msticpy.transform package
MSTICPy Data Processing Tools.
Submodules
- msticpy.transform.auditdextract module
- msticpy.transform.base64unpack module
B64ExtractAccessor
BinaryRecord
BinaryRecord.count()
BinaryRecord.decoded_string
BinaryRecord.encoding_type
BinaryRecord.file_hashes
BinaryRecord.file_name
BinaryRecord.file_type
BinaryRecord.index()
BinaryRecord.input_bytes
BinaryRecord.md5
BinaryRecord.original_string
BinaryRecord.printable_bytes
BinaryRecord.reference
BinaryRecord.sha1
BinaryRecord.sha256
get_hashes()
get_items_from_gzip()
get_items_from_tar()
get_items_from_zip()
unpack()
unpack_df()
unpack_items()
- msticpy.transform.cmd_line module
- msticpy.transform.iocextract module
IoCExtract
IoCExtract.DF_AT
IoCExtract.DNS_DF_REGEX
IoCExtract.DNS_REGEX
IoCExtract.EMAIL_DF_REGEX
IoCExtract.EMAIL_REGEX
IoCExtract.EMAIL_USER_REGEX
IoCExtract.IPV4_DF_REGEX
IoCExtract.IPV4_REGEX
IoCExtract.IPV6_REGEX
IoCExtract.LXPATH_REGEX
IoCExtract.LXSTDPATH_REGEX
IoCExtract.MD5_REGEX
IoCExtract.SHA1_REGEX
IoCExtract.SHA256_REGEX
IoCExtract.URL_DF_REGEX
IoCExtract.URL_REGEX
IoCExtract.WINPATH_REGEX
IoCExtract.add_ioc_type()
IoCExtract.extract()
IoCExtract.extract_df()
IoCExtract.file_hash_type()
IoCExtract.get_ioc_type()
IoCExtract.ioc_df_types
IoCExtract.ioc_types
IoCExtract.validate()
IoCExtractAccessor
IoCPattern
IoCType
- msticpy.transform.network module
- msticpy.transform.proc_tree_build_mde module
- msticpy.transform.proc_tree_build_winlx module
- msticpy.transform.proc_tree_builder module
- msticpy.transform.proc_tree_schema module
ColNames
ProcSchema
ProcSchema.blank_schema_dict()
ProcSchema.cmd_line
ProcSchema.column_map
ProcSchema.columns
ProcSchema.event_filter
ProcSchema.event_id_column
ProcSchema.event_id_identifier
ProcSchema.event_type_col
ProcSchema.get_df_cols()
ProcSchema.host_name
ProcSchema.host_name_column
ProcSchema.logon_id
ProcSchema.parent_id
ProcSchema.parent_name
ProcSchema.path_separator
ProcSchema.process_id
ProcSchema.process_name
ProcSchema.required_columns
ProcSchema.target_logon_id
ProcSchema.time_stamp
ProcSchema.user_id
ProcSchema.user_name
ProcessTreeSchemaException
- msticpy.transform.process_tree_utils module