msticpy
latest
  • Getting Started
  • Querying and Importing Data
  • Enriching Data
    • Threat Intel Lookup
    • GeoIP Lookup
    • Azure Data Enrichment
    • Azure Sentinel APIs
  • Analyzing Data
  • Displaying/Visualizing Data
  • msticpy API
  • Notebook Examples
  • Articles, Labs and other Resources
  • Releases
  • Contributing
  • License
msticpy
  • Docs »
  • Enriching Data
  • Edit on GitHub

Enriching DataΒΆ

  • Threat Intel Lookup
    • Notebook
    • TILookup class
    • Available Providers
    • Loading TI Providers
    • Configuration File
    • Looking up IoCs
    • Provider Usage
    • Inferring IoC type vs specifying explicitly
    • Looking up Multiple IoCs
    • Browsing and Selecting TI Results
    • Specifying Time Ranges
  • GeoIP Lookup
    • Introduction
    • Importing the GeoIP classes
    • Maxmind Geo-IP Lite Lookup Class
    • IPStack Geo-lookup Class
    • Taking input from a pandas DataFrame
    • Creating a Custom GeopIP Lookup Class
    • Calculating Geographical Distances
    • See also
  • Azure Data Enrichment
    • Description
    • Instantiating and Connecting with an Azure Data Connector
    • Get Azure Subscription Details
    • Get Azure Resource Details
    • Get Azure Network Details
    • Get Azure Metrics
  • Azure Sentinel APIs
    • Description
    • Instantiating and Connecting the Azure Sentinel API Connector
    • Get the workspace Azure Subscription ID
    • Get Azure Sentinel Workspaces
    • List Hunting Queries
    • List Configured Alert Rules
    • List Bookmarks
    • Get Incidents
    • Update Incidents
Next Previous

© Copyright 2019, (c) Microsoft Corporation. Revision 8676a648.

Built with Sphinx using a theme provided by Read the Docs.
Read the Docs v: latest
Versions
latest
stable
Downloads
On Read the Docs
Project Home
Builds
Free document hosting provided by Read the Docs.