msticpy.data.drivers package

Data provider sub-package.

msticpy.data.drivers.import_driver(data_environment) → type

msticpy.data.drivers.import_driver(data_environment: DataEnvironment) → type

msticpy.data.drivers.import_driver(data_environment: str) → type

Unsupported type for environment.

Submodules

• msticpy.data.drivers.azure_kusto_driver module
  • AuthParams
    • AuthParams.count()
    • AuthParams.index()
    • AuthParams.method
    • AuthParams.params
    • AuthParams.uri
  • AzureKustoDriver
    • AzureKustoDriver.add_query_filter()
    • AzureKustoDriver.cluster_config_name
    • AzureKustoDriver.cluster_name
    • AzureKustoDriver.cluster_uri
    • AzureKustoDriver.configured_clusters
    • AzureKustoDriver.connect()
    • AzureKustoDriver.connected
    • AzureKustoDriver.current_connection
    • AzureKustoDriver.driver_queries
    • AzureKustoDriver.get_database_names()
    • AzureKustoDriver.get_database_schema()
    • AzureKustoDriver.get_driver_property()
    • AzureKustoDriver.get_http_timeout()
    • AzureKustoDriver.instance
    • AzureKustoDriver.loaded
    • AzureKustoDriver.query()
    • AzureKustoDriver.query_attach_spec
    • AzureKustoDriver.query_usable()
    • AzureKustoDriver.query_with_results()
    • AzureKustoDriver.schema
    • AzureKustoDriver.service_queries
    • AzureKustoDriver.set_cluster()
    • AzureKustoDriver.set_database()
    • AzureKustoDriver.set_driver_property()
  • KFields
  • KustoConfig
    • KustoConfig.ConfigFields
      • KustoConfig.ConfigFields.ARGS
      • KustoConfig.ConfigFields.CERTIFICATE
      • KustoConfig.ConfigFields.CLIENT_ID
      • KustoConfig.ConfigFields.CLIENT_SEC
      • KustoConfig.ConfigFields.CLUSTER
      • KustoConfig.ConfigFields.CLUSTER_GROUPS
      • KustoConfig.ConfigFields.DEFAULTS
      • KustoConfig.ConfigFields.INTEG_AUTH
      • KustoConfig.ConfigFields.TENANT_ID
    • KustoConfig.alias
    • KustoConfig.args
    • KustoConfig.cluster
    • KustoConfig.cluster_groups
    • KustoConfig.default_db
    • KustoConfig.integrated_auth
    • KustoConfig.name
    • KustoConfig.path
    • KustoConfig.tenant_id
  • QuerySourceFields
    • QuerySourceFields.CLUSTER
    • QuerySourceFields.CLUSTERS
    • QuerySourceFields.CLUSTER_GROUPS
    • QuerySourceFields.DATA_ENVS
    • QuerySourceFields.DATA_FAMILIES
  • get_cluster_name()
• msticpy.data.drivers.azure_monitor_driver module
  • AzureMonitorDriver
    • AzureMonitorDriver.add_query_filter()
    • AzureMonitorDriver.connect()
    • AzureMonitorDriver.connected
    • AzureMonitorDriver.current_connection
    • AzureMonitorDriver.driver_queries
    • AzureMonitorDriver.get_driver_property()
    • AzureMonitorDriver.get_http_timeout()
    • AzureMonitorDriver.instance
    • AzureMonitorDriver.loaded
    • AzureMonitorDriver.query()
    • AzureMonitorDriver.query_attach_spec
    • AzureMonitorDriver.query_usable()
    • AzureMonitorDriver.query_with_results()
    • AzureMonitorDriver.schema
    • AzureMonitorDriver.service_queries
    • AzureMonitorDriver.set_driver_property()
    • AzureMonitorDriver.url_endpoint
• msticpy.data.drivers.azure_search_driver module
  • AzureSearchDriver
    • AzureSearchDriver.add_query_filter()
    • AzureSearchDriver.connect()
    • AzureSearchDriver.connected
    • AzureSearchDriver.current_connection
    • AzureSearchDriver.driver_queries
    • AzureSearchDriver.get_driver_property()
    • AzureSearchDriver.get_http_timeout()
    • AzureSearchDriver.instance
    • AzureSearchDriver.loaded
    • AzureSearchDriver.query()
    • AzureSearchDriver.query_attach_spec
    • AzureSearchDriver.query_usable()
    • AzureSearchDriver.query_with_results()
    • AzureSearchDriver.schema
    • AzureSearchDriver.service_queries
    • AzureSearchDriver.set_driver_property()
    • AzureSearchDriver.url_endpoint
• msticpy.data.drivers.cybereason_driver module
  • CybereasonDriver
    • CybereasonDriver.CONFIG_NAME
    • CybereasonDriver.add_query_filter()
    • CybereasonDriver.connect()
    • CybereasonDriver.connected
    • CybereasonDriver.driver_queries
    • CybereasonDriver.get_driver_property()
    • CybereasonDriver.get_http_timeout()
    • CybereasonDriver.instance
    • CybereasonDriver.loaded
    • CybereasonDriver.query()
    • CybereasonDriver.query_attach_spec
    • CybereasonDriver.query_usable()
    • CybereasonDriver.query_with_results()
    • CybereasonDriver.schema
    • CybereasonDriver.service_queries
    • CybereasonDriver.set_driver_property()
• msticpy.data.drivers.driver_base module
  • DriverBase
    • DriverBase.add_query_filter()
    • DriverBase.connect()
    • DriverBase.connected
    • DriverBase.driver_queries
    • DriverBase.get_driver_property()
    • DriverBase.get_http_timeout()
    • DriverBase.instance
    • DriverBase.loaded
    • DriverBase.query()
    • DriverBase.query_attach_spec
    • DriverBase.query_usable()
    • DriverBase.query_with_results()
    • DriverBase.schema
    • DriverBase.service_queries
    • DriverBase.set_driver_property()
  • DriverProps
    • DriverProps.EFFECTIVE_ENV
    • DriverProps.FILTER_ON_CONNECT
    • DriverProps.FORMATTERS
    • DriverProps.HAS_DRIVER_QUERIES
    • DriverProps.MAX_PARALLEL
    • DriverProps.PROPERTY_TYPES
    • DriverProps.PUBLIC_ATTRS
    • DriverProps.SUPPORTS_ASYNC
    • DriverProps.SUPPORTS_THREADING
    • DriverProps.USE_QUERY_PATHS
    • DriverProps.defaults()
    • DriverProps.valid_type()
• msticpy.data.drivers.elastic_driver module
  • ElasticDriver
    • ElasticDriver.add_query_filter()
    • ElasticDriver.connect()
    • ElasticDriver.connected
    • ElasticDriver.driver_queries
    • ElasticDriver.get_driver_property()
    • ElasticDriver.get_http_timeout()
    • ElasticDriver.instance
    • ElasticDriver.loaded
    • ElasticDriver.query()
    • ElasticDriver.query_attach_spec
    • ElasticDriver.query_usable()
    • ElasticDriver.query_with_results()
    • ElasticDriver.schema
    • ElasticDriver.service_queries
    • ElasticDriver.set_driver_property()
• msticpy.data.drivers.kql_driver module
  • KqlDriver
    • KqlDriver.add_query_filter()
    • KqlDriver.connect()
    • KqlDriver.connected
    • KqlDriver.driver_queries
    • KqlDriver.get_driver_property()
    • KqlDriver.get_http_timeout()
    • KqlDriver.instance
    • KqlDriver.loaded
    • KqlDriver.query()
    • KqlDriver.query_attach_spec
    • KqlDriver.query_usable()
    • KqlDriver.query_with_results()
    • KqlDriver.schema
    • KqlDriver.service_queries
    • KqlDriver.set_driver_property()
• msticpy.data.drivers.kusto_driver module
  • KustoDriver
    • KustoDriver.add_query_filter()
    • KustoDriver.connect()
    • KustoDriver.connected
    • KustoDriver.driver_queries
    • KustoDriver.get_driver_property()
    • KustoDriver.get_http_timeout()
    • KustoDriver.instance
    • KustoDriver.loaded
    • KustoDriver.query()
    • KustoDriver.query_attach_spec
    • KustoDriver.query_usable()
    • KustoDriver.query_with_results()
    • KustoDriver.schema
    • KustoDriver.service_queries
    • KustoDriver.set_driver_property()
• msticpy.data.drivers.local_data_driver module
  • LocalDataDriver
    • LocalDataDriver.add_query_filter()
    • LocalDataDriver.connect()
    • LocalDataDriver.connected
    • LocalDataDriver.driver_queries
    • LocalDataDriver.get_driver_property()
    • LocalDataDriver.get_http_timeout()
    • LocalDataDriver.instance
    • LocalDataDriver.loaded
    • LocalDataDriver.query()
    • LocalDataDriver.query_attach_spec
    • LocalDataDriver.query_usable()
    • LocalDataDriver.query_with_results()
    • LocalDataDriver.schema
    • LocalDataDriver.service_queries
    • LocalDataDriver.set_driver_property()
• msticpy.data.drivers.local_osquery_driver module
  • OSQueryLogDriver
    • OSQueryLogDriver.OS_QUERY_DATEIME_COLS
    • OSQueryLogDriver.add_query_filter()
    • OSQueryLogDriver.connect()
    • OSQueryLogDriver.connected
    • OSQueryLogDriver.driver_queries
    • OSQueryLogDriver.get_driver_property()
    • OSQueryLogDriver.get_http_timeout()
    • OSQueryLogDriver.instance
    • OSQueryLogDriver.loaded
    • OSQueryLogDriver.query()
    • OSQueryLogDriver.query_attach_spec
    • OSQueryLogDriver.query_usable()
    • OSQueryLogDriver.query_with_results()
    • OSQueryLogDriver.schema
    • OSQueryLogDriver.service_queries
    • OSQueryLogDriver.set_driver_property()
• msticpy.data.drivers.local_velociraptor_driver module
  • VelociraptorLogDriver
    • VelociraptorLogDriver.add_query_filter()
    • VelociraptorLogDriver.connect()
    • VelociraptorLogDriver.connected
    • VelociraptorLogDriver.driver_queries
    • VelociraptorLogDriver.get_driver_property()
    • VelociraptorLogDriver.get_http_timeout()
    • VelociraptorLogDriver.instance
    • VelociraptorLogDriver.loaded
    • VelociraptorLogDriver.query()
    • VelociraptorLogDriver.query_attach_spec
    • VelociraptorLogDriver.query_usable()
    • VelociraptorLogDriver.query_with_results()
    • VelociraptorLogDriver.schema
    • VelociraptorLogDriver.service_queries
    • VelociraptorLogDriver.set_driver_property()
• msticpy.data.drivers.mdatp_driver module
  • M365DConfiguration
    • M365DConfiguration.api_endpoint
    • M365DConfiguration.api_uri
    • M365DConfiguration.api_version
    • M365DConfiguration.login_uri
    • M365DConfiguration.oauth_v2
    • M365DConfiguration.resource_uri
    • M365DConfiguration.scopes
  • MDATPDriver
    • MDATPDriver.CONFIG_NAME
    • MDATPDriver.add_query_filter()
    • MDATPDriver.connect()
    • MDATPDriver.connected
    • MDATPDriver.driver_queries
    • MDATPDriver.get_driver_property()
    • MDATPDriver.get_http_timeout()
    • MDATPDriver.instance
    • MDATPDriver.loaded
    • MDATPDriver.query()
    • MDATPDriver.query_attach_spec
    • MDATPDriver.query_usable()
    • MDATPDriver.query_with_results()
    • MDATPDriver.schema
    • MDATPDriver.service_queries
    • MDATPDriver.set_driver_property()
• msticpy.data.drivers.mordor_driver module
  • MitreAttack
    • MitreAttack.MTR_TAC_URI
    • MitreAttack.MTR_TECH_URI
    • MitreAttack.tactics_full
    • MitreAttack.technique_desc
    • MitreAttack.technique_name
    • MitreAttack.technique_uri
  • MordorDriver
    • MordorDriver.add_query_filter()
    • MordorDriver.connect()
    • MordorDriver.connected
    • MordorDriver.driver_queries
    • MordorDriver.get_driver_property()
    • MordorDriver.get_http_timeout()
    • MordorDriver.instance
    • MordorDriver.loaded
    • MordorDriver.query()
    • MordorDriver.query_attach_spec
    • MordorDriver.query_usable()
    • MordorDriver.query_with_results()
    • MordorDriver.schema
    • MordorDriver.search_queries()
    • MordorDriver.service_queries
    • MordorDriver.set_driver_property()
  • MordorEntry
    • MordorEntry.attack_mappings
    • MordorEntry.author
    • MordorEntry.contributors
    • MordorEntry.creation_date
    • MordorEntry.datasets
    • MordorEntry.description
    • MordorEntry.files
    • MordorEntry.get_attacks()
    • MordorEntry.get_file_paths()
    • MordorEntry.get_notebooks()
    • MordorEntry.id
    • MordorEntry.modification_date
    • MordorEntry.notebooks
    • MordorEntry.platform
    • MordorEntry.references
    • MordorEntry.simulation
    • MordorEntry.tags
    • MordorEntry.title
    • MordorEntry.type
  • download_mdr_file()
  • get_mdr_data_paths()
  • search_mdr_data()
• msticpy.data.drivers.odata_driver module
  • OData
    • OData.CONFIG_NAME
    • OData.add_query_filter()
    • OData.connect()
    • OData.connected
    • OData.driver_queries
    • OData.get_driver_property()
    • OData.get_http_timeout()
    • OData.instance
    • OData.loaded
    • OData.query()
    • OData.query_attach_spec
    • OData.query_usable()
    • OData.query_with_results()
    • OData.schema
    • OData.service_queries
    • OData.set_driver_property()
• msticpy.data.drivers.resource_graph_driver module
  • ResourceGraphDriver
    • ResourceGraphDriver.add_query_filter()
    • ResourceGraphDriver.connect()
    • ResourceGraphDriver.connected
    • ResourceGraphDriver.driver_queries
    • ResourceGraphDriver.get_driver_property()
    • ResourceGraphDriver.get_http_timeout()
    • ResourceGraphDriver.instance
    • ResourceGraphDriver.loaded
    • ResourceGraphDriver.query()
    • ResourceGraphDriver.query_attach_spec
    • ResourceGraphDriver.query_usable()
    • ResourceGraphDriver.query_with_results()
    • ResourceGraphDriver.schema
    • ResourceGraphDriver.service_queries
    • ResourceGraphDriver.set_driver_property()
• msticpy.data.drivers.security_graph_driver module
  • SecurityGraphDriver
    • SecurityGraphDriver.CONFIG_NAME
    • SecurityGraphDriver.aad_token
    • SecurityGraphDriver.add_query_filter()
    • SecurityGraphDriver.api_root
    • SecurityGraphDriver.api_ver
    • SecurityGraphDriver.connect()
    • SecurityGraphDriver.connected
    • SecurityGraphDriver.driver_queries
    • SecurityGraphDriver.get_driver_property()
    • SecurityGraphDriver.get_http_timeout()
    • SecurityGraphDriver.instance
    • SecurityGraphDriver.loaded
    • SecurityGraphDriver.msal_auth
    • SecurityGraphDriver.oauth_url
    • SecurityGraphDriver.query()
    • SecurityGraphDriver.query_attach_spec
    • SecurityGraphDriver.query_usable()
    • SecurityGraphDriver.query_with_results()
    • SecurityGraphDriver.req_body
    • SecurityGraphDriver.req_headers
    • SecurityGraphDriver.request_uri
    • SecurityGraphDriver.schema
    • SecurityGraphDriver.scopes
    • SecurityGraphDriver.service_queries
    • SecurityGraphDriver.set_driver_property()
• msticpy.data.drivers.sentinel_query_reader module
  • SentinelQuery
    • SentinelQuery.alert_details_override
    • SentinelQuery.custom_details
    • SentinelQuery.description
    • SentinelQuery.entity_mappings
    • SentinelQuery.folder_name
    • SentinelQuery.kind
    • SentinelQuery.name
    • SentinelQuery.query
    • SentinelQuery.query_frequency
    • SentinelQuery.query_id
    • SentinelQuery.query_period
    • SentinelQuery.query_type
    • SentinelQuery.relevant_techniques
    • SentinelQuery.required_data_connectors
    • SentinelQuery.severity
    • SentinelQuery.source_file_name
    • SentinelQuery.tactics
    • SentinelQuery.tags
    • SentinelQuery.trigger_operator
    • SentinelQuery.trigger_threshold
    • SentinelQuery.version
  • download_and_write_sentinel_queries()
  • get_sentinel_queries_from_github()
  • import_sentinel_queries()
  • read_yaml_files()
  • write_to_yaml()
• msticpy.data.drivers.splunk_driver module
  • SplunkDriver
    • SplunkDriver.add_query_filter()
    • SplunkDriver.connect()
    • SplunkDriver.connected
    • SplunkDriver.driver_queries
    • SplunkDriver.get_driver_property()
    • SplunkDriver.get_http_timeout()
    • SplunkDriver.instance
    • SplunkDriver.loaded
    • SplunkDriver.query()
    • SplunkDriver.query_attach_spec
    • SplunkDriver.query_usable()
    • SplunkDriver.query_with_results()
    • SplunkDriver.schema
    • SplunkDriver.service_queries
    • SplunkDriver.set_driver_property()
• msticpy.data.drivers.sumologic_driver module
  • SumologicDriver
    • SumologicDriver.add_query_filter()
    • SumologicDriver.connect()
    • SumologicDriver.connected
    • SumologicDriver.driver_queries
    • SumologicDriver.get_driver_property()
    • SumologicDriver.get_http_timeout()
    • SumologicDriver.instance
    • SumologicDriver.loaded
    • SumologicDriver.query()
    • SumologicDriver.query_attach_spec
    • SumologicDriver.query_usable()
    • SumologicDriver.query_with_results()
    • SumologicDriver.schema
    • SumologicDriver.service_queries
    • SumologicDriver.set_driver_property()