msticpy.analysis package
MSTICPy Analysis Tools.
This sub-package has a few classes of analysis tools:
data - this sub-package contains data-processing tools for dealing with tranforming data (e.g. auditd, process tree) or extracting specific data formats (iocextract, b64, cmdline)
other items are miscellaneous analysis modules such anomalous sequence, time series, eventcluster.
Subpackages
Submodules
- msticpy.analysis.cluster_auditd module
- msticpy.analysis.code_cleanup module
- msticpy.analysis.eventcluster module
- msticpy.analysis.observationlist module
ObservationObservation.additional_propertiesObservation.all_fields()Observation.captionObservation.dataObservation.data_typeObservation.descriptionObservation.display()Observation.filterObservation.filtered_dataObservation.linkObservation.required_fields()Observation.schemaObservation.scoreObservation.tagsObservation.time_columnObservation.time_spanObservation.timestamp
Observations
- msticpy.analysis.outliers module
- msticpy.analysis.polling_detection module
- msticpy.analysis.syslog_utils module
- msticpy.analysis.timeseries module