msticpy
v1.6.1
Getting Started
Querying and Importing Data
Enriching Data
Threat Intel Lookup
GeoIP Lookup
Azure Data Enrichment
Microsoft Sentinel APIs
Analyzing Data
Displaying/Visualizing Data
msticpy API
Notebook Examples
Articles, Labs and other Resources
Releases
Contributing
License
msticpy
»
Enriching Data
Edit on GitHub
Enriching Data
Threat Intel Lookup
Notebook
TILookup class
Available Providers
Loading TI Providers
Configuration File
Looking up IoCs
Provider Usage
Inferring IoC type vs specifying explicitly
Looking up Multiple IoCs
Browsing and Selecting TI Results
Specifying Time Ranges
GeoIP Lookup
Introduction
Importing the GeoIP classes
Maxmind Geo-IP Lite Lookup Class
IPStack Geo-lookup Class
Taking input from a pandas DataFrame
Creating a Custom GeopIP Lookup Class
Calculating Geographical Distances
See also
Azure Data Enrichment
Description
Instantiating and Connecting with an Azure Data Connector
Get Azure Subscription Details
Get Azure Resource Details
Get Azure Network Details
Get Azure Metrics
Microsoft Sentinel APIs
Microsoft Sentinel Analytics
Microsoft Sentinel Bookmarks
Microsoft Sentinel Incidents
Microsoft Sentinel Watchlists
Description
Instantiating and Connecting the Microsoft Sentinel API Connector
Get Microsoft Sentinel Workspaces
Incidents
Hunting Queries
Analytics
Bookmarks
Watchlists
Read the Docs
v: v1.6.1
Versions
latest
stable
v2.0.0.rc2
v2.0.0.rc1
v1.8.0
v1.7.5
v1.7.0
v1.6.1
v1.5.0
v1.4.0
v1.3.0
v1.2.1
v1.1.0
v1.0.0
Downloads
On Read the Docs
Project Home
Builds