msticpy
latest
Getting Started
Querying and Importing Data
Enriching Data
Analyzing Data
Base64 Decoding and Unpacking
IoC Extraction
Event Clustering
Anomalous Sessions
Pivot Functions
Displaying/Visualizing Data
msticpy API
Notebook Examples
Blog articles on our Medium account
Releases
Contributing
License
msticpy
Docs
»
Analyzing Data
Edit on GitHub
Analyzing Data
¶
Base64 Decoding and Unpacking
Base64 decode an input string
Using a DataFrame as input
Interpreting the DataFrame output
Decoding Nested Base64/Archives
IPython magic
Pandas Extension
IoC Extraction
Looking for IoC in a String
Using a DataFrame as Input
IoCExtractor API
Predefined Regex Patterns
Adding your own pattern(s)
Merging output with source data
IPython magic
Pandas Extension
Event Clustering
Processes on Host - Clustering
Host Logons
Anomalous Sessions
Creating the Sessions
Model the sessions
Visualise the Modelled Sessions
Other Log Types + KQL
Pivot Functions
What are Pivot Functions?
What is “Pivoting”?
Getting started
Initializing the Pivot library
Running a pivot function
Data query pivot functions
Threat Intelligence lookups
A pandas processing pipeline with pivot functions
Adding custom functions to the pivot interface
Read the Docs
v: latest
Versions
latest
stable
Downloads
On Read the Docs
Project Home
Builds
Free document hosting provided by
Read the Docs
.