msticpy
v1.0.0
Getting Started
Querying and Importing Data
Enriching Data
Threat Intel Lookup
GeoIP Lookup
Azure Data Enrichment
Azure Sentinel APIs
Analyzing Data
Displaying/Visualizing Data
msticpy API
Notebook Examples
Blog articles on our Medium account
Releases
Contributing
License
msticpy
Docs
»
Enriching Data
Edit on GitHub
Enriching Data
ΒΆ
Threat Intel Lookup
Notebook
TILookup class
Available Providers
Loading TI Providers
Configuration File
Looking up IoCs
Provider Usage
Inferring IoC type vs specifying explicitly
Looking up Multiple IoCs
Browsing and Selecting TI Results
Specifying Time Ranges
GeoIP Lookup
Introduction
Importing the GeoIP classes
Maxmind Geo-IP Lite Lookup Class
IPStack Geo-lookup Class
Taking input from a pandas DataFrame
Creating a Custom GeopIP Lookup Class
Calculating Geographical Distances
See also
Azure Data Enrichment
Description
Instantiating and Connecting with an Azure Data Connector
Get Azure Subscription Details
Get Azure Resource Details
Get Azure Network Details
Get Azure Metrics
Azure Sentinel APIs
Description
Instantiating and Connecting the Azure Sentinel API Connector
Get the workspace Azure Subscription ID
Get Azure Sentinel Workspaces
List Hunting Queries
List Configured Alert Rules
List Bookmarks
Get Incidents
Update Incidents