msticpy.transform package
MSTICPy Data Processing Tools.
Submodules
- msticpy.transform.auditdextract module
- msticpy.transform.base64unpack module
B64ExtractAccessorBinaryRecordBinaryRecord.count()BinaryRecord.decoded_stringBinaryRecord.encoding_typeBinaryRecord.file_hashesBinaryRecord.file_nameBinaryRecord.file_typeBinaryRecord.index()BinaryRecord.input_bytesBinaryRecord.md5BinaryRecord.original_stringBinaryRecord.printable_bytesBinaryRecord.referenceBinaryRecord.sha1BinaryRecord.sha256
get_hashes()get_items_from_gzip()get_items_from_tar()get_items_from_zip()unpack()unpack_df()unpack_items()
- msticpy.transform.cmd_line module
- msticpy.transform.iocextract module
IoCExtractIoCExtract.DF_ATIoCExtract.DNS_DF_REGEXIoCExtract.DNS_REGEXIoCExtract.EMAIL_DF_REGEXIoCExtract.EMAIL_REGEXIoCExtract.EMAIL_USER_REGEXIoCExtract.IPV4_DF_REGEXIoCExtract.IPV4_REGEXIoCExtract.IPV6_REGEXIoCExtract.LXPATH_REGEXIoCExtract.LXSTDPATH_REGEXIoCExtract.MD5_REGEXIoCExtract.SHA1_REGEXIoCExtract.SHA256_REGEXIoCExtract.URL_DF_REGEXIoCExtract.URL_REGEXIoCExtract.WINPATH_REGEXIoCExtract.add_ioc_type()IoCExtract.extract()IoCExtract.extract_df()IoCExtract.file_hash_type()IoCExtract.get_ioc_type()IoCExtract.ioc_df_typesIoCExtract.ioc_typesIoCExtract.validate()
IoCExtractAccessorIoCPatternIoCType
- msticpy.transform.network module
- msticpy.transform.proc_tree_build_mde module
- msticpy.transform.proc_tree_build_winlx module
- msticpy.transform.proc_tree_builder module
- msticpy.transform.proc_tree_schema module
ColNamesProcSchemaProcSchema.blank_schema_dict()ProcSchema.cmd_lineProcSchema.column_mapProcSchema.columnsProcSchema.event_filterProcSchema.event_id_columnProcSchema.event_id_identifierProcSchema.event_type_colProcSchema.get_df_cols()ProcSchema.host_nameProcSchema.host_name_columnProcSchema.logon_idProcSchema.parent_idProcSchema.parent_nameProcSchema.path_separatorProcSchema.process_idProcSchema.process_nameProcSchema.required_columnsProcSchema.target_logon_idProcSchema.time_stampProcSchema.user_idProcSchema.user_name
ProcessTreeSchemaException
- msticpy.transform.process_tree_utils module