msticpy

v1.0.0

Getting Started
Querying and Importing Data
Enriching Data
Analyzing Data
Displaying/Visualizing Data
msticpy API
Notebook Examples
Blog articles on our Medium account
Releases
Contributing
License

msticpy

Docs »
Notebook Examples
Edit on GitHub

Notebook Examples¶

See the following notebooks for examples of the use of this package in practice:

Data¶

Data Queries
MDE Queries
Splunk Data
Azure Storage
Mordor Data
SQL to KQL conversion Notebook

Enrichment¶

Threat Intel Providers Notebook
GeoIP Lookup Notebook
VirusTotal Lookup Notebook
VirusTotal V3 API
Azure Sentinel API

Analysis¶

Anomalous Sequence Notebook
Time Series Anomalies Notebook
Event Clustering Tree Notebook
Base64Unpack Notebook
IoCExtract Notebook
Pivot Functions
Pivot Functions Intro

Visualization and Tools¶

Notebooks Widgets and Tools
Event Timeline Notebook
Process Tree Notebook Notebook
Folium Geo-map Notebook

Configuration¶

MSTICPy Settings editor

Next Previous

© Copyright 2019, (c) Microsoft Corporation. Revision f4fc9a2c.

Built with Sphinx using a theme provided by Read the Docs.