msticpy.analysis package
MSTICPy Analysis Tools.
This sub-package has a few classes of analysis tools:
data - this sub-package contains data-processing tools for dealing with tranforming data (e.g. auditd, process tree) or extracting specific data formats (iocextract, b64, cmdline)
other items are miscellaneous analysis modules such anomalous sequence, time series, eventcluster.
Subpackages
Submodules
- msticpy.analysis.cluster_auditd module
- msticpy.analysis.code_cleanup module
- msticpy.analysis.eventcluster module
- msticpy.analysis.observationlist module
Observation
Observation.additional_properties
Observation.all_fields()
Observation.caption
Observation.data
Observation.data_type
Observation.description
Observation.display()
Observation.filter
Observation.filtered_data
Observation.link
Observation.required_fields()
Observation.schema
Observation.score
Observation.tags
Observation.time_column
Observation.time_span
Observation.timestamp
Observations
- msticpy.analysis.outliers module
- msticpy.analysis.polling_detection module
- msticpy.analysis.syslog_utils module
- msticpy.analysis.timeseries module