with some common threat hunting data analysis operations☆142Updated last year
- Phantom Apps Repo☆82Updated 3 years ago
- Command line interface to Carbon Black Response☆38Updated 4 years ago
- Synapse: a Meta Alert Feeder for TheHive, a Security Incident Response Platform☆71Updated last year
- ☆55Updated 3 years ago
- Collection of useful, up to date, Carbon Black Response Queries☆83Updated 4 years ago
- WebUI of MineMeld☆43Updated 2 years ago
- A Splunk app to use MISP in background☆110Updated last week
- OSSEM Common Data Model☆55Updated 2 years ago
- A Slack bot to add security info to messages containing URLs, hashes and IPs☆71Updated 6 months ago
- Sigma Detection Rule Repository☆87Updated 4 years ago
- Log Entry to Sigma Rule Converter☆107Updated 3 years ago
- Threat Alert Logic Repository☆92Updated 6 years ago
- CrowdStrike Falcon Orchestrator provides automated workflow and response capabilities☆186Updated last year
- Tool to extract indicators of compromise from security reports in PDF format☆71Updated 9 months ago
- Expert Investigation Guides☆51Updated 4 years ago
- This repo represents work the Phantom Community collaborates on to build apps and learn.☆12Updated 3 years ago
- Python Wrapper for Tanium's SOAP API☆45Updated 5 years ago