msticpy.context.azure package
Data provider sub-package.
Submodules
- msticpy.context.azure.azure_data module
- msticpy.context.azure.sentinel_analytics module
SentinelAnalyticsMixin
SentinelAnalyticsMixin.create_analytic_rule()
SentinelAnalyticsMixin.delete_analytic_rule()
SentinelAnalyticsMixin.get_alert_rules()
SentinelAnalyticsMixin.get_analytic_rules()
SentinelAnalyticsMixin.list_alert_rules()
SentinelAnalyticsMixin.list_analytic_rules()
SentinelAnalyticsMixin.list_analytic_templates()
SentinelHuntingMixin
- msticpy.context.azure.sentinel_bookmarks module
- msticpy.context.azure.sentinel_core module
AzureSentinel
MicrosoftSentinel
MicrosoftSentinel.add_bookmark_to_incident()
MicrosoftSentinel.add_tag()
MicrosoftSentinel.add_watchlist_item()
MicrosoftSentinel.bulk_create_indicators()
MicrosoftSentinel.check_connected()
MicrosoftSentinel.check_search_status()
MicrosoftSentinel.connect()
MicrosoftSentinel.create_analytic_rule()
MicrosoftSentinel.create_bookmark()
MicrosoftSentinel.create_dynamic_summary()
MicrosoftSentinel.create_incident()
MicrosoftSentinel.create_indicator()
MicrosoftSentinel.create_search()
MicrosoftSentinel.create_watchlist()
MicrosoftSentinel.default_resource_group
MicrosoftSentinel.default_resource_id
MicrosoftSentinel.default_subscription_id
MicrosoftSentinel.default_workspace_name
MicrosoftSentinel.default_workspace_settings
MicrosoftSentinel.delete_analytic_rule()
MicrosoftSentinel.delete_bookmark()
MicrosoftSentinel.delete_dynamic_summary()
MicrosoftSentinel.delete_indicator()
MicrosoftSentinel.delete_search()
MicrosoftSentinel.delete_watchlist()
MicrosoftSentinel.delete_watchlist_item()
MicrosoftSentinel.df_to_dynamic_summaries()
MicrosoftSentinel.df_to_dynamic_summary()
MicrosoftSentinel.get_alert_rules()
MicrosoftSentinel.get_all_indicators()
MicrosoftSentinel.get_analytic_rules()
MicrosoftSentinel.get_bookmarks()
MicrosoftSentinel.get_dynamic_summary()
MicrosoftSentinel.get_entities()
MicrosoftSentinel.get_hunting_queries()
MicrosoftSentinel.get_incident()
MicrosoftSentinel.get_incident_alerts()
MicrosoftSentinel.get_incident_bookmarks()
MicrosoftSentinel.get_incident_comments()
MicrosoftSentinel.get_incidents()
MicrosoftSentinel.get_indicator()
MicrosoftSentinel.get_metrics()
MicrosoftSentinel.get_network_details()
MicrosoftSentinel.get_resource_details()
MicrosoftSentinel.get_resource_id_from_url()
MicrosoftSentinel.get_resources()
MicrosoftSentinel.get_sentinel_workspaces()
MicrosoftSentinel.get_subscription_info()
MicrosoftSentinel.get_subscriptions()
MicrosoftSentinel.get_ti_metrics()
MicrosoftSentinel.get_workspace_details_from_url()
MicrosoftSentinel.get_workspace_id()
MicrosoftSentinel.get_workspace_name()
MicrosoftSentinel.get_workspace_settings()
MicrosoftSentinel.get_workspace_settings_by_name()
MicrosoftSentinel.list_alert_rules()
MicrosoftSentinel.list_analytic_rules()
MicrosoftSentinel.list_analytic_templates()
MicrosoftSentinel.list_bookmarks()
MicrosoftSentinel.list_data_connectors()
MicrosoftSentinel.list_dynamic_summaries()
MicrosoftSentinel.list_hunting_queries()
MicrosoftSentinel.list_incidents()
MicrosoftSentinel.list_saved_queries()
MicrosoftSentinel.list_sentinel_workspaces()
MicrosoftSentinel.list_watchlist_items()
MicrosoftSentinel.list_watchlists()
MicrosoftSentinel.new_dynamic_summary()
MicrosoftSentinel.post_comment()
MicrosoftSentinel.query_indicators()
MicrosoftSentinel.set_default_subscription()
MicrosoftSentinel.set_default_workspace()
MicrosoftSentinel.update_dynamic_summary()
MicrosoftSentinel.update_incident()
MicrosoftSentinel.update_indicator()
- msticpy.context.azure.sentinel_dynamic_summary module
SentinelDynamicSummaryMixin
SentinelDynamicSummaryMixin.create_dynamic_summary()
SentinelDynamicSummaryMixin.delete_dynamic_summary()
SentinelDynamicSummaryMixin.df_to_dynamic_summaries()
SentinelDynamicSummaryMixin.df_to_dynamic_summary()
SentinelDynamicSummaryMixin.get_dynamic_summary()
SentinelDynamicSummaryMixin.list_dynamic_summaries()
SentinelDynamicSummaryMixin.new_dynamic_summary()
SentinelDynamicSummaryMixin.update_dynamic_summary()
SentinelQueryProvider
- msticpy.context.azure.sentinel_dynamic_summary_types module
DynamicSummary
DynamicSummary.add_summary_items()
DynamicSummary.append_summary_items()
DynamicSummary.df_to_dynamic_summaries()
DynamicSummary.df_to_dynamic_summary()
DynamicSummary.fields
DynamicSummary.from_json()
DynamicSummary.new_dynamic_summary()
DynamicSummary.to_df()
DynamicSummary.to_json()
DynamicSummary.to_json_api()
DynamicSummaryItem
DynamicSummaryItem.event_time_utc
DynamicSummaryItem.fields
DynamicSummaryItem.observable_type
DynamicSummaryItem.observable_value
DynamicSummaryItem.packed_content
DynamicSummaryItem.relation_id
DynamicSummaryItem.relation_name
DynamicSummaryItem.search_key
DynamicSummaryItem.summary_item_id
DynamicSummaryItem.tactics
DynamicSummaryItem.techniques
DynamicSummaryItem.to_api_dict()
FieldList
df_to_dynamic_summaries()
df_to_dynamic_summary()
- msticpy.context.azure.sentinel_incidents module
SentinelIncidentsMixin
SentinelIncidentsMixin.add_bookmark_to_incident()
SentinelIncidentsMixin.create_incident()
SentinelIncidentsMixin.get_entities()
SentinelIncidentsMixin.get_incident()
SentinelIncidentsMixin.get_incident_alerts()
SentinelIncidentsMixin.get_incident_bookmarks()
SentinelIncidentsMixin.get_incident_comments()
SentinelIncidentsMixin.get_incidents()
SentinelIncidentsMixin.list_incidents()
SentinelIncidentsMixin.post_comment()
SentinelIncidentsMixin.update_incident()
- msticpy.context.azure.sentinel_search module
- msticpy.context.azure.sentinel_ti module
SentinelTIMixin
SentinelTIMixin.add_tag()
SentinelTIMixin.bulk_create_indicators()
SentinelTIMixin.create_indicator()
SentinelTIMixin.delete_indicator()
SentinelTIMixin.get_all_indicators()
SentinelTIMixin.get_indicator()
SentinelTIMixin.get_ti_metrics()
SentinelTIMixin.query_indicators()
SentinelTIMixin.update_indicator()
- msticpy.context.azure.sentinel_utils module
- msticpy.context.azure.sentinel_watchlists module
- msticpy.context.azure.sentinel_workspaces module
ParsedUrlComponents
SentinelWorkspacesMixin
SentinelWorkspacesMixin.get_resource_id_from_url()
SentinelWorkspacesMixin.get_workspace_details_from_url()
SentinelWorkspacesMixin.get_workspace_id()
SentinelWorkspacesMixin.get_workspace_name()
SentinelWorkspacesMixin.get_workspace_settings()
SentinelWorkspacesMixin.get_workspace_settings_by_name()