msticpy
latest
  • Getting Started
  • Querying and Importing Data
  • Enriching Data
  • Analyzing Data
    • Base64 Decoding and Unpacking
    • IoC Extraction
    • Event Clustering
    • Anomalous Sessions
  • Displaying/Visualizing Data
  • msticpy API
  • Notebook Examples
  • Contributing
  • License
msticpy
  • Docs »
  • Analyzing Data
  • Edit on GitHub

Analyzing DataΒΆ

  • Base64 Decoding and Unpacking
    • Base64 decode an input string
    • Using a DataFrame as input
    • Interpreting the DataFrame output
    • Decoding Nested Base64/Archives
    • IPython magic
    • Pandas Extension
  • IoC Extraction
    • Looking for IoC in a String
    • Using a DataFrame as Input
    • IoCExtractor API
    • Predefined Regex Patterns
    • Adding your own pattern(s)
    • Merging output with source data
    • IPython magic
    • Pandas Extension
  • Event Clustering
    • Processes on Host - Clustering
    • Host Logons
  • Anomalous Sessions
    • Creating the Sessions
    • Model the sessions
    • Visualise the Modelled Sessions
    • Other Log Types + KQL
Next Previous

© Copyright 2019, (c) Microsoft Corporation. Revision 6712d188.

Built with Sphinx using a theme provided by Read the Docs.
Read the Docs v: latest
Versions
latest
stable
Downloads
pdf
html
epub
On Read the Docs
Project Home
Builds
Free document hosting provided by Read the Docs.