msticpy
v2.3.0
Getting Started
Querying and Importing Data
Enriching Data
Analyzing Data
Displaying/Visualizing Data
msticpy API
Notebook Examples
Articles, Labs and other Resources
Releases
Contributing
License
msticpy
Index
Edit on GitHub
Index
A
|
B
|
C
|
D
|
E
|
F
|
G
|
H
|
I
|
J
|
K
|
L
|
M
|
N
|
O
|
P
|
Q
|
R
|
S
|
T
|
U
|
V
|
W
|
X
|
Y
A
AAD_AUTHORITIES (msticpy.auth.keyvault_settings.KeyVaultSettings attribute)
AadTenantId (msticpy.datamodel.entities.account.Account attribute)
AadUserId (msticpy.datamodel.entities.account.Account attribute)
accessor (msticpy.init.pivot_core.pivot_pipeline.PipelineExecStep attribute)
Account (class in msticpy.datamodel.entities.account)
(msticpy.datamodel.entities.cloud_logon_session.CloudLogonSession attribute)
(msticpy.datamodel.entities.host_logon_session.HostLogonSession attribute)
(msticpy.datamodel.entities.process.Process attribute)
action (msticpy.nbwidgets.select_alert.AlertSelector attribute)
(msticpy.nbwidgets.select_alert.SelectAlert attribute)
add_attr() (msticpy.datamodel.entities.entity_graph.Edge method)
add_connection() (msticpy.data.core.data_providers.QueryProvider method)
add_custom_query() (msticpy.data.core.data_providers.QueryProvider method)
add_data_queries_to_entities() (in module msticpy.init.pivot_init.pivot_data_queries)
add_data_source() (msticpy.data.core.query_store.QueryStore method)
add_edge() (msticpy.datamodel.entities.account.Account method)
(msticpy.datamodel.entities.alert.Alert method)
(msticpy.datamodel.entities.azure_resource.AzureResource method)
(msticpy.datamodel.entities.cloud_application.CloudApplication method)
(msticpy.datamodel.entities.cloud_logon_session.CloudLogonSession method)
(msticpy.datamodel.entities.dns.Dns method)
(msticpy.datamodel.entities.entity.Entity method)
(msticpy.datamodel.entities.entity_graph.Node method)
(msticpy.datamodel.entities.file.File method)
(msticpy.datamodel.entities.file_hash.FileHash method)
(msticpy.datamodel.entities.geo_location.GeoLocation method)
(msticpy.datamodel.entities.host.Host method)
(msticpy.datamodel.entities.host_logon_session.HostLogonSession method)
(msticpy.datamodel.entities.iot_device.IoTDevice method)
(msticpy.datamodel.entities.ip_address.IpAddress method)
(msticpy.datamodel.entities.mail_cluster.MailCluster method)
(msticpy.datamodel.entities.mail_message.MailMessage method)
(msticpy.datamodel.entities.mailbox.Mailbox method)
(msticpy.datamodel.entities.malware.Malware method)
(msticpy.datamodel.entities.network_connection.NetworkConnection method)
(msticpy.datamodel.entities.process.Process method)
(msticpy.datamodel.entities.registry_key.RegistryKey method)
(msticpy.datamodel.entities.registry_value.RegistryValue method)
(msticpy.datamodel.entities.security_group.SecurityGroup method)
(msticpy.datamodel.entities.submission_mail.SubmissionMail method)
(msticpy.datamodel.entities.threat_intelligence.Threatintelligence method)
(msticpy.datamodel.entities.unknown_entity.UnknownEntity method)
(msticpy.datamodel.entities.url.Url method)
(msticpy.datamodel.soc.incident.Incident method)
(msticpy.datamodel.soc.sentinel_alert.SentinelAlert method)
add_entity() (msticpy.vis.entity_graph_tools.EntityGraph method)
add_incident() (msticpy.vis.entity_graph_tools.EntityGraph method)
add_ioc_type() (msticpy.transform.iocextract.IoCExtract method)
add_link() (msticpy.vis.entity_graph_tools.EntityGraph method)
add_note() (msticpy.vis.entity_graph_tools.EntityGraph method)
add_observation() (msticpy.analysis.observationlist.Observations method)
add_process_features() (in module msticpy.analysis.eventcluster)
add_queries_to_entities() (in module msticpy.init.pivot_init.pivot_data_queries)
add_query() (msticpy.data.core.query_store.QueryStore method)
add_query_filter() (msticpy.data.drivers.cybereason_driver.CybereasonDriver method)
(msticpy.data.drivers.driver_base.DriverBase method)
(msticpy.data.drivers.elastic_driver.ElasticDriver method)
(msticpy.data.drivers.kql_driver.KqlDriver method)
(msticpy.data.drivers.kusto_driver.KustoDriver method)
(msticpy.data.drivers.local_data_driver.LocalDataDriver method)
(msticpy.data.drivers.mdatp_driver.MDATPDriver method)
(msticpy.data.drivers.mordor_driver.MordorDriver method)
(msticpy.data.drivers.odata_driver.OData method)
(msticpy.data.drivers.resource_graph_driver.ResourceGraphDriver method)
(msticpy.data.drivers.security_graph_driver.SecurityGraphDriver method)
(msticpy.data.drivers.splunk_driver.SplunkDriver method)
(msticpy.data.drivers.sumologic_driver.SumologicDriver method)
add_related_alerts() (in module msticpy.nbtools.security_alert_graph)
add_tab() (msticpy.config.comp_edit.CompEditTabs method)
add_unbound_pivot_function() (in module msticpy.init.pivot_core.pivot_register_reader)
additional_properties (msticpy.analysis.observationlist.Observation attribute)
Address (msticpy.datamodel.entities.ip_address.IpAddress attribute)
Alert (class in msticpy.datamodel.entities.alert)
alert (msticpy.vis.timeline.PlotParams attribute)
alert_id (msticpy.nbwidgets.select_alert.AlertSelector attribute)
(msticpy.nbwidgets.select_alert.SelectAlert attribute)
AlertDisplayName (msticpy.datamodel.entities.alert.Alert attribute)
alerts (msticpy.nbwidgets.select_alert.AlertSelector attribute)
(msticpy.nbwidgets.select_alert.SelectAlert attribute)
AlertSelector (class in msticpy.nbwidgets.select_alert)
AlertType (msticpy.datamodel.entities.alert.Alert attribute)
(msticpy.datamodel.soc.sentinel_alert.SentinelAlert attribute)
Algorithm (class in msticpy.datamodel.entities.entity_enums)
(msticpy.datamodel.entities.file_hash.FileHash attribute)
all (msticpy.init.pivot_init.pivot_data_queries.QueryParams attribute)
all_fields() (msticpy.analysis.observationlist.Observation class method)
ALLOWED_KWARGS (msticpy.nbwidgets.core.RegisteredWidget attribute)
(msticpy.nbwidgets.get_environment_key.GetEnvironmentKey attribute)
(msticpy.nbwidgets.get_text.GetText attribute)
(msticpy.nbwidgets.query_time.QueryTime attribute)
analytic (msticpy.datamodel.soc.sentinel_alert.SentinelAlert property)
AntispamDirection (msticpy.datamodel.entities.mail_message.MailMessage attribute)
api_root (msticpy.data.drivers.security_graph_driver.SecurityGraphDriver attribute)
api_ver (msticpy.data.drivers.security_graph_driver.SecurityGraphDriver attribute)
AppId (msticpy.datamodel.entities.cloud_application.CloudApplication attribute)
arg_to_list() (in module msticpy.common.utility.types)
args (msticpy.common.exceptions.MsticpyAzureConfigError attribute)
(msticpy.common.exceptions.MsticpyAzureConnectionError attribute)
(msticpy.common.exceptions.MsticpyConfigException attribute)
(msticpy.common.exceptions.MsticpyConnectionError attribute)
(msticpy.common.exceptions.MsticpyDataQueryError attribute)
(msticpy.common.exceptions.MsticpyException attribute)
(msticpy.common.exceptions.MsticpyImportExtraError attribute)
(msticpy.common.exceptions.MsticpyKeyVaultConfigError attribute)
(msticpy.common.exceptions.MsticpyKeyVaultMissingSecretError attribute)
(msticpy.common.exceptions.MsticpyKqlConnectionError attribute)
(msticpy.common.exceptions.MsticpyMissingDependencyError attribute)
(msticpy.common.exceptions.MsticpyNoDataSourceError attribute)
(msticpy.common.exceptions.MsticpyNotConnectedError attribute)
(msticpy.common.exceptions.MsticpyParameterError attribute)
(msticpy.common.exceptions.MsticpyResourceException attribute)
(msticpy.common.exceptions.MsticpyUserConfigError attribute)
(msticpy.common.exceptions.MsticpyUserError attribute)
(msticpy.common.provider_settings.ProviderSettings attribute)
(msticpy.transform.proc_tree_schema.ProcessTreeSchemaException attribute)
Asn (msticpy.datamodel.entities.geo_location.GeoLocation attribute)
assigned_entities (msticpy.init.pivot_init.pivot_data_queries.PivQuerySettings attribute)
attack_mappings (msticpy.data.drivers.mordor_driver.MordorEntry attribute)
attr_for_entity() (msticpy.init.pivot_core.pivot_register.PivotRegistration method)
auth_secrets_client() (in module msticpy.common.provider_settings)
author (msticpy.data.drivers.mordor_driver.MordorEntry attribute)
authority_uri (msticpy.auth.keyvault_settings.KeyVaultSettings property)
az_connect() (in module msticpy.auth.azure_auth)
az_connect_core() (in module msticpy.auth.azure_auth_core)
az_user_connect() (in module msticpy.auth.azure_auth)
AzCredentials (class in msticpy.auth.azure_auth_core)
AZURE_CLIENT_ID (msticpy.auth.azure_auth_core.AzureCredEnvNames attribute)
AZURE_CLIENT_SECRET (msticpy.auth.azure_auth_core.AzureCredEnvNames attribute)
AZURE_TENANT_ID (msticpy.auth.azure_auth_core.AzureCredEnvNames attribute)
AzureBlobStorage (class in msticpy.data.storage.azure_blob_storage)
AzureCliStatus (class in msticpy.auth.azure_auth_core)
AzureCloudConfig (class in msticpy.auth.cloud_mappings)
AzureCredEnvNames (class in msticpy.auth.azure_auth_core)
AzureID (msticpy.datamodel.entities.host.Host attribute)
AzureNetwork (msticpy.data.core.query_defns.DataFamily attribute)
AzureResource (class in msticpy.datamodel.entities.azure_resource)
AzureSecurityCenter (msticpy.data.core.query_defns.DataEnvironment attribute)
AzureSentinel (msticpy.data.core.query_defns.DataEnvironment attribute)
B
B64ExtractAccessor (class in msticpy.transform.base64unpack)
BHKeyVaultClient (class in msticpy.auth.keyvault_client)
BHKeyVaultMgmtClient (class in msticpy.auth.keyvault_client)
BinaryRecord (class in msticpy.transform.base64unpack)
blank_schema_dict() (msticpy.transform.proc_tree_schema.ProcSchema class method)
blobs() (msticpy.data.storage.azure_blob_storage.AzureBlobStorage method)
BodyFingerprintBin1 (msticpy.datamodel.entities.mail_message.MailMessage attribute)
BodyFingerprintBin2 (msticpy.datamodel.entities.mail_message.MailMessage attribute)
BodyFingerprintBin3 (msticpy.datamodel.entities.mail_message.MailMessage attribute)
BodyFingerprintBin4 (msticpy.datamodel.entities.mail_message.MailMessage attribute)
BodyFingerprintBin5 (msticpy.datamodel.entities.mail_message.MailMessage attribute)
border_layout() (msticpy.config.ce_azure.CEAzure static method)
(msticpy.config.ce_simple_settings.CESimpleSettings static method)
(msticpy.config.comp_edit.CEItemsBase static method)
(msticpy.config.comp_edit.CompEditDisplayMixin static method)
(msticpy.config.comp_edit.CompEditFrame static method)
(msticpy.config.comp_edit.CompEditItems static method)
(msticpy.config.comp_edit.CompEditSimple static method)
browse() (msticpy.data.core.data_providers.QueryProvider method)
browse_queries() (msticpy.data.core.data_providers.QueryProvider method)
build_proc_tree() (in module msticpy.transform.proc_tree_builder)
build_process_tree() (in module msticpy.transform.proc_tree_builder)
C
calc_auto_plot_height() (in module msticpy.vis.timeline_common)
camelcase_property_names() (in module msticpy.datamodel.entities.entity)
can_iterate (msticpy.init.pivot_core.pivot_register.PivotRegistration attribute)
can_merge() (msticpy.datamodel.entities.account.Account method)
(msticpy.datamodel.entities.alert.Alert method)
(msticpy.datamodel.entities.azure_resource.AzureResource method)
(msticpy.datamodel.entities.cloud_application.CloudApplication method)
(msticpy.datamodel.entities.cloud_logon_session.CloudLogonSession method)
(msticpy.datamodel.entities.dns.Dns method)
(msticpy.datamodel.entities.entity.Entity method)
(msticpy.datamodel.entities.file.File method)
(msticpy.datamodel.entities.file_hash.FileHash method)
(msticpy.datamodel.entities.geo_location.GeoLocation method)
(msticpy.datamodel.entities.host.Host method)
(msticpy.datamodel.entities.host_logon_session.HostLogonSession method)
(msticpy.datamodel.entities.iot_device.IoTDevice method)
(msticpy.datamodel.entities.ip_address.IpAddress method)
(msticpy.datamodel.entities.mail_cluster.MailCluster method)
(msticpy.datamodel.entities.mail_message.MailMessage method)
(msticpy.datamodel.entities.mailbox.Mailbox method)
(msticpy.datamodel.entities.malware.Malware method)
(msticpy.datamodel.entities.network_connection.NetworkConnection method)
(msticpy.datamodel.entities.process.Process method)
(msticpy.datamodel.entities.registry_key.RegistryKey method)
(msticpy.datamodel.entities.registry_value.RegistryValue method)
(msticpy.datamodel.entities.security_group.SecurityGroup method)
(msticpy.datamodel.entities.submission_mail.SubmissionMail method)
(msticpy.datamodel.entities.threat_intelligence.Threatintelligence method)
(msticpy.datamodel.entities.unknown_entity.UnknownEntity method)
(msticpy.datamodel.entities.url.Url method)
(msticpy.datamodel.soc.incident.Incident method)
(msticpy.datamodel.soc.sentinel_alert.SentinelAlert method)
caption (msticpy.analysis.observationlist.Observation attribute)
Category (msticpy.datamodel.entities.malware.Malware attribute)
CEAzure (class in msticpy.config.ce_azure)
CEItemsBase (class in msticpy.config.comp_edit)
CESimpleSettings (class in msticpy.config.ce_simple_settings)
char_ord_score() (in module msticpy.analysis.eventcluster)
char_ord_score_df() (in module msticpy.analysis.eventcluster)
check_and_install_missing_packages() (in module msticpy.common.utility.package)
check_cli_credentials() (in module msticpy.auth.azure_auth_core)
check_df_columns() (in module msticpy.vis.timeline_common)
check_kwarg() (in module msticpy.common.utility.types)
check_kwargs() (in module msticpy.common.utility.types)
check_masking() (in module msticpy.data.data_obfus)
check_obfuscation() (in module msticpy.data.data_obfus)
check_py_version() (in module msticpy.common.utility.package)
check_version() (in module msticpy.common.check_version)
checked_kwargs() (in module msticpy.common.utility.types)
City (msticpy.datamodel.entities.geo_location.GeoLocation attribute)
clear() (msticpy.analysis.anomalous_sequence.utils.data_structures.StateMatrix method)
(msticpy.common.provider_settings.ProviderArgs method)
clear_keyring() (in module msticpy.common.provider_settings)
clear_keyring_secrets() (msticpy.auth.secret_settings.SecretsClient method)
clear_status() (msticpy.config.ce_azure.CEAzure method)
(msticpy.config.ce_simple_settings.CESimpleSettings method)
(msticpy.config.comp_edit.CEItemsBase method)
(msticpy.config.comp_edit.CompEditFrame method)
(msticpy.config.comp_edit.CompEditItems method)
(msticpy.config.comp_edit.CompEditSimple method)
(msticpy.config.comp_edit.CompEditStatusMixin method)
CLI_NEEDS_SIGN_IN (msticpy.auth.azure_auth_core.AzureCliStatus attribute)
CLI_NOT_INSTALLED (msticpy.auth.azure_auth_core.AzureCliStatus attribute)
CLI_OK (msticpy.auth.azure_auth_core.AzureCliStatus attribute)
CLI_TOKEN_EXPIRED (msticpy.auth.azure_auth_core.AzureCliStatus attribute)
CLI_UNKNOWN_ERROR (msticpy.auth.azure_auth_core.AzureCliStatus attribute)
CLIENT_ID (msticpy.auth.keyvault_settings.KeyVaultSettings attribute)
cloud (msticpy.auth.keyvault_settings.KeyVaultSettings property)
cloud_names (msticpy.auth.cloud_mappings.AzureCloudConfig property)
CloudApplication (class in msticpy.datamodel.entities.cloud_application)
CloudLogonSession (class in msticpy.datamodel.entities.cloud_logon_session)
cluster_auditd_processes() (in module msticpy.analysis.cluster_auditd)
ClusterGroup (msticpy.datamodel.entities.mail_cluster.MailCluster attribute)
ClusterQueryEndTime (msticpy.datamodel.entities.mail_cluster.MailCluster attribute)
ClusterQueryStartTime (msticpy.datamodel.entities.mail_cluster.MailCluster attribute)
ClusterSourceIdentifier (msticpy.datamodel.entities.mail_cluster.MailCluster attribute)
ClusterSourceType (msticpy.datamodel.entities.mail_cluster.MailCluster attribute)
Cmd (class in msticpy.analysis.anomalous_sequence.utils.data_structures)
cmd_line (msticpy.transform.proc_tree_schema.ProcSchema attribute)
cmd_speed() (in module msticpy.transform.cmd_line)
cmds_only (msticpy.analysis.anomalous_sequence.model.SessionType attribute)
cmds_params_only (msticpy.analysis.anomalous_sequence.model.SessionType attribute)
cmds_params_values (msticpy.analysis.anomalous_sequence.model.SessionType attribute)
code_connect_str (msticpy.common.wsconfig.WorkspaceConfig property)
collapse_dicts() (in module msticpy.common.utility.types)
ColNames (class in msticpy.transform.proc_tree_schema)
color (msticpy.vis.timeline.PlotParams attribute)
(msticpy.vis.timeline_duration.PlotParams attribute)
(msticpy.vis.timeline_values.PlotParams attribute)
column_map (msticpy.transform.proc_tree_schema.ProcSchema property)
columns (msticpy.transform.proc_tree_schema.ProcSchema property)
CommandLine (msticpy.datamodel.entities.process.Process attribute)
comment (msticpy.init.pivot_core.pivot_pipeline.PipelineExecStep attribute)
(msticpy.init.pivot_core.pivot_pipeline.PipelineStep attribute)
comp_regex (msticpy.transform.iocextract.IoCPattern attribute)
CompEditDisplayMixin (class in msticpy.config.comp_edit)
CompEditFrame (class in msticpy.config.comp_edit)
CompEditHelp (class in msticpy.config.comp_edit)
CompEditItemButtons (class in msticpy.config.comp_edit)
CompEditItems (class in msticpy.config.comp_edit)
CompEditSimple (class in msticpy.config.comp_edit)
CompEditStatusMixin (class in msticpy.config.comp_edit)
CompEditTabs (class in msticpy.config.comp_edit)
CompEditUtilsMixin (class in msticpy.config.comp_edit)
CompromisedEntity (msticpy.datamodel.entities.alert.Alert attribute)
(msticpy.datamodel.soc.sentinel_alert.SentinelAlert attribute)
compute_cmds_probs() (in module msticpy.analysis.anomalous_sequence.utils.probabilities)
compute_counts() (in module msticpy.analysis.anomalous_sequence.utils.cmds_only)
(in module msticpy.analysis.anomalous_sequence.utils.cmds_params_only)
(in module msticpy.analysis.anomalous_sequence.utils.cmds_params_values)
compute_geomean_lik_of_sessions() (msticpy.analysis.anomalous_sequence.model.Model method)
compute_likelihood_window() (in module msticpy.analysis.anomalous_sequence.utils.cmds_only)
(in module msticpy.analysis.anomalous_sequence.utils.cmds_params_only)
(in module msticpy.analysis.anomalous_sequence.utils.cmds_params_values)
compute_likelihood_windows_in_session() (in module msticpy.analysis.anomalous_sequence.utils.cmds_only)
(in module msticpy.analysis.anomalous_sequence.utils.cmds_params_only)
(in module msticpy.analysis.anomalous_sequence.utils.cmds_params_values)
compute_likelihoods_of_sessions() (msticpy.analysis.anomalous_sequence.model.Model method)
compute_params_probs() (in module msticpy.analysis.anomalous_sequence.utils.probabilities)
compute_prob_setofparams_given_cmd() (in module msticpy.analysis.anomalous_sequence.utils.cmds_params_only)
(in module msticpy.analysis.anomalous_sequence.utils.cmds_params_values)
compute_rarest_windows() (msticpy.analysis.anomalous_sequence.model.Model method)
compute_scores() (msticpy.analysis.anomalous_sequence.model.Model method)
compute_setof_params_cond_cmd() (msticpy.analysis.anomalous_sequence.model.Model method)
compute_values_probs() (in module msticpy.analysis.anomalous_sequence.utils.probabilities)
computer (msticpy.datamodel.entities.host.Host property)
(msticpy.nbtools.security_alert.SecurityAlert property)
(msticpy.nbtools.security_base.SecurityBase property)
(msticpy.nbtools.security_event.SecurityEvent property)
CONF_RES_GROUP_KEY (msticpy.common.wsconfig.WorkspaceConfig attribute)
CONF_SUB_ID_KEY (msticpy.common.wsconfig.WorkspaceConfig attribute)
CONF_TENANT_ID_KEY (msticpy.common.wsconfig.WorkspaceConfig attribute)
CONF_WS_ID_KEY (msticpy.common.wsconfig.WorkspaceConfig attribute)
CONF_WS_NAME_KEY (msticpy.common.wsconfig.WorkspaceConfig attribute)
Confidence (msticpy.datamodel.entities.threat_intelligence.Threatintelligence attribute)
config_loaded (msticpy.common.wsconfig.WorkspaceConfig property)
CONFIG_NAME (msticpy.data.drivers.cybereason_driver.CybereasonDriver attribute)
(msticpy.data.drivers.mdatp_driver.MDATPDriver attribute)
(msticpy.data.drivers.odata_driver.OData attribute)
(msticpy.data.drivers.security_graph_driver.SecurityGraphDriver attribute)
connect() (msticpy.data.core.data_providers.QueryProvider method)
(msticpy.data.drivers.cybereason_driver.CybereasonDriver method)
(msticpy.data.drivers.driver_base.DriverBase method)
(msticpy.data.drivers.elastic_driver.ElasticDriver method)
(msticpy.data.drivers.kql_driver.KqlDriver method)
(msticpy.data.drivers.kusto_driver.KustoDriver method)
(msticpy.data.drivers.local_data_driver.LocalDataDriver method)
(msticpy.data.drivers.mdatp_driver.MDATPDriver method)
(msticpy.data.drivers.mordor_driver.MordorDriver method)
(msticpy.data.drivers.odata_driver.OData method)
(msticpy.data.drivers.resource_graph_driver.ResourceGraphDriver method)
(msticpy.data.drivers.security_graph_driver.SecurityGraphDriver method)
(msticpy.data.drivers.splunk_driver.SplunkDriver method)
(msticpy.data.drivers.sumologic_driver.SumologicDriver method)
(msticpy.data.storage.azure_blob_storage.AzureBlobStorage method)
(msticpy.data.uploaders.splunk_uploader.SplunkUploader method)
connected (msticpy.data.core.data_providers.QueryProvider property)
(msticpy.data.drivers.cybereason_driver.CybereasonDriver property)
(msticpy.data.drivers.driver_base.DriverBase property)
(msticpy.data.drivers.elastic_driver.ElasticDriver property)
(msticpy.data.drivers.kql_driver.KqlDriver property)
(msticpy.data.drivers.kusto_driver.KustoDriver property)
(msticpy.data.drivers.local_data_driver.LocalDataDriver property)
(msticpy.data.drivers.mdatp_driver.MDATPDriver property)
(msticpy.data.drivers.mordor_driver.MordorDriver property)
(msticpy.data.drivers.odata_driver.OData property)
(msticpy.data.drivers.resource_graph_driver.ResourceGraphDriver property)
(msticpy.data.drivers.security_graph_driver.SecurityGraphDriver property)
(msticpy.data.drivers.splunk_driver.SplunkDriver property)
(msticpy.data.drivers.sumologic_driver.SumologicDriver property)
connection_string (msticpy.data.core.data_providers.QueryProvider property)
containers() (msticpy.data.storage.azure_blob_storage.AzureBlobStorage method)
ContextObject (class in msticpy.datamodel.entities.entity)
contributors (msticpy.data.drivers.mordor_driver.MordorEntry attribute)
convert_mde_schema_to_internal() (in module msticpy.transform.proc_tree_build_mde)
coordinates (msticpy.datamodel.entities.geo_location.GeoLocation property)
copy() (msticpy.analysis.anomalous_sequence.utils.data_structures.StateMatrix method)
(msticpy.common.provider_settings.ProviderArgs method)
Count (msticpy.datamodel.entities.alert.Alert attribute)
(msticpy.datamodel.soc.sentinel_alert.SentinelAlert attribute)
count() (msticpy.auth.azure_auth_core.AzCredentials method)
(msticpy.config.mp_config_control.ValidationResult method)
(msticpy.data.core.data_providers.QueryParam method)
(msticpy.init.pivot_core.pivot_pipeline.PipelineExecStep method)
(msticpy.init.pivot_init.pivot_data_queries.ParamAttrs method)
(msticpy.init.pivot_init.pivot_data_queries.PivQuerySettings method)
(msticpy.init.pivot_init.pivot_data_queries.QueryParams method)
(msticpy.transform.base64unpack.BinaryRecord method)
(msticpy.transform.iocextract.IoCPattern method)
CountByDeliveryStatus (msticpy.datamodel.entities.mail_cluster.MailCluster attribute)
CountByProtectionStatus (msticpy.datamodel.entities.mail_cluster.MailCluster attribute)
CountByThreatType (msticpy.datamodel.entities.mail_cluster.MailCluster attribute)
CountryCode (msticpy.datamodel.entities.geo_location.GeoLocation attribute)
CountryName (msticpy.datamodel.entities.geo_location.GeoLocation attribute)
crc32_hash() (in module msticpy.analysis.eventcluster)
crc32_hash_df() (in module msticpy.analysis.eventcluster)
create() (msticpy.datamodel.entities.account.Account class method)
(msticpy.datamodel.entities.alert.Alert class method)
(msticpy.datamodel.entities.azure_resource.AzureResource class method)
(msticpy.datamodel.entities.cloud_application.CloudApplication class method)
(msticpy.datamodel.entities.cloud_logon_session.CloudLogonSession class method)
(msticpy.datamodel.entities.dns.Dns class method)
(msticpy.datamodel.entities.entity.Entity class method)
(msticpy.datamodel.entities.file.File class method)
(msticpy.datamodel.entities.file_hash.FileHash class method)
(msticpy.datamodel.entities.geo_location.GeoLocation class method)
(msticpy.datamodel.entities.host.Host class method)
(msticpy.datamodel.entities.host_logon_session.HostLogonSession class method)
(msticpy.datamodel.entities.iot_device.IoTDevice class method)
(msticpy.datamodel.entities.ip_address.IpAddress class method)
(msticpy.datamodel.entities.mail_cluster.MailCluster class method)
(msticpy.datamodel.entities.mail_message.MailMessage class method)
(msticpy.datamodel.entities.mailbox.Mailbox class method)
(msticpy.datamodel.entities.malware.Malware class method)
(msticpy.datamodel.entities.network_connection.NetworkConnection class method)
(msticpy.datamodel.entities.process.Process class method)
(msticpy.datamodel.entities.registry_key.RegistryKey class method)
(msticpy.datamodel.entities.registry_value.RegistryValue class method)
(msticpy.datamodel.entities.security_group.SecurityGroup class method)
(msticpy.datamodel.entities.submission_mail.SubmissionMail class method)
(msticpy.datamodel.entities.threat_intelligence.Threatintelligence class method)
(msticpy.datamodel.entities.unknown_entity.UnknownEntity class method)
(msticpy.datamodel.entities.url.Url class method)
(msticpy.datamodel.soc.incident.Incident class method)
(msticpy.datamodel.soc.sentinel_alert.SentinelAlert class method)
create_alert_graph() (in module msticpy.nbtools.security_alert_graph)
create_cloud_ep_dict() (in module msticpy.auth.cloud_mappings)
create_cloud_suf_dict() (in module msticpy.auth.cloud_mappings)
create_container() (msticpy.data.storage.azure_blob_storage.AzureBlobStorage method)
create_data_grouping() (in module msticpy.vis.timeline_common)
create_doc_string() (msticpy.data.core.query_source.QuerySource method)
create_param (msticpy.data.core.data_providers.QueryProvider attribute)
create_pivot_func() (in module msticpy.init.pivot_core.pivot_register)
create_query() (msticpy.data.core.query_source.QuerySource method)
create_range_tool() (in module msticpy.vis.timeline_common)
create_session_col() (in module msticpy.analysis.anomalous_sequence.sessionize)
create_shortcut (msticpy.init.pivot_core.pivot_register.PivotRegistration attribute)
create_tool_tips() (in module msticpy.vis.timeline_common)
create_vault() (msticpy.auth.keyvault_client.BHKeyVaultMgmtClient method)
creation_date (msticpy.data.drivers.mordor_driver.MordorEntry attribute)
CreationTimeUtc (msticpy.datamodel.entities.process.Process attribute)
CredentialWrapper (class in msticpy.auth.cred_wrapper)
current (msticpy.init.pivot_init.pivot_data_queries.PivotQueryFunctions attribute)
current() (msticpy.common.utility.types.SingletonArgsClass method)
(msticpy.common.utility.types.SingletonClass method)
current_config_path() (in module msticpy.common.pkg_config)
Cybereason (msticpy.data.core.query_defns.DataEnvironment attribute)
(msticpy.data.core.query_defns.DataFamily attribute)
CybereasonDriver (class in msticpy.data.drivers.cybereason_driver)
D
data (msticpy.analysis.observationlist.Observation attribute)
data_environment (msticpy.nbtools.security_alert.SecurityAlert property)
(msticpy.nbtools.security_base.SecurityBase property)
(msticpy.nbtools.security_event.SecurityEvent property)
data_families (msticpy.data.core.query_source.QuerySource property)
(msticpy.data.core.query_store.QueryStore attribute)
data_family (msticpy.nbtools.security_alert.SecurityAlert property)
(msticpy.nbtools.security_base.SecurityBase property)
(msticpy.nbtools.security_event.SecurityEvent property)
data_type (msticpy.analysis.observationlist.Observation attribute)
(msticpy.data.core.data_providers.QueryParam attribute)
DataEnvironment (class in msticpy.data.core.query_defns)
DataFamily (class in msticpy.data.core.query_defns)
datasets (msticpy.data.drivers.mordor_driver.MordorEntry attribute)
DATETIME (msticpy.data.core.query_defns.Formatters attribute)
DAY (msticpy.nbwidgets.core.TimeUnit attribute)
dbcluster_events() (in module msticpy.analysis.eventcluster)
decoded_string (msticpy.transform.base64unpack.BinaryRecord attribute)
DEF_HELP_URI (msticpy.common.exceptions.MsticpyAzureConfigError attribute)
(msticpy.common.exceptions.MsticpyAzureConnectionError attribute)
(msticpy.common.exceptions.MsticpyConnectionError attribute)
(msticpy.common.exceptions.MsticpyDataQueryError attribute)
(msticpy.common.exceptions.MsticpyImportExtraError attribute)
(msticpy.common.exceptions.MsticpyKeyVaultConfigError attribute)
(msticpy.common.exceptions.MsticpyKeyVaultMissingSecretError attribute)
(msticpy.common.exceptions.MsticpyKqlConnectionError attribute)
(msticpy.common.exceptions.MsticpyMissingDependencyError attribute)
(msticpy.common.exceptions.MsticpyNoDataSourceError attribute)
(msticpy.common.exceptions.MsticpyNotConnectedError attribute)
(msticpy.common.exceptions.MsticpyParameterError attribute)
(msticpy.common.exceptions.MsticpyUserConfigError attribute)
(msticpy.common.exceptions.MsticpyUserError attribute)
(msticpy.transform.proc_tree_schema.ProcessTreeSchemaException attribute)
defang_ioc() (in module msticpy.common.utility.format)
default (msticpy.data.core.data_providers.QueryParam attribute)
Default (msticpy.datamodel.entities.entity_enums.ElevationToken attribute)
default_auth_methods() (in module msticpy.auth.cloud_mappings)
default_before_after() (in module msticpy.nbwidgets.core)
default_max_buffer() (in module msticpy.nbwidgets.core)
default_params (msticpy.data.core.query_source.QuerySource property)
del_control() (msticpy.config.mp_config_control.MpConfigControls method)
del_pivot_shortcut() (msticpy.datamodel.entities.account.Account class method)
(msticpy.datamodel.entities.alert.Alert class method)
(msticpy.datamodel.entities.azure_resource.AzureResource class method)
(msticpy.datamodel.entities.cloud_application.CloudApplication class method)
(msticpy.datamodel.entities.cloud_logon_session.CloudLogonSession class method)
(msticpy.datamodel.entities.dns.Dns class method)
(msticpy.datamodel.entities.entity.Entity class method)
(msticpy.datamodel.entities.file.File class method)
(msticpy.datamodel.entities.file_hash.FileHash class method)
(msticpy.datamodel.entities.geo_location.GeoLocation class method)
(msticpy.datamodel.entities.host.Host class method)
(msticpy.datamodel.entities.host_logon_session.HostLogonSession class method)
(msticpy.datamodel.entities.iot_device.IoTDevice class method)
(msticpy.datamodel.entities.ip_address.IpAddress class method)
(msticpy.datamodel.entities.mail_cluster.MailCluster class method)
(msticpy.datamodel.entities.mail_message.MailMessage class method)
(msticpy.datamodel.entities.mailbox.Mailbox class method)
(msticpy.datamodel.entities.malware.Malware class method)
(msticpy.datamodel.entities.network_connection.NetworkConnection class method)
(msticpy.datamodel.entities.process.Process class method)
(msticpy.datamodel.entities.registry_key.RegistryKey class method)
(msticpy.datamodel.entities.registry_value.RegistryValue class method)
(msticpy.datamodel.entities.security_group.SecurityGroup class method)
(msticpy.datamodel.entities.submission_mail.SubmissionMail class method)
(msticpy.datamodel.entities.threat_intelligence.Threatintelligence class method)
(msticpy.datamodel.entities.unknown_entity.UnknownEntity class method)
(msticpy.datamodel.entities.url.Url class method)
(msticpy.datamodel.soc.incident.Incident class method)
(msticpy.datamodel.soc.sentinel_alert.SentinelAlert class method)
del_value() (msticpy.config.mp_config_control.MpConfigControls method)
delete_blob() (msticpy.data.storage.azure_blob_storage.AzureBlobStorage method)
delete_secret() (msticpy.auth.keyring_client.KeyringClient method)
delim_count() (in module msticpy.analysis.eventcluster)
delim_count_df() (in module msticpy.analysis.eventcluster)
delim_hash() (in module msticpy.analysis.eventcluster)
DeliveryAction (msticpy.datamodel.entities.mail_message.MailMessage attribute)
DeliveryLocation (msticpy.datamodel.entities.mail_message.MailMessage attribute)
description (msticpy.analysis.observationlist.Observation attribute)
(msticpy.common.provider_settings.ProviderSettings attribute)
(msticpy.data.core.data_providers.QueryParam attribute)
(msticpy.data.core.query_source.QuerySource property)
(msticpy.data.drivers.mordor_driver.MordorEntry attribute)
description_str (msticpy.datamodel.entities.account.Account property)
(msticpy.datamodel.entities.alert.Alert property)
(msticpy.datamodel.entities.azure_resource.AzureResource property)
(msticpy.datamodel.entities.cloud_application.CloudApplication property)
(msticpy.datamodel.entities.cloud_logon_session.CloudLogonSession property)
(msticpy.datamodel.entities.dns.Dns property)
(msticpy.datamodel.entities.entity.Entity property)
(msticpy.datamodel.entities.file.File property)
(msticpy.datamodel.entities.file_hash.FileHash property)
(msticpy.datamodel.entities.geo_location.GeoLocation property)
(msticpy.datamodel.entities.host.Host property)
(msticpy.datamodel.entities.host_logon_session.HostLogonSession property)
(msticpy.datamodel.entities.iot_device.IoTDevice property)
(msticpy.datamodel.entities.ip_address.IpAddress property)
(msticpy.datamodel.entities.mail_cluster.MailCluster property)
(msticpy.datamodel.entities.mail_message.MailMessage property)
(msticpy.datamodel.entities.mailbox.Mailbox property)
(msticpy.datamodel.entities.malware.Malware property)
(msticpy.datamodel.entities.network_connection.NetworkConnection property)
(msticpy.datamodel.entities.process.Process property)
(msticpy.datamodel.entities.registry_key.RegistryKey property)
(msticpy.datamodel.entities.registry_value.RegistryValue property)
(msticpy.datamodel.entities.security_group.SecurityGroup property)
(msticpy.datamodel.entities.submission_mail.SubmissionMail property)
(msticpy.datamodel.entities.threat_intelligence.Threatintelligence property)
(msticpy.datamodel.entities.unknown_entity.UnknownEntity property)
(msticpy.datamodel.entities.url.Url property)
(msticpy.datamodel.soc.incident.Incident property)
(msticpy.datamodel.soc.sentinel_alert.SentinelAlert property)
DestinationAddress (msticpy.datamodel.entities.network_connection.NetworkConnection attribute)
DestinationPort (msticpy.datamodel.entities.network_connection.NetworkConnection attribute)
DetonationVerdict (msticpy.datamodel.entities.url.Url attribute)
DeviceId (msticpy.datamodel.entities.iot_device.IoTDevice attribute)
DeviceName (msticpy.datamodel.entities.iot_device.IoTDevice attribute)
DeviceType (msticpy.datamodel.entities.iot_device.IoTDevice attribute)
df_has_data() (in module msticpy.common.data_utils)
df_to_networkx() (in module msticpy.transform.network)
dict_to_txt() (in module msticpy.config.ce_common)
direct_func_entities (msticpy.init.pivot_init.pivot_data_queries.PivQuerySettings attribute)
Directory (msticpy.datamodel.entities.file.File attribute)
display() (msticpy.analysis.observationlist.Observation method)
(msticpy.init.pivot_core.pivot_browser.PivotBrowser method)
(msticpy.init.pivot_core.pivot_pd_accessor.PivotAccessor method)
(msticpy.nbwidgets.core.IPyDisplayMixin method)
(msticpy.nbwidgets.get_environment_key.GetEnvironmentKey method)
(msticpy.nbwidgets.get_text.GetText method)
(msticpy.nbwidgets.lookback.Lookback method)
(msticpy.nbwidgets.option_buttons.OptionButtons method)
(msticpy.nbwidgets.progress.Progress method)
(msticpy.nbwidgets.query_time.QueryTime method)
(msticpy.nbwidgets.select_alert.AlertSelector method)
(msticpy.nbwidgets.select_alert.SelectAlert method)
(msticpy.nbwidgets.select_item.SelectItem method)
(msticpy.nbwidgets.select_item.SelectString method)
(msticpy.nbwidgets.select_subset.SelectSubset method)
display_alert() (in module msticpy.vis.nbdisplay)
display_async() (msticpy.nbwidgets.option_buttons.OptionButtons method)
display_exception() (msticpy.common.exceptions.MsticpyAzureConfigError method)
(msticpy.common.exceptions.MsticpyAzureConnectionError method)
(msticpy.common.exceptions.MsticpyConnectionError method)
(msticpy.common.exceptions.MsticpyDataQueryError method)
(msticpy.common.exceptions.MsticpyImportExtraError method)
(msticpy.common.exceptions.MsticpyKeyVaultConfigError method)
(msticpy.common.exceptions.MsticpyKeyVaultMissingSecretError method)
(msticpy.common.exceptions.MsticpyKqlConnectionError method)
(msticpy.common.exceptions.MsticpyMissingDependencyError method)
(msticpy.common.exceptions.MsticpyNoDataSourceError method)
(msticpy.common.exceptions.MsticpyNotConnectedError method)
(msticpy.common.exceptions.MsticpyParameterError method)
(msticpy.common.exceptions.MsticpyUserConfigError method)
(msticpy.common.exceptions.MsticpyUserError method)
(msticpy.transform.proc_tree_schema.ProcessTreeSchemaException method)
display_logon_data() (in module msticpy.vis.nbdisplay)
display_observations() (msticpy.analysis.observationlist.Observations method)
display_timeline() (in module msticpy.vis.timeline)
display_timeline_duration() (in module msticpy.vis.timeline_duration)
display_timeline_values() (in module msticpy.vis.timeline_values)
DisplayName (msticpy.datamodel.entities.account.Account attribute)
(msticpy.datamodel.entities.mailbox.Mailbox attribute)
(msticpy.datamodel.soc.sentinel_alert.SentinelAlert attribute)
DistinguishedName (msticpy.datamodel.entities.security_group.SecurityGroup attribute)
Dns (class in msticpy.datamodel.entities.dns)
dns (msticpy.transform.iocextract.IoCType attribute)
DNS_DF_REGEX (msticpy.transform.iocextract.IoCExtract attribute)
DNS_REGEX (msticpy.transform.iocextract.IoCExtract attribute)
DnsDomain (msticpy.datamodel.entities.host.Host attribute)
DnsServerIp (msticpy.datamodel.entities.dns.Dns attribute)
DomainName (msticpy.datamodel.entities.dns.Dns attribute)
download_mdr_file() (in module msticpy.data.drivers.mordor_driver)
draw_alert_entity_graph() (in module msticpy.vis.nbdisplay)
driver_queries (msticpy.data.drivers.cybereason_driver.CybereasonDriver property)
(msticpy.data.drivers.driver_base.DriverBase property)
(msticpy.data.drivers.elastic_driver.ElasticDriver property)
(msticpy.data.drivers.kql_driver.KqlDriver property)
(msticpy.data.drivers.kusto_driver.KustoDriver property)
(msticpy.data.drivers.local_data_driver.LocalDataDriver property)
(msticpy.data.drivers.mdatp_driver.MDATPDriver property)
(msticpy.data.drivers.mordor_driver.MordorDriver property)
(msticpy.data.drivers.odata_driver.OData property)
(msticpy.data.drivers.resource_graph_driver.ResourceGraphDriver property)
(msticpy.data.drivers.security_graph_driver.SecurityGraphDriver property)
(msticpy.data.drivers.splunk_driver.SplunkDriver property)
(msticpy.data.drivers.sumologic_driver.SumologicDriver property)
DriverBase (class in msticpy.data.drivers.driver_base)
E
Edge (class in msticpy.datamodel.entities.entity_graph)
edges (msticpy.datamodel.entities.file.File attribute)
(msticpy.datamodel.entities.file_hash.FileHash attribute)
(msticpy.datamodel.entities.geo_location.GeoLocation attribute)
(msticpy.datamodel.entities.host.Host attribute)
(msticpy.datamodel.entities.host_logon_session.HostLogonSession attribute)
(msticpy.datamodel.entities.iot_device.IoTDevice attribute)
(msticpy.datamodel.entities.ip_address.IpAddress attribute)
(msticpy.datamodel.entities.mail_cluster.MailCluster attribute)
(msticpy.datamodel.entities.mail_message.MailMessage attribute)
(msticpy.datamodel.entities.mailbox.Mailbox attribute)
(msticpy.datamodel.entities.malware.Malware attribute)
(msticpy.datamodel.entities.network_connection.NetworkConnection attribute)
(msticpy.datamodel.entities.process.Process attribute)
(msticpy.datamodel.entities.registry_key.RegistryKey attribute)
(msticpy.datamodel.entities.registry_value.RegistryValue attribute)
(msticpy.datamodel.entities.security_group.SecurityGroup attribute)
(msticpy.datamodel.entities.submission_mail.SubmissionMail attribute)
(msticpy.datamodel.entities.threat_intelligence.Threatintelligence attribute)
(msticpy.datamodel.entities.unknown_entity.UnknownEntity attribute)
(msticpy.datamodel.entities.url.Url attribute)
(msticpy.datamodel.soc.incident.Incident attribute)
(msticpy.datamodel.soc.sentinel_alert.SentinelAlert attribute)
EffectiveLogonId (msticpy.transform.proc_tree_schema.ColNames attribute)
EffectiveLogonId_par (msticpy.transform.proc_tree_schema.ColNames attribute)
Elastic (msticpy.data.core.query_defns.DataEnvironment attribute)
(msticpy.data.core.query_defns.DataFamily attribute)
ElasticDriver (class in msticpy.data.drivers.elastic_driver)
ElevationToken (class in msticpy.datamodel.entities.entity_enums)
(msticpy.datamodel.entities.process.Process attribute)
email (msticpy.transform.iocextract.IoCType attribute)
EMAIL_DF_REGEX (msticpy.transform.iocextract.IoCExtract attribute)
EMAIL_REGEX (msticpy.transform.iocextract.IoCExtract attribute)
EMAIL_USER_REGEX (msticpy.transform.iocextract.IoCExtract attribute)
encoding_type (msticpy.transform.base64unpack.BinaryRecord attribute)
end (msticpy.common.timespan.TimeSpan property)
(msticpy.nbwidgets.query_time.QueryTime property)
endpoint (msticpy.auth.cloud_mappings.AzureCloudConfig property)
endpoints (msticpy.auth.cloud_mappings.AzureCloudConfig property)
EndTimeUtc (msticpy.datamodel.entities.alert.Alert attribute)
(msticpy.datamodel.entities.host_logon_session.HostLogonSession attribute)
(msticpy.datamodel.soc.sentinel_alert.SentinelAlert attribute)
ensure_df_datetimes() (in module msticpy.common.data_utils)
Entities (msticpy.datamodel.soc.sentinel_alert.SentinelAlert attribute)
entities (msticpy.nbtools.security_alert.SecurityAlert property)
(msticpy.nbtools.security_base.SecurityBase property)
(msticpy.nbtools.security_event.SecurityEvent property)
Entity (class in msticpy.datamodel.entities.entity)
entity (msticpy.init.pivot_core.pivot_pipeline.PipelineStep attribute)
entity_container_name (msticpy.init.pivot_core.pivot_register.PivotRegistration attribute)
entity_map (msticpy.init.pivot_core.pivot_register.PivotRegistration attribute)
ENTITY_NAME_MAP (msticpy.datamodel.entities.account.Account attribute)
(msticpy.datamodel.entities.alert.Alert attribute)
(msticpy.datamodel.entities.azure_resource.AzureResource attribute)
(msticpy.datamodel.entities.cloud_application.CloudApplication attribute)
(msticpy.datamodel.entities.cloud_logon_session.CloudLogonSession attribute)
(msticpy.datamodel.entities.dns.Dns attribute)
(msticpy.datamodel.entities.entity.Entity attribute)
(msticpy.datamodel.entities.file.File attribute)
(msticpy.datamodel.entities.file_hash.FileHash attribute)
(msticpy.datamodel.entities.geo_location.GeoLocation attribute)
(msticpy.datamodel.entities.host.Host attribute)
(msticpy.datamodel.entities.host_logon_session.HostLogonSession attribute)
(msticpy.datamodel.entities.iot_device.IoTDevice attribute)
(msticpy.datamodel.entities.ip_address.IpAddress attribute)
(msticpy.datamodel.entities.mail_cluster.MailCluster attribute)
(msticpy.datamodel.entities.mail_message.MailMessage attribute)
(msticpy.datamodel.entities.mailbox.Mailbox attribute)
(msticpy.datamodel.entities.malware.Malware attribute)
(msticpy.datamodel.entities.network_connection.NetworkConnection attribute)
(msticpy.datamodel.entities.process.Process attribute)
(msticpy.datamodel.entities.registry_key.RegistryKey attribute)
(msticpy.datamodel.entities.registry_value.RegistryValue attribute)
(msticpy.datamodel.entities.security_group.SecurityGroup attribute)
(msticpy.datamodel.entities.submission_mail.SubmissionMail attribute)
(msticpy.datamodel.entities.threat_intelligence.Threatintelligence attribute)
(msticpy.datamodel.entities.unknown_entity.UnknownEntity attribute)
(msticpy.datamodel.entities.url.Url attribute)
(msticpy.datamodel.soc.incident.Incident attribute)
(msticpy.datamodel.soc.sentinel_alert.SentinelAlert attribute)
EntityGraph (class in msticpy.vis.entity_graph_tools)
enum_parse() (in module msticpy.common.utility.types)
environment (msticpy.data.core.query_store.QueryStore attribute)
escape_windows_path() (in module msticpy.common.utility.format)
event_filter (msticpy.transform.proc_tree_schema.ProcSchema property)
event_id_column (msticpy.transform.proc_tree_schema.ProcSchema attribute)
event_id_identifier (msticpy.transform.proc_tree_schema.ProcSchema attribute)
event_type_col (msticpy.transform.proc_tree_schema.ProcSchema property)
exec_query() (msticpy.data.core.data_providers.QueryProvider method)
exec_remaining_cells() (in module msticpy.vis.nbdisplay)
export() (in module msticpy.common.utility.types)
ExternalDirectoryObjectId (msticpy.datamodel.entities.mailbox.Mailbox attribute)
extract() (msticpy.transform.base64unpack.B64ExtractAccessor method)
(msticpy.transform.iocextract.IoCExtract method)
(msticpy.transform.iocextract.IoCExtractAccessor method)
extract_df() (msticpy.transform.iocextract.IoCExtract method)
extract_events_to_df() (in module msticpy.transform.auditdextract)
extract_process_tree() (in module msticpy.transform.proc_tree_build_mde)
(in module msticpy.transform.proc_tree_build_winlx)
extract_query_params() (in module msticpy.data.core.param_extractor)
F
fallback_devicecode_creds() (in module msticpy.auth.azure_auth)
family (msticpy.init.pivot_init.pivot_data_queries.ParamAttrs attribute)
field_list() (msticpy.vis.timeline.PlotParams class method)
(msticpy.vis.timeline_duration.PlotParams class method)
(msticpy.vis.timeline_values.PlotParams class method)
File (class in msticpy.datamodel.entities.file)
(msticpy.datamodel.entities.malware.Malware attribute)
file_hash (msticpy.datamodel.entities.file.File property)
(msticpy.transform.iocextract.IoCType attribute)
file_hash_type() (msticpy.transform.iocextract.IoCExtract static method)
file_hashes (msticpy.transform.base64unpack.BinaryRecord attribute)
file_name (msticpy.transform.base64unpack.BinaryRecord attribute)
file_type (msticpy.transform.base64unpack.BinaryRecord attribute)
FileHash (class in msticpy.datamodel.entities.file_hash)
FileHashes (msticpy.datamodel.entities.file.File attribute)
files (msticpy.data.drivers.mordor_driver.MordorEntry attribute)
Files (msticpy.datamodel.entities.mail_message.MailMessage attribute)
(msticpy.datamodel.entities.malware.Malware attribute)
filter (msticpy.analysis.observationlist.Observation attribute)
filter() (msticpy.init.pivot_core.pivot_pd_accessor.PivotAccessor method)
filter_cols() (msticpy.init.pivot_core.pivot_pd_accessor.PivotAccessor method)
filtered_data (msticpy.analysis.observationlist.Observation property)
find_entity() (in module msticpy.datamodel.entities)
find_query() (msticpy.data.core.query_store.QueryStore method)
find_yaml_files() (in module msticpy.data.core.data_query_reader)
fmt_title (msticpy.vis.timeline.PlotParams property)
format_alert() (in module msticpy.vis.nbdisplay)
format_kv_name() (msticpy.auth.secret_settings.SecretsClient static method)
format_logon() (in module msticpy.vis.nbdisplay)
format_powershell() (in module msticpy.analysis.code_cleanup)
Formatters (class in msticpy.data.core.query_defns)
formatters (msticpy.data.drivers.security_graph_driver.SecurityGraphDriver attribute)
fqdn (msticpy.datamodel.entities.host.Host property)
from_settings() (msticpy.common.wsconfig.WorkspaceConfig class method)
from_yaml() (msticpy.init.pivot_core.pivot_pipeline.Pipeline class method)
fromkeys() (msticpy.analysis.anomalous_sequence.utils.data_structures.StateMatrix method)
(msticpy.common.provider_settings.ProviderArgs class method)
Full (msticpy.datamodel.entities.entity_enums.ElevationToken attribute)
full_required (msticpy.init.pivot_init.pivot_data_queries.QueryParams attribute)
FullName (msticpy.datamodel.entities.host.Host property)
FullPath (msticpy.datamodel.entities.file.File attribute)
func_df_col_param_name (msticpy.init.pivot_core.pivot_register.PivotRegistration attribute)
func_df_param_name (msticpy.init.pivot_core.pivot_register.PivotRegistration attribute)
func_input_value_arg (msticpy.init.pivot_core.pivot_register.PivotRegistration attribute)
func_new_name (msticpy.init.pivot_core.pivot_register.PivotRegistration attribute)
func_out_column_name (msticpy.init.pivot_core.pivot_register.PivotRegistration attribute)
func_static_params (msticpy.init.pivot_core.pivot_register.PivotRegistration attribute)
function (msticpy.init.pivot_core.pivot_pipeline.PipelineStep attribute)
G
generate_process_tree() (in module msticpy.transform.auditdextract)
GeoLocation (class in msticpy.datamodel.entities.geo_location)
get() (msticpy.analysis.anomalous_sequence.utils.data_structures.StateMatrix method)
(msticpy.auth.keyvault_settings.KeyVaultSettings method)
(msticpy.common.provider_settings.ProviderArgs method)
(msticpy.common.wsconfig.WorkspaceConfig method)
get_all_endpoints() (in module msticpy.auth.cloud_mappings)
get_all_entities() (msticpy.nbtools.security_alert.SecurityAlert method)
(msticpy.nbtools.security_base.SecurityBase method)
(msticpy.nbtools.security_event.SecurityEvent method)
get_all_suffixes() (in module msticpy.auth.cloud_mappings)
get_ancestors() (in module msticpy.transform.process_tree_utils)
get_attacks() (msticpy.data.drivers.mordor_driver.MordorEntry method)
get_azure_config_value() (in module msticpy.auth.cloud_mappings)
get_blob() (msticpy.data.storage.azure_blob_storage.AzureBlobStorage method)
get_children() (in module msticpy.transform.process_tree_utils)
get_color_palette() (in module msticpy.vis.timeline_common)
get_config() (in module msticpy.common.pkg_config)
get_control() (msticpy.config.mp_config_control.MpConfigControls method)
get_def_source_cols() (in module msticpy.vis.timeline_common)
get_def_tenant_id() (in module msticpy.config.ce_common)
get_defender_endpoint() (in module msticpy.auth.cloud_mappings)
get_defn() (msticpy.config.mp_config_control.MpConfigControls method)
get_defn_or_default() (in module msticpy.config.ce_common)
get_descendents() (in module msticpy.transform.process_tree_utils)
get_df_cols() (msticpy.transform.proc_tree_schema.ProcSchema method)
get_entities_of_type() (msticpy.nbtools.security_alert.SecurityAlert method)
(msticpy.nbtools.security_base.SecurityBase method)
(msticpy.nbtools.security_event.SecurityEvent method)
get_event_subset() (in module msticpy.transform.auditdextract)
get_exec_step() (msticpy.init.pivot_core.pivot_pipeline.PipelineStep method)
get_file_paths() (msticpy.data.drivers.mordor_driver.MordorEntry method)
get_hashes() (in module msticpy.transform.base64unpack)
get_http_timeout() (in module msticpy.common.pkg_config)
(msticpy.data.drivers.cybereason_driver.CybereasonDriver static method)
(msticpy.data.drivers.driver_base.DriverBase static method)
(msticpy.data.drivers.elastic_driver.ElasticDriver static method)
(msticpy.data.drivers.kql_driver.KqlDriver static method)
(msticpy.data.drivers.kusto_driver.KustoDriver static method)
(msticpy.data.drivers.local_data_driver.LocalDataDriver static method)
(msticpy.data.drivers.mdatp_driver.MDATPDriver static method)
(msticpy.data.drivers.mordor_driver.MordorDriver static method)
(msticpy.data.drivers.odata_driver.OData static method)
(msticpy.data.drivers.resource_graph_driver.ResourceGraphDriver static method)
(msticpy.data.drivers.security_graph_driver.SecurityGraphDriver static method)
(msticpy.data.drivers.splunk_driver.SplunkDriver static method)
(msticpy.data.drivers.sumologic_driver.SumologicDriver static method)
(msticpy.data.uploaders.loganalytics_uploader.LAUploader static method)
(msticpy.data.uploaders.splunk_uploader.SplunkUploader static method)
(msticpy.data.uploaders.uploader_base.UploaderBase static method)
get_ioc_type() (msticpy.transform.iocextract.IoCExtract method)
get_items_from_gzip() (in module msticpy.transform.base64unpack)
get_items_from_tar() (in module msticpy.transform.base64unpack)
get_items_from_zip() (in module msticpy.transform.base64unpack)
get_join_params() (in module msticpy.init.pivot_core.pivot_register)
get_logon_id() (msticpy.nbtools.security_alert.SecurityAlert method)
(msticpy.nbtools.security_base.SecurityBase method)
(msticpy.nbtools.security_event.SecurityEvent method)
get_m365d_endpoint() (in module msticpy.auth.cloud_mappings)
get_mdr_data_paths() (in module msticpy.data.drivers.mordor_driver)
get_mpconfig_definitions() (in module msticpy.config.mp_config_control)
get_notebooks() (msticpy.data.drivers.mordor_driver.MordorEntry method)
get_or_create_mpc_section() (in module msticpy.config.ce_common)
get_param_attrs() (msticpy.init.pivot_init.pivot_data_queries.PivotQueryFunctions method)
get_params() (msticpy.init.pivot_init.pivot_data_queries.PivotQueryFunctions method)
get_params_to_model_values() (in module msticpy.analysis.anomalous_sequence.utils.cmds_params_values)
get_parent() (in module msticpy.transform.process_tree_utils)
get_pivot_list() (msticpy.datamodel.entities.account.Account class method)
(msticpy.datamodel.entities.alert.Alert class method)
(msticpy.datamodel.entities.azure_resource.AzureResource class method)
(msticpy.datamodel.entities.cloud_application.CloudApplication class method)
(msticpy.datamodel.entities.cloud_logon_session.CloudLogonSession class method)
(msticpy.datamodel.entities.dns.Dns class method)
(msticpy.datamodel.entities.entity.Entity class method)
(msticpy.datamodel.entities.file.File class method)
(msticpy.datamodel.entities.file_hash.FileHash class method)
(msticpy.datamodel.entities.geo_location.GeoLocation class method)
(msticpy.datamodel.entities.host.Host class method)
(msticpy.datamodel.entities.host_logon_session.HostLogonSession class method)
(msticpy.datamodel.entities.iot_device.IoTDevice class method)
(msticpy.datamodel.entities.ip_address.IpAddress class method)
(msticpy.datamodel.entities.mail_cluster.MailCluster class method)
(msticpy.datamodel.entities.mail_message.MailMessage class method)
(msticpy.datamodel.entities.mailbox.Mailbox class method)
(msticpy.datamodel.entities.malware.Malware class method)
(msticpy.datamodel.entities.network_connection.NetworkConnection class method)
(msticpy.datamodel.entities.process.Process class method)
(msticpy.datamodel.entities.registry_key.RegistryKey class method)
(msticpy.datamodel.entities.registry_value.RegistryValue class method)
(msticpy.datamodel.entities.security_group.SecurityGroup class method)
(msticpy.datamodel.entities.submission_mail.SubmissionMail class method)
(msticpy.datamodel.entities.threat_intelligence.Threatintelligence class method)
(msticpy.datamodel.entities.unknown_entity.UnknownEntity class method)
(msticpy.datamodel.entities.url.Url class method)
(msticpy.datamodel.soc.incident.Incident class method)
(msticpy.datamodel.soc.sentinel_alert.SentinelAlert class method)
get_process() (in module msticpy.transform.process_tree_utils)
get_process_key() (in module msticpy.transform.process_tree_utils)
get_provider_settings() (in module msticpy.common.provider_settings)
get_queries_and_types_for_param() (msticpy.init.pivot_init.pivot_data_queries.PivotQueryFunctions method)
get_queries_for_param() (msticpy.init.pivot_init.pivot_data_queries.PivotQueryFunctions method)
get_query() (msticpy.data.core.data_providers.QueryProvider method)
(msticpy.data.core.query_store.QueryStore method)
get_query_pivot_settings() (msticpy.init.pivot_init.pivot_data_queries.PivotQueryFunctions method)
get_query_settings() (msticpy.init.pivot_init.pivot_data_queries.PivotQueryFunctions method)
get_ref_event_time() (in module msticpy.vis.timeline_common)
get_root() (in module msticpy.transform.process_tree_utils)
get_root_tree() (in module msticpy.transform.process_tree_utils)
get_roots() (in module msticpy.transform.process_tree_utils)
get_sas_token() (msticpy.data.storage.azure_blob_storage.AzureBlobStorage method)
get_secret() (msticpy.auth.keyring_client.KeyringClient method)
(msticpy.auth.keyvault_client.BHKeyVaultClient method)
get_secret_accessor() (msticpy.auth.secret_settings.SecretsClient method)
get_secrets_client_func() (in module msticpy.common.provider_settings)
get_siblings() (in module msticpy.transform.process_tree_utils)
get_summary_info() (in module msticpy.transform.process_tree_utils)
get_tenant_authority_host() (msticpy.auth.keyvault_settings.KeyVaultSettings method)
get_tenant_authority_uri() (msticpy.auth.keyvault_settings.KeyVaultSettings method)
get_tick_formatter() (in module msticpy.vis.timeline_common)
get_time_bounds() (in module msticpy.vis.timeline_common)
get_token() (msticpy.auth.msal_auth.MSALDelegatedAuth method)
get_tree_depth() (in module msticpy.transform.process_tree_utils)
get_value() (msticpy.config.mp_config_control.MpConfigControls method)
get_vault_uri() (msticpy.auth.keyvault_client.BHKeyVaultMgmtClient method)
get_wgt_ctrl() (in module msticpy.config.ce_common)
GetEnvironmentKey (class in msticpy.nbwidgets.get_environment_key)
GetText (class in msticpy.nbwidgets.get_text)
graph (msticpy.vis.entity_graph_tools.EntityGraph property)
graph_property() (in module msticpy.datamodel.entities.graph_property)
group (msticpy.transform.iocextract.IoCPattern attribute)
group_by (msticpy.vis.timeline.PlotParams attribute)
(msticpy.vis.timeline_values.PlotParams attribute)
H
has_edge() (msticpy.datamodel.entities.account.Account method)
(msticpy.datamodel.entities.alert.Alert method)
(msticpy.datamodel.entities.azure_resource.AzureResource method)
(msticpy.datamodel.entities.cloud_application.CloudApplication method)
(msticpy.datamodel.entities.cloud_logon_session.CloudLogonSession method)
(msticpy.datamodel.entities.dns.Dns method)
(msticpy.datamodel.entities.entity.Entity method)
(msticpy.datamodel.entities.entity_graph.Node method)
(msticpy.datamodel.entities.file.File method)
(msticpy.datamodel.entities.file_hash.FileHash method)
(msticpy.datamodel.entities.geo_location.GeoLocation method)
(msticpy.datamodel.entities.host.Host method)
(msticpy.datamodel.entities.host_logon_session.HostLogonSession method)
(msticpy.datamodel.entities.iot_device.IoTDevice method)
(msticpy.datamodel.entities.ip_address.IpAddress method)
(msticpy.datamodel.entities.mail_cluster.MailCluster method)
(msticpy.datamodel.entities.mail_message.MailMessage method)
(msticpy.datamodel.entities.mailbox.Mailbox method)
(msticpy.datamodel.entities.malware.Malware method)
(msticpy.datamodel.entities.network_connection.NetworkConnection method)
(msticpy.datamodel.entities.process.Process method)
(msticpy.datamodel.entities.registry_key.RegistryKey method)
(msticpy.datamodel.entities.registry_value.RegistryValue method)
(msticpy.datamodel.entities.security_group.SecurityGroup method)
(msticpy.datamodel.entities.submission_mail.SubmissionMail method)
(msticpy.datamodel.entities.threat_intelligence.Threatintelligence method)
(msticpy.datamodel.entities.unknown_entity.UnknownEntity method)
(msticpy.datamodel.entities.url.Url method)
(msticpy.datamodel.soc.incident.Incident method)
(msticpy.datamodel.soc.sentinel_alert.SentinelAlert method)
hash_account() (in module msticpy.data.data_obfus)
hash_dict() (in module msticpy.data.data_obfus)
hash_ip() (in module msticpy.data.data_obfus)
hash_item() (in module msticpy.data.data_obfus)
hash_list() (in module msticpy.data.data_obfus)
hash_sid() (in module msticpy.data.data_obfus)
hash_string() (in module msticpy.data.data_obfus)
height (msticpy.vis.timeline.PlotParams attribute)
(msticpy.vis.timeline_duration.PlotParams attribute)
(msticpy.vis.timeline_values.PlotParams attribute)
help() (msticpy.data.core.query_source.QuerySource method)
help_uri (msticpy.common.exceptions.MsticpyAzureConfigError property)
(msticpy.common.exceptions.MsticpyAzureConnectionError property)
(msticpy.common.exceptions.MsticpyConnectionError property)
(msticpy.common.exceptions.MsticpyDataQueryError property)
(msticpy.common.exceptions.MsticpyImportExtraError property)
(msticpy.common.exceptions.MsticpyKeyVaultConfigError property)
(msticpy.common.exceptions.MsticpyKeyVaultMissingSecretError property)
(msticpy.common.exceptions.MsticpyKqlConnectionError property)
(msticpy.common.exceptions.MsticpyMissingDependencyError property)
(msticpy.common.exceptions.MsticpyNoDataSourceError property)
(msticpy.common.exceptions.MsticpyNotConnectedError property)
(msticpy.common.exceptions.MsticpyParameterError property)
(msticpy.common.exceptions.MsticpyUserConfigError property)
(msticpy.common.exceptions.MsticpyUserError property)
(msticpy.transform.proc_tree_schema.ProcessTreeSchemaException property)
hide (msticpy.vis.timeline.PlotParams attribute)
(msticpy.vis.timeline_duration.PlotParams attribute)
(msticpy.vis.timeline_values.PlotParams attribute)
hide() (msticpy.nbwidgets.progress.Progress method)
Hive (msticpy.datamodel.entities.registry_key.RegistryKey attribute)
HKEY_A (msticpy.datamodel.entities.entity_enums.RegistryHive attribute)
HKEY_CLASSES_ROOT (msticpy.datamodel.entities.entity_enums.RegistryHive attribute)
HKEY_CURRENT_CONFIG (msticpy.datamodel.entities.entity_enums.RegistryHive attribute)
HKEY_CURRENT_USER (msticpy.datamodel.entities.entity_enums.RegistryHive attribute)
HKEY_CURRENT_USER_LOCAL_SETTINGS (msticpy.datamodel.entities.entity_enums.RegistryHive attribute)
HKEY_LOCAL_MACHINE (msticpy.datamodel.entities.entity_enums.RegistryHive attribute)
HKEY_PERFORMANCE_DATA (msticpy.datamodel.entities.entity_enums.RegistryHive attribute)
HKEY_PERFORMANCE_NLSTEXT (msticpy.datamodel.entities.entity_enums.RegistryHive attribute)
HKEY_PERFORMANCE_TEXT (msticpy.datamodel.entities.entity_enums.RegistryHive attribute)
HKEY_USERS (msticpy.datamodel.entities.entity_enums.RegistryHive attribute)
Host (class in msticpy.datamodel.entities.host)
(msticpy.datamodel.entities.account.Account attribute)
(msticpy.datamodel.entities.file.File attribute)
(msticpy.datamodel.entities.host_logon_session.HostLogonSession attribute)
(msticpy.datamodel.entities.process.Process attribute)
host_filter() (msticpy.nbtools.security_alert.SecurityAlert method)
(msticpy.nbtools.security_base.SecurityBase method)
(msticpy.nbtools.security_event.SecurityEvent method)
host_name (msticpy.transform.proc_tree_schema.ProcSchema property)
host_name_column (msticpy.transform.proc_tree_schema.ProcSchema attribute)
HostIpAddress (msticpy.datamodel.entities.dns.Dns attribute)
HostLogonSession (class in msticpy.datamodel.entities.host_logon_session)
HostName (msticpy.datamodel.entities.host.Host attribute)
hostname (msticpy.nbtools.security_alert.SecurityAlert property)
(msticpy.nbtools.security_base.SecurityBase property)
(msticpy.nbtools.security_event.SecurityEvent property)
(msticpy.transform.iocextract.IoCType attribute)
HOUR (msticpy.nbwidgets.core.TimeUnit attribute)
I
id (msticpy.data.drivers.mordor_driver.MordorEntry attribute)
ID_PROPERTIES (msticpy.datamodel.entities.account.Account attribute)
(msticpy.datamodel.entities.alert.Alert attribute)
(msticpy.datamodel.entities.azure_resource.AzureResource attribute)
(msticpy.datamodel.entities.cloud_application.CloudApplication attribute)
(msticpy.datamodel.entities.cloud_logon_session.CloudLogonSession attribute)
(msticpy.datamodel.entities.dns.Dns attribute)
(msticpy.datamodel.entities.entity.Entity attribute)
(msticpy.datamodel.entities.file.File attribute)
(msticpy.datamodel.entities.file_hash.FileHash attribute)
(msticpy.datamodel.entities.geo_location.GeoLocation attribute)
(msticpy.datamodel.entities.host.Host attribute)
(msticpy.datamodel.entities.host_logon_session.HostLogonSession attribute)
(msticpy.datamodel.entities.iot_device.IoTDevice attribute)
(msticpy.datamodel.entities.ip_address.IpAddress attribute)
(msticpy.datamodel.entities.mail_cluster.MailCluster attribute)
(msticpy.datamodel.entities.mail_message.MailMessage attribute)
(msticpy.datamodel.entities.mailbox.Mailbox attribute)
(msticpy.datamodel.entities.malware.Malware attribute)
(msticpy.datamodel.entities.network_connection.NetworkConnection attribute)
(msticpy.datamodel.entities.process.Process attribute)
(msticpy.datamodel.entities.registry_key.RegistryKey attribute)
(msticpy.datamodel.entities.registry_value.RegistryValue attribute)
(msticpy.datamodel.entities.security_group.SecurityGroup attribute)
(msticpy.datamodel.entities.submission_mail.SubmissionMail attribute)
(msticpy.datamodel.entities.threat_intelligence.Threatintelligence attribute)
(msticpy.datamodel.entities.unknown_entity.UnknownEntity attribute)
(msticpy.datamodel.entities.url.Url attribute)
(msticpy.datamodel.soc.incident.Incident attribute)
(msticpy.datamodel.soc.sentinel_alert.SentinelAlert attribute)
identify_outliers() (in module msticpy.analysis.outliers)
ids (msticpy.datamodel.soc.sentinel_alert.SentinelAlert property)
(msticpy.nbtools.security_alert.SecurityAlert property)
(msticpy.nbtools.security_base.SecurityBase property)
(msticpy.nbtools.security_event.SecurityEvent property)
IDS_ATTRIBS (msticpy.nbwidgets.query_time.QueryTime attribute)
ImageFile (msticpy.datamodel.entities.process.Process attribute)
import_driver() (in module msticpy.data.drivers)
import_file() (msticpy.data.core.query_store.QueryStore method)
import_files() (msticpy.data.core.query_store.QueryStore class method)
import_query_file() (msticpy.data.core.data_providers.QueryProvider method)
ImportPlaceholder (class in msticpy.common.utility.types)
Incident (class in msticpy.datamodel.soc.incident)
incident (msticpy.datamodel.soc.sentinel_alert.SentinelAlert property)
index() (msticpy.auth.azure_auth_core.AzCredentials method)
(msticpy.config.mp_config_control.ValidationResult method)
(msticpy.data.core.data_providers.QueryParam method)
(msticpy.init.pivot_core.pivot_pipeline.PipelineExecStep method)
(msticpy.init.pivot_init.pivot_data_queries.ParamAttrs method)
(msticpy.init.pivot_init.pivot_data_queries.PivQuerySettings method)
(msticpy.init.pivot_init.pivot_data_queries.QueryParams method)
(msticpy.transform.base64unpack.BinaryRecord method)
(msticpy.transform.iocextract.IoCPattern method)
infer_schema() (in module msticpy.transform.proc_tree_builder)
input_bytes (msticpy.transform.base64unpack.BinaryRecord attribute)
input_type (msticpy.init.pivot_core.pivot_register.PivotRegistration attribute)
instance (msticpy.data.core.data_providers.QueryProvider property)
(msticpy.data.drivers.cybereason_driver.CybereasonDriver property)
(msticpy.data.drivers.driver_base.DriverBase property)
(msticpy.data.drivers.elastic_driver.ElasticDriver property)
(msticpy.data.drivers.kql_driver.KqlDriver property)
(msticpy.data.drivers.kusto_driver.KustoDriver property)
(msticpy.data.drivers.local_data_driver.LocalDataDriver property)
(msticpy.data.drivers.mdatp_driver.MDATPDriver property)
(msticpy.data.drivers.mordor_driver.MordorDriver property)
(msticpy.data.drivers.odata_driver.OData property)
(msticpy.data.drivers.resource_graph_driver.ResourceGraphDriver property)
(msticpy.data.drivers.security_graph_driver.SecurityGraphDriver property)
(msticpy.data.drivers.splunk_driver.SplunkDriver property)
(msticpy.data.drivers.sumologic_driver.SumologicDriver property)
instance_name (msticpy.init.pivot_init.pivot_data_queries.PivotQueryFunctions property)
InstanceName (msticpy.datamodel.entities.cloud_application.CloudApplication attribute)
instantiate_entity() (msticpy.datamodel.entities.account.Account class method)
(msticpy.datamodel.entities.alert.Alert class method)
(msticpy.datamodel.entities.azure_resource.AzureResource class method)
(msticpy.datamodel.entities.cloud_application.CloudApplication class method)
(msticpy.datamodel.entities.cloud_logon_session.CloudLogonSession class method)
(msticpy.datamodel.entities.dns.Dns class method)
(msticpy.datamodel.entities.entity.Entity class method)
(msticpy.datamodel.entities.file.File class method)
(msticpy.datamodel.entities.file_hash.FileHash class method)
(msticpy.datamodel.entities.geo_location.GeoLocation class method)
(msticpy.datamodel.entities.host.Host class method)
(msticpy.datamodel.entities.host_logon_session.HostLogonSession class method)
(msticpy.datamodel.entities.iot_device.IoTDevice class method)
(msticpy.datamodel.entities.ip_address.IpAddress class method)
(msticpy.datamodel.entities.mail_cluster.MailCluster class method)
(msticpy.datamodel.entities.mail_message.MailMessage class method)
(msticpy.datamodel.entities.mailbox.Mailbox class method)
(msticpy.datamodel.entities.malware.Malware class method)
(msticpy.datamodel.entities.network_connection.NetworkConnection class method)
(msticpy.datamodel.entities.process.Process class method)
(msticpy.datamodel.entities.registry_key.RegistryKey class method)
(msticpy.datamodel.entities.registry_value.RegistryValue class method)
(msticpy.datamodel.entities.security_group.SecurityGroup class method)
(msticpy.datamodel.entities.submission_mail.SubmissionMail class method)
(msticpy.datamodel.entities.threat_intelligence.Threatintelligence class method)
(msticpy.datamodel.entities.unknown_entity.UnknownEntity class method)
(msticpy.datamodel.entities.url.Url class method)
(msticpy.datamodel.soc.incident.Incident class method)
(msticpy.datamodel.soc.sentinel_alert.SentinelAlert class method)
InternetMessageId (msticpy.datamodel.entities.mail_message.MailMessage attribute)
ioc_type (msticpy.transform.iocextract.IoCPattern attribute)
ioc_types (msticpy.transform.iocextract.IoCExtract property)
IoCExtract (class in msticpy.transform.iocextract)
IoCExtractAccessor (class in msticpy.transform.iocextract)
IoCPattern (class in msticpy.transform.iocextract)
IoCType (class in msticpy.transform.iocextract)
IoTDevice (class in msticpy.datamodel.entities.iot_device)
IoTHub (msticpy.datamodel.entities.iot_device.IoTDevice attribute)
IoTSecurityAgentId (msticpy.datamodel.entities.iot_device.IoTDevice attribute)
Ip (in module msticpy.datamodel.entities.ip_address)
ip_address (msticpy.datamodel.entities.ip_address.IpAddress property)
IpAddress (class in msticpy.datamodel.entities.ip_address)
(msticpy.datamodel.entities.iot_device.IoTDevice attribute)
IpAdresses (msticpy.datamodel.entities.dns.Dns attribute)
ipv4 (msticpy.transform.iocextract.IoCType attribute)
IPV4_DF_REGEX (msticpy.transform.iocextract.IoCExtract attribute)
IPV4_REGEX (msticpy.transform.iocextract.IoCExtract attribute)
ipv6 (msticpy.transform.iocextract.IoCType attribute)
IPV6_REGEX (msticpy.transform.iocextract.IoCExtract attribute)
IPyDisplayMixin (class in msticpy.nbwidgets.core)
is_equivalent() (msticpy.datamodel.entities.account.Account method)
(msticpy.datamodel.entities.alert.Alert method)
(msticpy.datamodel.entities.azure_resource.AzureResource method)
(msticpy.datamodel.entities.cloud_application.CloudApplication method)
(msticpy.datamodel.entities.cloud_logon_session.CloudLogonSession method)
(msticpy.datamodel.entities.dns.Dns method)
(msticpy.datamodel.entities.entity.Entity method)
(msticpy.datamodel.entities.file.File method)
(msticpy.datamodel.entities.file_hash.FileHash method)
(msticpy.datamodel.entities.geo_location.GeoLocation method)
(msticpy.datamodel.entities.host.Host method)
(msticpy.datamodel.entities.host_logon_session.HostLogonSession method)
(msticpy.datamodel.entities.iot_device.IoTDevice method)
(msticpy.datamodel.entities.ip_address.IpAddress method)
(msticpy.datamodel.entities.mail_cluster.MailCluster method)
(msticpy.datamodel.entities.mail_message.MailMessage method)
(msticpy.datamodel.entities.mailbox.Mailbox method)
(msticpy.datamodel.entities.malware.Malware method)
(msticpy.datamodel.entities.network_connection.NetworkConnection method)
(msticpy.datamodel.entities.process.Process method)
(msticpy.datamodel.entities.registry_key.RegistryKey method)
(msticpy.datamodel.entities.registry_value.RegistryValue method)
(msticpy.datamodel.entities.security_group.SecurityGroup method)
(msticpy.datamodel.entities.submission_mail.SubmissionMail method)
(msticpy.datamodel.entities.threat_intelligence.Threatintelligence method)
(msticpy.datamodel.entities.unknown_entity.UnknownEntity method)
(msticpy.datamodel.entities.url.Url method)
(msticpy.datamodel.soc.incident.Incident method)
(msticpy.datamodel.soc.sentinel_alert.SentinelAlert method)
is_in_azure_sub (msticpy.nbtools.security_alert.SecurityAlert property)
(msticpy.nbtools.security_base.SecurityBase property)
(msticpy.nbtools.security_event.SecurityEvent property)
is_in_log_analytics (msticpy.datamodel.soc.sentinel_alert.SentinelAlert property)
(msticpy.nbtools.security_alert.SecurityAlert property)
(msticpy.nbtools.security_base.SecurityBase property)
(msticpy.nbtools.security_event.SecurityEvent property)
is_in_workspace (msticpy.datamodel.soc.sentinel_alert.SentinelAlert property)
(msticpy.nbtools.security_alert.SecurityAlert property)
(msticpy.nbtools.security_base.SecurityBase property)
(msticpy.nbtools.security_event.SecurityEvent property)
is_ipython() (in module msticpy.common.utility.ipython)
is_keyring_available() (msticpy.auth.keyring_client.KeyringClient static method)
is_not_empty() (in module msticpy.common.utility.format)
is_valid_uuid() (in module msticpy.common.utility.format)
IsDomainJoined (msticpy.datamodel.entities.account.Account attribute)
(msticpy.datamodel.entities.host.Host attribute)
IsVolumeAnomaly (msticpy.datamodel.entities.mail_cluster.MailCluster attribute)
item_action (msticpy.nbwidgets.select_item.SelectItem attribute)
items() (msticpy.analysis.anomalous_sequence.utils.data_structures.StateMatrix method)
(msticpy.common.provider_settings.ProviderArgs method)
J
join_result() (in module msticpy.init.pivot_core.pivot_register)
JSONEncoder (msticpy.datamodel.entities.account.Account attribute)
(msticpy.datamodel.entities.alert.Alert attribute)
(msticpy.datamodel.entities.azure_resource.AzureResource attribute)
(msticpy.datamodel.entities.cloud_application.CloudApplication attribute)
(msticpy.datamodel.entities.cloud_logon_session.CloudLogonSession attribute)
(msticpy.datamodel.entities.dns.Dns attribute)
(msticpy.datamodel.entities.entity.Entity attribute)
(msticpy.datamodel.entities.file.File attribute)
(msticpy.datamodel.entities.file_hash.FileHash attribute)
(msticpy.datamodel.entities.geo_location.GeoLocation attribute)
(msticpy.datamodel.entities.host.Host attribute)
(msticpy.datamodel.entities.host_logon_session.HostLogonSession attribute)
(msticpy.datamodel.entities.iot_device.IoTDevice attribute)
(msticpy.datamodel.entities.ip_address.IpAddress attribute)
(msticpy.datamodel.entities.mail_cluster.MailCluster attribute)
(msticpy.datamodel.entities.mail_message.MailMessage attribute)
(msticpy.datamodel.entities.mailbox.Mailbox attribute)
(msticpy.datamodel.entities.malware.Malware attribute)
(msticpy.datamodel.entities.network_connection.NetworkConnection attribute)
(msticpy.datamodel.entities.process.Process attribute)
(msticpy.datamodel.entities.registry_key.RegistryKey attribute)
(msticpy.datamodel.entities.registry_value.RegistryValue attribute)
(msticpy.datamodel.entities.security_group.SecurityGroup attribute)
(msticpy.datamodel.entities.submission_mail.SubmissionMail attribute)
(msticpy.datamodel.entities.threat_intelligence.Threatintelligence attribute)
(msticpy.datamodel.entities.unknown_entity.UnknownEntity attribute)
(msticpy.datamodel.entities.url.Url attribute)
(msticpy.datamodel.soc.incident.Incident attribute)
(msticpy.datamodel.soc.sentinel_alert.SentinelAlert attribute)
K
Key (msticpy.datamodel.entities.registry_key.RegistryKey attribute)
(msticpy.datamodel.entities.registry_value.RegistryValue attribute)
KeyringClient (class in msticpy.auth.keyring_client)
keys() (msticpy.analysis.anomalous_sequence.utils.data_structures.StateMatrix method)
(msticpy.common.provider_settings.ProviderArgs method)
keyvault_uri (msticpy.auth.keyvault_settings.KeyVaultSettings property)
KeyVaultSettings (class in msticpy.auth.keyvault_settings)
kind (msticpy.vis.timeline_values.PlotParams attribute)
KqlDriver (class in msticpy.data.drivers.kql_driver)
Kusto (msticpy.data.core.query_defns.DataEnvironment attribute)
KustoDriver (class in msticpy.data.drivers.kusto_driver)
KV_SUFFIXES (msticpy.auth.keyvault_settings.KeyVaultSettings attribute)
KV_URIS (msticpy.auth.keyvault_settings.KeyVaultSettings attribute)
L
label (msticpy.nbwidgets.select_item.SelectItem property)
(msticpy.nbwidgets.select_item.SelectString property)
Language (msticpy.datamodel.entities.mail_message.MailMessage attribute)
laplace_smooth_cmd_counts() (in module msticpy.analysis.anomalous_sequence.utils.laplace_smooth)
laplace_smooth_counts() (in module msticpy.analysis.anomalous_sequence.utils.cmds_only)
(in module msticpy.analysis.anomalous_sequence.utils.cmds_params_only)
(in module msticpy.analysis.anomalous_sequence.utils.cmds_params_values)
laplace_smooth_param_counts() (in module msticpy.analysis.anomalous_sequence.utils.laplace_smooth)
laplace_smooth_value_counts() (in module msticpy.analysis.anomalous_sequence.utils.laplace_smooth)
Latitude (msticpy.datamodel.entities.geo_location.GeoLocation attribute)
LAUploader (class in msticpy.data.uploaders.loganalytics_uploader)
layout (msticpy.config.comp_edit.CompEditHelp property)
(msticpy.nbwidgets.get_environment_key.GetEnvironmentKey property)
(msticpy.nbwidgets.get_text.GetText property)
(msticpy.nbwidgets.lookback.Lookback property)
(msticpy.nbwidgets.option_buttons.OptionButtons property)
(msticpy.nbwidgets.select_item.SelectItem property)
(msticpy.nbwidgets.select_item.SelectString property)
legacy (msticpy.auth.azure_auth_core.AzCredentials attribute)
legend (msticpy.vis.timeline.PlotParams attribute)
(msticpy.vis.timeline_values.PlotParams attribute)
Limited (msticpy.datamodel.entities.entity_enums.ElevationToken attribute)
link (msticpy.analysis.observationlist.Observation attribute)
links (msticpy.datamodel.soc.sentinel_alert.SentinelAlert property)
Linux (msticpy.datamodel.entities.entity_enums.OSFamily attribute)
linux_path (msticpy.transform.iocextract.IoCType attribute)
LinuxSecurity (msticpy.data.core.query_defns.DataFamily attribute)
LinuxSyslog (msticpy.data.core.query_defns.DataFamily attribute)
LIST (msticpy.data.core.query_defns.Formatters attribute)
list_auth_methods() (in module msticpy.auth.azure_auth_core)
list_connections() (msticpy.data.core.data_providers.QueryProvider method)
list_data_environments() (msticpy.data.core.data_providers.QueryProvider class method)
list_pivot_funcs() (msticpy.datamodel.entities.account.Account method)
(msticpy.datamodel.entities.alert.Alert method)
(msticpy.datamodel.entities.azure_resource.AzureResource method)
(msticpy.datamodel.entities.cloud_application.CloudApplication method)
(msticpy.datamodel.entities.cloud_logon_session.CloudLogonSession method)
(msticpy.datamodel.entities.dns.Dns method)
(msticpy.datamodel.entities.entity.Entity method)
(msticpy.datamodel.entities.file.File method)
(msticpy.datamodel.entities.file_hash.FileHash method)
(msticpy.datamodel.entities.geo_location.GeoLocation method)
(msticpy.datamodel.entities.host.Host method)
(msticpy.datamodel.entities.host_logon_session.HostLogonSession method)
(msticpy.datamodel.entities.iot_device.IoTDevice method)
(msticpy.datamodel.entities.ip_address.IpAddress method)
(msticpy.datamodel.entities.mail_cluster.MailCluster method)
(msticpy.datamodel.entities.mail_message.MailMessage method)
(msticpy.datamodel.entities.mailbox.Mailbox method)
(msticpy.datamodel.entities.malware.Malware method)
(msticpy.datamodel.entities.network_connection.NetworkConnection method)
(msticpy.datamodel.entities.process.Process method)
(msticpy.datamodel.entities.registry_key.RegistryKey method)
(msticpy.datamodel.entities.registry_value.RegistryValue method)
(msticpy.datamodel.entities.security_group.SecurityGroup method)
(msticpy.datamodel.entities.submission_mail.SubmissionMail method)
(msticpy.datamodel.entities.threat_intelligence.Threatintelligence method)
(msticpy.datamodel.entities.unknown_entity.UnknownEntity method)
(msticpy.datamodel.entities.url.Url method)
(msticpy.datamodel.soc.incident.Incident method)
(msticpy.datamodel.soc.sentinel_alert.SentinelAlert method)
list_queries() (msticpy.data.core.data_providers.QueryProvider method)
list_to_rows() (msticpy.init.pivot_core.pivot_pd_accessor.PivotAccessor method)
list_vaults() (msticpy.auth.keyvault_client.BHKeyVaultMgmtClient method)
list_workspaces() (msticpy.common.wsconfig.WorkspaceConfig class method)
load_user_defaults() (in module msticpy.init.user_config)
loaded (msticpy.data.drivers.cybereason_driver.CybereasonDriver property)
(msticpy.data.drivers.driver_base.DriverBase property)
(msticpy.data.drivers.elastic_driver.ElasticDriver property)
(msticpy.data.drivers.kql_driver.KqlDriver property)
(msticpy.data.drivers.kusto_driver.KustoDriver property)
(msticpy.data.drivers.local_data_driver.LocalDataDriver property)
(msticpy.data.drivers.mdatp_driver.MDATPDriver property)
(msticpy.data.drivers.mordor_driver.MordorDriver property)
(msticpy.data.drivers.odata_driver.OData property)
(msticpy.data.drivers.resource_graph_driver.ResourceGraphDriver property)
(msticpy.data.drivers.security_graph_driver.SecurityGraphDriver property)
(msticpy.data.drivers.splunk_driver.SplunkDriver property)
(msticpy.data.drivers.sumologic_driver.SumologicDriver property)
LocalData (msticpy.data.core.query_defns.DataEnvironment attribute)
LocalDataDriver (class in msticpy.data.drivers.local_data_driver)
Location (msticpy.datamodel.entities.ip_address.IpAddress attribute)
LogAnalytics (msticpy.data.core.query_defns.DataEnvironment attribute)
logon_id (msticpy.transform.proc_tree_schema.ProcSchema attribute)
LogonId (msticpy.datamodel.entities.account.Account attribute)
LogonSession (msticpy.datamodel.entities.process.Process attribute)
Longitude (msticpy.datamodel.entities.geo_location.GeoLocation attribute)
Lookback (class in msticpy.nbwidgets.lookback)
lookback (msticpy.nbwidgets.lookback.Lookback property)
LXPATH_REGEX (msticpy.transform.iocextract.IoCExtract attribute)
LXSTDPATH_REGEX (msticpy.transform.iocextract.IoCExtract attribute)
M
M365D (msticpy.data.core.query_defns.DataEnvironment attribute)
MacAddress (msticpy.datamodel.entities.iot_device.IoTDevice attribute)
Mailbox (class in msticpy.datamodel.entities.mailbox)
MailboxPrimaryAddress (msticpy.datamodel.entities.mailbox.Mailbox attribute)
MailCluster (class in msticpy.datamodel.entities.mail_cluster)
MailCount (msticpy.datamodel.entities.mail_cluster.MailCluster attribute)
MailMessage (class in msticpy.datamodel.entities.mail_message)
make_pivot_shortcut() (msticpy.datamodel.entities.account.Account class method)
(msticpy.datamodel.entities.alert.Alert class method)
(msticpy.datamodel.entities.azure_resource.AzureResource class method)
(msticpy.datamodel.entities.cloud_application.CloudApplication class method)
(msticpy.datamodel.entities.cloud_logon_session.CloudLogonSession class method)
(msticpy.datamodel.entities.dns.Dns class method)
(msticpy.datamodel.entities.entity.Entity class method)
(msticpy.datamodel.entities.file.File class method)
(msticpy.datamodel.entities.file_hash.FileHash class method)
(msticpy.datamodel.entities.geo_location.GeoLocation class method)
(msticpy.datamodel.entities.host.Host class method)
(msticpy.datamodel.entities.host_logon_session.HostLogonSession class method)
(msticpy.datamodel.entities.iot_device.IoTDevice class method)
(msticpy.datamodel.entities.ip_address.IpAddress class method)
(msticpy.datamodel.entities.mail_cluster.MailCluster class method)
(msticpy.datamodel.entities.mail_message.MailMessage class method)
(msticpy.datamodel.entities.mailbox.Mailbox class method)
(msticpy.datamodel.entities.malware.Malware class method)
(msticpy.datamodel.entities.network_connection.NetworkConnection class method)
(msticpy.datamodel.entities.process.Process class method)
(msticpy.datamodel.entities.registry_key.RegistryKey class method)
(msticpy.datamodel.entities.registry_value.RegistryValue class method)
(msticpy.datamodel.entities.security_group.SecurityGroup class method)
(msticpy.datamodel.entities.submission_mail.SubmissionMail class method)
(msticpy.datamodel.entities.threat_intelligence.Threatintelligence class method)
(msticpy.datamodel.entities.unknown_entity.UnknownEntity class method)
(msticpy.datamodel.entities.url.Url class method)
(msticpy.datamodel.soc.incident.Incident class method)
(msticpy.datamodel.soc.sentinel_alert.SentinelAlert class method)
Malware (class in msticpy.datamodel.entities.malware)
Manufacturer (msticpy.datamodel.entities.iot_device.IoTDevice attribute)
mask() (msticpy.data.data_obfus.ObfuscationAccessor method)
mask_df() (in module msticpy.data.data_obfus)
max (msticpy.nbwidgets.progress.Progress property)
md() (in module msticpy.common.utility.ipython)
MD5 (msticpy.datamodel.entities.entity_enums.Algorithm attribute)
Md5 (msticpy.datamodel.entities.file.File attribute)
md5 (msticpy.transform.base64unpack.BinaryRecord attribute)
md5_hash (msticpy.transform.iocextract.IoCType attribute)
MD5_REGEX (msticpy.transform.iocextract.IoCExtract attribute)
md_error() (in module msticpy.common.utility.ipython)
md_warn() (in module msticpy.common.utility.ipython)
MDATP (msticpy.data.core.query_defns.DataEnvironment attribute)
(msticpy.data.core.query_defns.DataFamily attribute)
MDATPDriver (class in msticpy.data.drivers.mdatp_driver)
MDE (msticpy.data.core.query_defns.DataEnvironment attribute)
merge() (msticpy.datamodel.entities.account.Account method)
(msticpy.datamodel.entities.alert.Alert method)
(msticpy.datamodel.entities.azure_resource.AzureResource method)
(msticpy.datamodel.entities.cloud_application.CloudApplication method)
(msticpy.datamodel.entities.cloud_logon_session.CloudLogonSession method)
(msticpy.datamodel.entities.dns.Dns method)
(msticpy.datamodel.entities.entity.Entity method)
(msticpy.datamodel.entities.file.File method)
(msticpy.datamodel.entities.file_hash.FileHash method)
(msticpy.datamodel.entities.geo_location.GeoLocation method)
(msticpy.datamodel.entities.host.Host method)
(msticpy.datamodel.entities.host_logon_session.HostLogonSession method)
(msticpy.datamodel.entities.iot_device.IoTDevice method)
(msticpy.datamodel.entities.ip_address.IpAddress method)
(msticpy.datamodel.entities.mail_cluster.MailCluster method)
(msticpy.datamodel.entities.mail_message.MailMessage method)
(msticpy.datamodel.entities.mailbox.Mailbox method)
(msticpy.datamodel.entities.malware.Malware method)
(msticpy.datamodel.entities.network_connection.NetworkConnection method)
(msticpy.datamodel.entities.process.Process method)
(msticpy.datamodel.entities.registry_key.RegistryKey method)
(msticpy.datamodel.entities.registry_value.RegistryValue method)
(msticpy.datamodel.entities.security_group.SecurityGroup method)
(msticpy.datamodel.entities.submission_mail.SubmissionMail method)
(msticpy.datamodel.entities.threat_intelligence.Threatintelligence method)
(msticpy.datamodel.entities.unknown_entity.UnknownEntity method)
(msticpy.datamodel.entities.url.Url method)
(msticpy.datamodel.soc.incident.Incident method)
(msticpy.datamodel.soc.sentinel_alert.SentinelAlert method)
metadata (msticpy.data.core.query_source.QuerySource attribute)
mgmt_uri (msticpy.auth.keyvault_settings.KeyVaultSettings property)
MINUTE (msticpy.nbwidgets.core.TimeUnit attribute)
MitreAttack (class in msticpy.data.drivers.mordor_driver)
Model (class in msticpy.analysis.anomalous_sequence.model)
(msticpy.datamodel.entities.iot_device.IoTDevice attribute)
modern (msticpy.auth.azure_auth_core.AzCredentials attribute)
modification_date (msticpy.data.drivers.mordor_driver.MordorEntry attribute)
module
msticpy
msticpy.analysis
msticpy.analysis.anomalous_sequence
msticpy.analysis.anomalous_sequence.anomalous
msticpy.analysis.anomalous_sequence.model
msticpy.analysis.anomalous_sequence.sessionize
msticpy.analysis.anomalous_sequence.utils
msticpy.analysis.anomalous_sequence.utils.cmds_only
msticpy.analysis.anomalous_sequence.utils.cmds_params_only
msticpy.analysis.anomalous_sequence.utils.cmds_params_values
msticpy.analysis.anomalous_sequence.utils.data_structures
msticpy.analysis.anomalous_sequence.utils.laplace_smooth
msticpy.analysis.anomalous_sequence.utils.probabilities
msticpy.analysis.cluster_auditd
msticpy.analysis.code_cleanup
msticpy.analysis.eventcluster
msticpy.analysis.observationlist
msticpy.analysis.outliers
msticpy.auth
msticpy.auth.azure_auth
msticpy.auth.azure_auth_core
msticpy.auth.cloud_mappings
msticpy.auth.cred_wrapper
msticpy.auth.keyring_client
msticpy.auth.keyvault_client
msticpy.auth.keyvault_settings
msticpy.auth.msal_auth
msticpy.auth.secret_settings
msticpy.common
msticpy.common.azure_auth
msticpy.common.check_version
msticpy.common.data_types
msticpy.common.data_utils
msticpy.common.exceptions
msticpy.common.pkg_config
msticpy.common.provider_settings
msticpy.common.timespan
msticpy.common.utility
msticpy.common.utility.format
msticpy.common.utility.ipython
msticpy.common.utility.package
msticpy.common.utility.types
msticpy.common.wsconfig
msticpy.config.ce_azure
msticpy.config.ce_common
msticpy.config.ce_simple_settings
msticpy.config.comp_edit
msticpy.config.mp_config_control
msticpy.data
msticpy.data.azure_blob_storage
msticpy.data.core
msticpy.data.core.data_providers
msticpy.data.core.data_query_reader
msticpy.data.core.param_extractor
msticpy.data.core.query_container
msticpy.data.core.query_defns
msticpy.data.core.query_source
msticpy.data.core.query_store
msticpy.data.data_obfus
msticpy.data.data_providers
msticpy.data.drivers
msticpy.data.drivers.cybereason_driver
msticpy.data.drivers.driver_base
msticpy.data.drivers.elastic_driver
msticpy.data.drivers.kql_driver
msticpy.data.drivers.kusto_driver
msticpy.data.drivers.local_data_driver
msticpy.data.drivers.mdatp_driver
msticpy.data.drivers.mordor_driver
msticpy.data.drivers.odata_driver
msticpy.data.drivers.resource_graph_driver
msticpy.data.drivers.security_graph_driver
msticpy.data.drivers.splunk_driver
msticpy.data.drivers.sumologic_driver
msticpy.data.query_container
msticpy.data.query_defns
msticpy.data.storage
msticpy.data.storage.azure_blob_storage
msticpy.data.uploaders
msticpy.data.uploaders.loganalytics_uploader
msticpy.data.uploaders.splunk_uploader
msticpy.data.uploaders.uploader_base
msticpy.datamodel
msticpy.datamodel.entities
msticpy.datamodel.entities.account
msticpy.datamodel.entities.alert
msticpy.datamodel.entities.azure_resource
msticpy.datamodel.entities.cloud_application
msticpy.datamodel.entities.cloud_logon_session
msticpy.datamodel.entities.dns
msticpy.datamodel.entities.entity
msticpy.datamodel.entities.entity_enums
msticpy.datamodel.entities.entity_graph
msticpy.datamodel.entities.file
msticpy.datamodel.entities.file_hash
msticpy.datamodel.entities.geo_location
msticpy.datamodel.entities.graph_property
msticpy.datamodel.entities.host
msticpy.datamodel.entities.host_logon_session
msticpy.datamodel.entities.iot_device
msticpy.datamodel.entities.ip_address
msticpy.datamodel.entities.mail_cluster
msticpy.datamodel.entities.mail_message
msticpy.datamodel.entities.mailbox
msticpy.datamodel.entities.malware
msticpy.datamodel.entities.network_connection
msticpy.datamodel.entities.process
msticpy.datamodel.entities.registry_key
msticpy.datamodel.entities.registry_value
msticpy.datamodel.entities.security_group
msticpy.datamodel.entities.submission_mail
msticpy.datamodel.entities.threat_intelligence
msticpy.datamodel.entities.unknown_entity
msticpy.datamodel.entities.url
msticpy.datamodel.pivot
msticpy.datamodel.soc
msticpy.datamodel.soc.incident
msticpy.datamodel.soc.sentinel_alert
msticpy.init
msticpy.init.nbmagics
msticpy.init.pivot_core
msticpy.init.pivot_core.pivot_browser
msticpy.init.pivot_core.pivot_container
msticpy.init.pivot_core.pivot_magic_core
msticpy.init.pivot_core.pivot_pd_accessor
msticpy.init.pivot_core.pivot_pipeline
msticpy.init.pivot_core.pivot_register
msticpy.init.pivot_core.pivot_register_reader
msticpy.init.pivot_init
msticpy.init.pivot_init.pivot_data_queries
msticpy.init.user_config
msticpy.nbtools
msticpy.nbtools.entityschema
msticpy.nbtools.nbdisplay
msticpy.nbtools.nbwidgets
msticpy.nbtools.observationlist
msticpy.nbtools.security_alert
msticpy.nbtools.security_alert_graph
msticpy.nbtools.security_base
msticpy.nbtools.security_event
msticpy.nbtools.timeline
msticpy.nbtools.timeline_duration
msticpy.nbtools.timeline_pd_accessor
msticpy.nbtools.utility
msticpy.nbtools.wsconfig
msticpy.nbwidgets
msticpy.nbwidgets.core
msticpy.nbwidgets.get_environment_key
msticpy.nbwidgets.get_text
msticpy.nbwidgets.lookback
msticpy.nbwidgets.option_buttons
msticpy.nbwidgets.progress
msticpy.nbwidgets.query_time
msticpy.nbwidgets.select_alert
msticpy.nbwidgets.select_item
msticpy.nbwidgets.select_subset
msticpy.transform
msticpy.transform.auditdextract
msticpy.transform.base64unpack
msticpy.transform.cmd_line
msticpy.transform.iocextract
msticpy.transform.network
msticpy.transform.proc_tree_build_mde
msticpy.transform.proc_tree_build_winlx
msticpy.transform.proc_tree_builder
msticpy.transform.proc_tree_schema
msticpy.transform.process_tree_utils
msticpy.vis.entity_graph_tools
msticpy.vis.nbdisplay
msticpy.vis.network_plot
msticpy.vis.timeline
msticpy.vis.timeline_common
msticpy.vis.timeline_duration
msticpy.vis.timeline_pd_accessor
msticpy.vis.timeline_values
Mordor (msticpy.data.core.query_defns.DataEnvironment attribute)
MordorDriver (class in msticpy.data.drivers.mordor_driver)
MordorEntry (class in msticpy.data.drivers.mordor_driver)
mp_settings (msticpy.common.wsconfig.WorkspaceConfig property)
mp_ua_header() (in module msticpy.common.utility.package)
MpConfigControls (class in msticpy.config.mp_config_control)
MSALDelegatedAuth (class in msticpy.auth.msal_auth)
msg (msticpy.common.exceptions.MsticpyImportExtraError attribute)
(msticpy.common.exceptions.MsticpyMissingDependencyError attribute)
MSGraph (msticpy.data.core.query_defns.DataEnvironment attribute)
MSSentinel (msticpy.data.core.query_defns.DataEnvironment attribute)
msticpy
module
msticpy.analysis
module
msticpy.analysis.anomalous_sequence
module
msticpy.analysis.anomalous_sequence.anomalous
module
msticpy.analysis.anomalous_sequence.model
module
msticpy.analysis.anomalous_sequence.sessionize
module
msticpy.analysis.anomalous_sequence.utils
module
msticpy.analysis.anomalous_sequence.utils.cmds_only
module
msticpy.analysis.anomalous_sequence.utils.cmds_params_only
module
msticpy.analysis.anomalous_sequence.utils.cmds_params_values
module
msticpy.analysis.anomalous_sequence.utils.data_structures
module
msticpy.analysis.anomalous_sequence.utils.laplace_smooth
module
msticpy.analysis.anomalous_sequence.utils.probabilities
module
msticpy.analysis.cluster_auditd
module
msticpy.analysis.code_cleanup
module
msticpy.analysis.eventcluster
module
msticpy.analysis.observationlist
module
msticpy.analysis.outliers
module
msticpy.auth
module
msticpy.auth.azure_auth
module
msticpy.auth.azure_auth_core
module
msticpy.auth.cloud_mappings
module
msticpy.auth.cred_wrapper
module
msticpy.auth.keyring_client
module
msticpy.auth.keyvault_client
module
msticpy.auth.keyvault_settings
module
msticpy.auth.msal_auth
module
msticpy.auth.secret_settings
module
msticpy.common
module
msticpy.common.azure_auth
module
msticpy.common.check_version
module
msticpy.common.data_types
module
msticpy.common.data_utils
module
msticpy.common.exceptions
module
msticpy.common.pkg_config
module
msticpy.common.provider_settings
module
msticpy.common.timespan
module
msticpy.common.utility
module
msticpy.common.utility.format
module
msticpy.common.utility.ipython
module
msticpy.common.utility.package
module
msticpy.common.utility.types
module
msticpy.common.wsconfig
module
msticpy.config.ce_azure
module
msticpy.config.ce_common
module
msticpy.config.ce_simple_settings
module
msticpy.config.comp_edit
module
msticpy.config.mp_config_control
module
msticpy.data
module
msticpy.data.azure_blob_storage
module
msticpy.data.core
module
msticpy.data.core.data_providers
module
msticpy.data.core.data_query_reader
module
msticpy.data.core.param_extractor
module
msticpy.data.core.query_container
module
msticpy.data.core.query_defns
module
msticpy.data.core.query_source
module
msticpy.data.core.query_store
module
msticpy.data.data_obfus
module
msticpy.data.data_providers
module
msticpy.data.drivers
module
msticpy.data.drivers.cybereason_driver
module
msticpy.data.drivers.driver_base
module
msticpy.data.drivers.elastic_driver
module
msticpy.data.drivers.kql_driver
module
msticpy.data.drivers.kusto_driver
module
msticpy.data.drivers.local_data_driver
module
msticpy.data.drivers.mdatp_driver
module
msticpy.data.drivers.mordor_driver
module
msticpy.data.drivers.odata_driver
module
msticpy.data.drivers.resource_graph_driver
module
msticpy.data.drivers.security_graph_driver
module
msticpy.data.drivers.splunk_driver
module
msticpy.data.drivers.sumologic_driver
module
msticpy.data.query_container
module
msticpy.data.query_defns
module
msticpy.data.storage
module
msticpy.data.storage.azure_blob_storage
module
msticpy.data.uploaders
module
msticpy.data.uploaders.loganalytics_uploader
module
msticpy.data.uploaders.splunk_uploader
module
msticpy.data.uploaders.uploader_base
module
msticpy.datamodel
module
msticpy.datamodel.entities
module
msticpy.datamodel.entities.account
module
msticpy.datamodel.entities.alert
module
msticpy.datamodel.entities.azure_resource
module
msticpy.datamodel.entities.cloud_application
module
msticpy.datamodel.entities.cloud_logon_session
module
msticpy.datamodel.entities.dns
module
msticpy.datamodel.entities.entity
module
msticpy.datamodel.entities.entity_enums
module
msticpy.datamodel.entities.entity_graph
module
msticpy.datamodel.entities.file
module
msticpy.datamodel.entities.file_hash
module
msticpy.datamodel.entities.geo_location
module
msticpy.datamodel.entities.graph_property
module
msticpy.datamodel.entities.host
module
msticpy.datamodel.entities.host_logon_session
module
msticpy.datamodel.entities.iot_device
module
msticpy.datamodel.entities.ip_address
module
msticpy.datamodel.entities.mail_cluster
module
msticpy.datamodel.entities.mail_message
module
msticpy.datamodel.entities.mailbox
module
msticpy.datamodel.entities.malware
module
msticpy.datamodel.entities.network_connection
module
msticpy.datamodel.entities.process
module
msticpy.datamodel.entities.registry_key
module
msticpy.datamodel.entities.registry_value
module
msticpy.datamodel.entities.security_group
module
msticpy.datamodel.entities.submission_mail
module
msticpy.datamodel.entities.threat_intelligence
module
msticpy.datamodel.entities.unknown_entity
module
msticpy.datamodel.entities.url
module
msticpy.datamodel.pivot
module
msticpy.datamodel.soc
module
msticpy.datamodel.soc.incident
module
msticpy.datamodel.soc.sentinel_alert
module
msticpy.init
module
msticpy.init.nbmagics
module
msticpy.init.pivot_core
module
msticpy.init.pivot_core.pivot_browser
module
msticpy.init.pivot_core.pivot_container
module
msticpy.init.pivot_core.pivot_magic_core
module
msticpy.init.pivot_core.pivot_pd_accessor
module
msticpy.init.pivot_core.pivot_pipeline
module
msticpy.init.pivot_core.pivot_register
module
msticpy.init.pivot_core.pivot_register_reader
module
msticpy.init.pivot_init
module
msticpy.init.pivot_init.pivot_data_queries
module
msticpy.init.user_config
module
msticpy.nbtools
module
msticpy.nbtools.entityschema
module
msticpy.nbtools.nbdisplay
module
msticpy.nbtools.nbwidgets
module
msticpy.nbtools.observationlist
module
msticpy.nbtools.security_alert
module
msticpy.nbtools.security_alert_graph
module
msticpy.nbtools.security_base
module
msticpy.nbtools.security_event
module
msticpy.nbtools.timeline
module
msticpy.nbtools.timeline_duration
module
msticpy.nbtools.timeline_pd_accessor
module
msticpy.nbtools.utility
module
msticpy.nbtools.wsconfig
module
msticpy.nbwidgets
module
msticpy.nbwidgets.core
module
msticpy.nbwidgets.get_environment_key
module
msticpy.nbwidgets.get_text
module
msticpy.nbwidgets.lookback
module
msticpy.nbwidgets.option_buttons
module
msticpy.nbwidgets.progress
module
msticpy.nbwidgets.query_time
module
msticpy.nbwidgets.select_alert
module
msticpy.nbwidgets.select_item
module
msticpy.nbwidgets.select_subset
module
msticpy.transform
module
msticpy.transform.auditdextract
module
msticpy.transform.base64unpack
module
msticpy.transform.cmd_line
module
msticpy.transform.iocextract
module
msticpy.transform.network
module
msticpy.transform.proc_tree_build_mde
module
msticpy.transform.proc_tree_build_winlx
module
msticpy.transform.proc_tree_builder
module
msticpy.transform.proc_tree_schema
module
msticpy.transform.process_tree_utils
module
msticpy.vis.entity_graph_tools
module
msticpy.vis.nbdisplay
module
msticpy.vis.network_plot
module
msticpy.vis.timeline
module
msticpy.vis.timeline_common
module
msticpy.vis.timeline_duration
module
msticpy.vis.timeline_pd_accessor
module
msticpy.vis.timeline_values
module
MsticpyAzureConfigError
MsticpyAzureConnectionError
MsticpyConfigException
MsticpyConnectionError
MsticpyDataQueryError
MsticpyException
MsticpyImportExtraError
MsticpyKeyVaultConfigError
MsticpyKeyVaultMissingSecretError
MsticpyKqlConnectionError
MsticpyMissingDependencyError
MsticpyNoDataSourceError
MsticpyNotConnectedError
MsticpyParameterError
MsticpyResourceException
MsticpyUserConfigError
MsticpyUserError
MTR_TAC_URI (msticpy.data.drivers.mordor_driver.MitreAttack attribute)
MTR_TECH_URI (msticpy.data.drivers.mordor_driver.MitreAttack attribute)
N
name (msticpy.common.exceptions.MsticpyImportExtraError attribute)
(msticpy.common.exceptions.MsticpyMissingDependencyError attribute)
(msticpy.common.provider_settings.ProviderSettings attribute)
(msticpy.data.core.data_providers.QueryParam attribute)
(msticpy.data.core.query_source.QuerySource attribute)
Name (msticpy.datamodel.entities.account.Account attribute)
(msticpy.datamodel.entities.cloud_application.CloudApplication attribute)
(msticpy.datamodel.entities.file.File attribute)
(msticpy.datamodel.entities.malware.Malware attribute)
(msticpy.datamodel.entities.registry_value.RegistryValue attribute)
name (msticpy.init.pivot_core.pivot_pipeline.PipelineStep attribute)
(msticpy.nbwidgets.get_environment_key.GetEnvironmentKey property)
name_str (msticpy.datamodel.entities.account.Account property)
(msticpy.datamodel.entities.alert.Alert property)
(msticpy.datamodel.entities.azure_resource.AzureResource property)
(msticpy.datamodel.entities.cloud_application.CloudApplication property)
(msticpy.datamodel.entities.cloud_logon_session.CloudLogonSession property)
(msticpy.datamodel.entities.dns.Dns property)
(msticpy.datamodel.entities.entity.Entity property)
(msticpy.datamodel.entities.file.File property)
(msticpy.datamodel.entities.file_hash.FileHash property)
(msticpy.datamodel.entities.geo_location.GeoLocation property)
(msticpy.datamodel.entities.host.Host property)
(msticpy.datamodel.entities.host_logon_session.HostLogonSession property)
(msticpy.datamodel.entities.iot_device.IoTDevice property)
(msticpy.datamodel.entities.ip_address.IpAddress property)
(msticpy.datamodel.entities.mail_cluster.MailCluster property)
(msticpy.datamodel.entities.mail_message.MailMessage property)
(msticpy.datamodel.entities.mailbox.Mailbox property)
(msticpy.datamodel.entities.malware.Malware property)
(msticpy.datamodel.entities.network_connection.NetworkConnection property)
(msticpy.datamodel.entities.process.Process property)
(msticpy.datamodel.entities.registry_key.RegistryKey property)
(msticpy.datamodel.entities.registry_value.RegistryValue property)
(msticpy.datamodel.entities.security_group.SecurityGroup property)
(msticpy.datamodel.entities.submission_mail.SubmissionMail property)
(msticpy.datamodel.entities.threat_intelligence.Threatintelligence property)
(msticpy.datamodel.entities.unknown_entity.UnknownEntity property)
(msticpy.datamodel.entities.url.Url property)
(msticpy.datamodel.soc.incident.Incident property)
(msticpy.datamodel.soc.sentinel_alert.SentinelAlert property)
NetBiosName (msticpy.datamodel.entities.host.Host attribute)
NetworkConnection (class in msticpy.datamodel.entities.network_connection)
NetworkMessageId (msticpy.datamodel.entities.mail_message.MailMessage attribute)
(msticpy.datamodel.entities.submission_mail.SubmissionMail attribute)
NetworkMessageIds (msticpy.datamodel.entities.mail_cluster.MailCluster attribute)
new_process_lc (msticpy.transform.proc_tree_schema.ColNames attribute)
new_process_lc_par (msticpy.transform.proc_tree_schema.ColNames attribute)
no_border_layout() (msticpy.config.ce_azure.CEAzure static method)
(msticpy.config.ce_simple_settings.CESimpleSettings static method)
(msticpy.config.comp_edit.CEItemsBase static method)
(msticpy.config.comp_edit.CompEditDisplayMixin static method)
(msticpy.config.comp_edit.CompEditFrame static method)
(msticpy.config.comp_edit.CompEditItems static method)
(msticpy.config.comp_edit.CompEditSimple static method)
no_display_exceptions() (msticpy.common.exceptions.MsticpyAzureConfigError class method)
(msticpy.common.exceptions.MsticpyAzureConnectionError class method)
(msticpy.common.exceptions.MsticpyConnectionError class method)
(msticpy.common.exceptions.MsticpyDataQueryError class method)
(msticpy.common.exceptions.MsticpyImportExtraError class method)
(msticpy.common.exceptions.MsticpyKeyVaultConfigError class method)
(msticpy.common.exceptions.MsticpyKeyVaultMissingSecretError class method)
(msticpy.common.exceptions.MsticpyKqlConnectionError class method)
(msticpy.common.exceptions.MsticpyMissingDependencyError class method)
(msticpy.common.exceptions.MsticpyNoDataSourceError class method)
(msticpy.common.exceptions.MsticpyNotConnectedError class method)
(msticpy.common.exceptions.MsticpyParameterError class method)
(msticpy.common.exceptions.MsticpyUserConfigError class method)
(msticpy.common.exceptions.MsticpyUserError class method)
(msticpy.transform.proc_tree_schema.ProcessTreeSchemaException class method)
Node (class in msticpy.datamodel.entities.entity_graph)
node_properties (msticpy.datamodel.entities.account.Account property)
(msticpy.datamodel.entities.alert.Alert property)
(msticpy.datamodel.entities.azure_resource.AzureResource property)
(msticpy.datamodel.entities.cloud_application.CloudApplication property)
(msticpy.datamodel.entities.cloud_logon_session.CloudLogonSession property)
(msticpy.datamodel.entities.dns.Dns property)
(msticpy.datamodel.entities.entity.Entity property)
(msticpy.datamodel.entities.file.File property)
(msticpy.datamodel.entities.file_hash.FileHash property)
(msticpy.datamodel.entities.geo_location.GeoLocation property)
(msticpy.datamodel.entities.host.Host property)
(msticpy.datamodel.entities.host_logon_session.HostLogonSession property)
(msticpy.datamodel.entities.iot_device.IoTDevice property)
(msticpy.datamodel.entities.ip_address.IpAddress property)
(msticpy.datamodel.entities.mail_cluster.MailCluster property)
(msticpy.datamodel.entities.mail_message.MailMessage property)
(msticpy.datamodel.entities.mailbox.Mailbox property)
(msticpy.datamodel.entities.malware.Malware property)
(msticpy.datamodel.entities.network_connection.NetworkConnection property)
(msticpy.datamodel.entities.process.Process property)
(msticpy.datamodel.entities.registry_key.RegistryKey property)
(msticpy.datamodel.entities.registry_value.RegistryValue property)
(msticpy.datamodel.entities.security_group.SecurityGroup property)
(msticpy.datamodel.entities.submission_mail.SubmissionMail property)
(msticpy.datamodel.entities.threat_intelligence.Threatintelligence property)
(msticpy.datamodel.entities.unknown_entity.UnknownEntity property)
(msticpy.datamodel.entities.url.Url property)
(msticpy.datamodel.soc.incident.Incident property)
(msticpy.datamodel.soc.sentinel_alert.SentinelAlert property)
notebooks (msticpy.data.drivers.mordor_driver.MordorEntry attribute)
NTDomain (msticpy.datamodel.entities.account.Account attribute)
(msticpy.datamodel.entities.host.Host attribute)
O
oauth_url (msticpy.data.drivers.security_graph_driver.SecurityGraphDriver attribute)
obfuscate_df() (in module msticpy.data.data_obfus)
ObfuscationAccessor (class in msticpy.data.data_obfus)
ObjectContainer (class in msticpy.common.data_types)
ObjectGuid (msticpy.datamodel.entities.account.Account attribute)
(msticpy.datamodel.entities.security_group.SecurityGroup attribute)
Observation (class in msticpy.analysis.observationlist)
Observations (class in msticpy.analysis.observationlist)
observations (msticpy.analysis.observationlist.Observations property)
OData (class in msticpy.data.drivers.odata_driver)
OMSAgentID (msticpy.datamodel.entities.host.Host attribute)
only_interactive_cred() (in module msticpy.auth.azure_auth_core)
OperatingSystem (msticpy.datamodel.entities.iot_device.IoTDevice attribute)
OptionButtons (class in msticpy.nbwidgets.option_buttons)
origin_time (msticpy.nbtools.security_alert.SecurityAlert property)
(msticpy.nbtools.security_base.SecurityBase property)
(msticpy.nbtools.security_event.SecurityEvent property)
original_string (msticpy.transform.base64unpack.BinaryRecord attribute)
OSFamily (class in msticpy.datamodel.entities.entity_enums)
(msticpy.datamodel.entities.host.Host attribute)
OSVersion (msticpy.datamodel.entities.host.Host attribute)
OTRF (msticpy.data.core.query_defns.DataEnvironment attribute)
overlay_color (msticpy.vis.timeline.PlotParams attribute)
overlay_columns (msticpy.vis.timeline.PlotParams attribute)
overlay_data (msticpy.vis.timeline.PlotParams attribute)
P
P1Sender (msticpy.datamodel.entities.mail_message.MailMessage attribute)
P1SenderDisplayName (msticpy.datamodel.entities.mail_message.MailMessage attribute)
P1SenderDomain (msticpy.datamodel.entities.mail_message.MailMessage attribute)
P2Sender (msticpy.datamodel.entities.mail_message.MailMessage attribute)
P2SenderDisplayName (msticpy.datamodel.entities.mail_message.MailMessage attribute)
P2SenderDomain (msticpy.datamodel.entities.mail_message.MailMessage attribute)
param_attrs (msticpy.init.pivot_init.pivot_data_queries.QueryParams attribute)
PARAM_HANDLER (msticpy.data.core.query_defns.Formatters attribute)
ParamAttrs (class in msticpy.init.pivot_init.pivot_data_queries)
params (msticpy.data.core.query_source.QuerySource attribute)
(msticpy.init.pivot_core.pivot_pipeline.PipelineExecStep attribute)
(msticpy.init.pivot_core.pivot_pipeline.PipelineStep attribute)
parent_id (msticpy.transform.proc_tree_schema.ProcSchema attribute)
parent_key (msticpy.transform.proc_tree_schema.ColNames attribute)
parent_name (msticpy.transform.proc_tree_schema.ProcSchema attribute)
parent_proc_lc (msticpy.transform.proc_tree_schema.ColNames attribute)
ParentProcess (msticpy.datamodel.entities.process.Process attribute)
parse() (msticpy.common.utility.types.ParseableEnum method)
(msticpy.data.core.query_defns.DataEnvironment class method)
(msticpy.data.core.query_defns.DataFamily class method)
(msticpy.transform.iocextract.IoCType class method)
parse_json() (msticpy.init.pivot_core.pivot_pd_accessor.PivotAccessor method)
parse_pipeline() (msticpy.init.pivot_core.pivot_pipeline.Pipeline class method)
parse_pipelines() (msticpy.init.pivot_core.pivot_pipeline.Pipeline static method)
parse_time_unit() (in module msticpy.nbwidgets.core)
ParseableEnum (class in msticpy.common.utility.types)
path (msticpy.common.exceptions.MsticpyImportExtraError attribute)
(msticpy.common.exceptions.MsticpyMissingDependencyError attribute)
path_separator (msticpy.datamodel.entities.file.File property)
(msticpy.transform.proc_tree_schema.ProcSchema attribute)
period (msticpy.common.timespan.TimeSpan property)
Pipeline (class in msticpy.init.pivot_core.pivot_pipeline)
PipelineExecStep (class in msticpy.init.pivot_core.pivot_pipeline)
PipelineStep (class in msticpy.init.pivot_core.pivot_pipeline)
PivotAccessor (class in msticpy.init.pivot_core.pivot_pd_accessor)
PivotBrowser (class in msticpy.init.pivot_core.pivot_browser)
PivotContainer (class in msticpy.init.pivot_core.pivot_container)
PivotQueryFunctions (class in msticpy.init.pivot_init.pivot_data_queries)
PivotRegistration (class in msticpy.init.pivot_core.pivot_register)
pivots() (msticpy.datamodel.entities.account.Account class method)
(msticpy.datamodel.entities.alert.Alert class method)
(msticpy.datamodel.entities.azure_resource.AzureResource class method)
(msticpy.datamodel.entities.cloud_application.CloudApplication class method)
(msticpy.datamodel.entities.cloud_logon_session.CloudLogonSession class method)
(msticpy.datamodel.entities.dns.Dns class method)
(msticpy.datamodel.entities.entity.Entity class method)
(msticpy.datamodel.entities.file.File class method)
(msticpy.datamodel.entities.file_hash.FileHash class method)
(msticpy.datamodel.entities.geo_location.GeoLocation class method)
(msticpy.datamodel.entities.host.Host class method)
(msticpy.datamodel.entities.host_logon_session.HostLogonSession class method)
(msticpy.datamodel.entities.iot_device.IoTDevice class method)
(msticpy.datamodel.entities.ip_address.IpAddress class method)
(msticpy.datamodel.entities.mail_cluster.MailCluster class method)
(msticpy.datamodel.entities.mail_message.MailMessage class method)
(msticpy.datamodel.entities.mailbox.Mailbox class method)
(msticpy.datamodel.entities.malware.Malware class method)
(msticpy.datamodel.entities.network_connection.NetworkConnection class method)
(msticpy.datamodel.entities.process.Process class method)
(msticpy.datamodel.entities.registry_key.RegistryKey class method)
(msticpy.datamodel.entities.registry_value.RegistryValue class method)
(msticpy.datamodel.entities.security_group.SecurityGroup class method)
(msticpy.datamodel.entities.submission_mail.SubmissionMail class method)
(msticpy.datamodel.entities.threat_intelligence.Threatintelligence class method)
(msticpy.datamodel.entities.unknown_entity.UnknownEntity class method)
(msticpy.datamodel.entities.url.Url class method)
(msticpy.datamodel.soc.incident.Incident class method)
(msticpy.datamodel.soc.sentinel_alert.SentinelAlert class method)
PivQuerySettings (class in msticpy.init.pivot_init.pivot_data_queries)
PKG_CONF_NAME_KEY (msticpy.common.wsconfig.WorkspaceConfig attribute)
PKG_CONF_RES_GROUP_KEY (msticpy.common.wsconfig.WorkspaceConfig attribute)
PKG_CONF_SUB_KEY (msticpy.common.wsconfig.WorkspaceConfig attribute)
PKG_CONF_TENANT_KEY (msticpy.common.wsconfig.WorkspaceConfig attribute)
PKG_CONF_WS_KEY (msticpy.common.wsconfig.WorkspaceConfig attribute)
platform (msticpy.data.drivers.mordor_driver.MordorEntry attribute)
plot() (msticpy.vis.entity_graph_tools.EntityGraph method)
(msticpy.vis.timeline_pd_accessor.TimeLineAccessor method)
plot_cluster() (in module msticpy.analysis.eventcluster)
plot_duration() (msticpy.vis.timeline_pd_accessor.TimeLineAccessor method)
plot_entity_graph() (in module msticpy.vis.network_plot)
plot_entitygraph() (in module msticpy.vis.entity_graph_tools)
plot_nx_graph() (in module msticpy.vis.network_plot)
plot_outlier_results() (in module msticpy.analysis.outliers)
plot_ref_events() (in module msticpy.vis.timeline_common)
plot_ref_line() (in module msticpy.vis.timeline_common)
plot_values() (msticpy.vis.timeline_pd_accessor.TimeLineAccessor method)
PlotParams (class in msticpy.vis.timeline)
(class in msticpy.vis.timeline_duration)
(class in msticpy.vis.timeline_values)
pop() (msticpy.analysis.anomalous_sequence.utils.data_structures.StateMatrix method)
(msticpy.common.provider_settings.ProviderArgs method)
popitem() (msticpy.analysis.anomalous_sequence.utils.data_structures.StateMatrix method)
(msticpy.common.provider_settings.ProviderArgs method)
populate_ctrl_values() (msticpy.config.mp_config_control.MpConfigControls method)
pos_params (msticpy.init.pivot_core.pivot_pipeline.PipelineExecStep attribute)
(msticpy.init.pivot_core.pivot_pipeline.PipelineStep attribute)
primary (msticpy.common.provider_settings.ProviderSettings attribute)
primary_account (msticpy.nbtools.security_alert.SecurityAlert property)
(msticpy.nbtools.security_base.SecurityBase property)
(msticpy.nbtools.security_event.SecurityEvent property)
primary_host (msticpy.nbtools.security_alert.SecurityAlert property)
(msticpy.nbtools.security_base.SecurityBase property)
(msticpy.nbtools.security_event.SecurityEvent property)
primary_process (msticpy.nbtools.security_alert.SecurityAlert property)
(msticpy.nbtools.security_base.SecurityBase property)
(msticpy.nbtools.security_event.SecurityEvent property)
print_debug() (in module msticpy.config.ce_common)
print_pipeline() (msticpy.init.pivot_core.pivot_pipeline.Pipeline method)
printable_bytes (msticpy.transform.base64unpack.BinaryRecord attribute)
priority (msticpy.transform.iocextract.IoCPattern attribute)
proc_key (msticpy.transform.proc_tree_schema.ColNames attribute)
Process (class in msticpy.datamodel.entities.process)
process_id (msticpy.transform.proc_tree_schema.ProcSchema attribute)
process_name (msticpy.transform.proc_tree_schema.ProcSchema attribute)
Processes (msticpy.datamodel.entities.malware.Malware attribute)
ProcessFilePath (msticpy.datamodel.entities.process.Process property)
ProcessId (msticpy.datamodel.entities.process.Process attribute)
ProcessName (msticpy.datamodel.entities.process.Process property)
ProcessTreeSchemaException
ProcSchema (class in msticpy.transform.proc_tree_schema)
Progress (class in msticpy.nbwidgets.progress)
prompt_for_ws() (msticpy.common.wsconfig.WorkspaceConfig method)
properties (msticpy.datamodel.entities.account.Account property)
(msticpy.datamodel.entities.alert.Alert property)
(msticpy.datamodel.entities.azure_resource.AzureResource property)
(msticpy.datamodel.entities.cloud_application.CloudApplication property)
(msticpy.datamodel.entities.cloud_logon_session.CloudLogonSession property)
(msticpy.datamodel.entities.dns.Dns property)
(msticpy.datamodel.entities.entity.Entity property)
(msticpy.datamodel.entities.file.File property)
(msticpy.datamodel.entities.file_hash.FileHash property)
(msticpy.datamodel.entities.geo_location.GeoLocation property)
(msticpy.datamodel.entities.host.Host property)
(msticpy.datamodel.entities.host_logon_session.HostLogonSession property)
(msticpy.datamodel.entities.iot_device.IoTDevice property)
(msticpy.datamodel.entities.ip_address.IpAddress property)
(msticpy.datamodel.entities.mail_cluster.MailCluster property)
(msticpy.datamodel.entities.mail_message.MailMessage property)
(msticpy.datamodel.entities.mailbox.Mailbox property)
(msticpy.datamodel.entities.malware.Malware property)
(msticpy.datamodel.entities.network_connection.NetworkConnection property)
(msticpy.datamodel.entities.process.Process property)
(msticpy.datamodel.entities.registry_key.RegistryKey property)
(msticpy.datamodel.entities.registry_value.RegistryValue property)
(msticpy.datamodel.entities.security_group.SecurityGroup property)
(msticpy.datamodel.entities.submission_mail.SubmissionMail property)
(msticpy.datamodel.entities.threat_intelligence.Threatintelligence property)
(msticpy.datamodel.entities.unknown_entity.UnknownEntity property)
(msticpy.datamodel.entities.url.Url property)
(msticpy.datamodel.soc.incident.Incident property)
(msticpy.datamodel.soc.sentinel_alert.SentinelAlert property)
(msticpy.nbtools.security_alert.SecurityAlert property)
(msticpy.nbtools.security_base.SecurityBase property)
(msticpy.nbtools.security_event.SecurityEvent property)
Protocol (msticpy.datamodel.entities.network_connection.NetworkConnection attribute)
Protocols (msticpy.datamodel.entities.iot_device.IoTDevice attribute)
provider (msticpy.common.provider_settings.ProviderSettings attribute)
Provider (msticpy.datamodel.entities.azure_resource.AzureResource property)
ProviderArgs (class in msticpy.common.provider_settings)
ProviderName (msticpy.datamodel.entities.alert.Alert attribute)
(msticpy.datamodel.entities.threat_intelligence.Threatintelligence attribute)
(msticpy.datamodel.soc.sentinel_alert.SentinelAlert attribute)
ProviderSettings (class in msticpy.common.provider_settings)
public_attribs (msticpy.data.drivers.security_graph_driver.SecurityGraphDriver attribute)
PUID (msticpy.datamodel.entities.account.Account attribute)
py_to_widget() (in module msticpy.config.ce_common)
Q
qualified_name (msticpy.datamodel.entities.account.Account property)
query (msticpy.data.core.query_source.QuerySource property)
Query (msticpy.datamodel.entities.mail_cluster.MailCluster attribute)
query (msticpy.init.pivot_init.pivot_data_queries.ParamAttrs attribute)
query() (msticpy.data.drivers.cybereason_driver.CybereasonDriver method)
(msticpy.data.drivers.driver_base.DriverBase method)
(msticpy.data.drivers.elastic_driver.ElasticDriver method)
(msticpy.data.drivers.kql_driver.KqlDriver method)
(msticpy.data.drivers.kusto_driver.KustoDriver method)
(msticpy.data.drivers.local_data_driver.LocalDataDriver method)
(msticpy.data.drivers.mdatp_driver.MDATPDriver method)
(msticpy.data.drivers.mordor_driver.MordorDriver method)
(msticpy.data.drivers.odata_driver.OData method)
(msticpy.data.drivers.resource_graph_driver.ResourceGraphDriver method)
(msticpy.data.drivers.security_graph_driver.SecurityGraphDriver method)
(msticpy.data.drivers.splunk_driver.SplunkDriver method)
(msticpy.data.drivers.sumologic_driver.SumologicDriver method)
query_attach_spec (msticpy.data.drivers.cybereason_driver.CybereasonDriver property)
(msticpy.data.drivers.driver_base.DriverBase property)
(msticpy.data.drivers.elastic_driver.ElasticDriver property)
(msticpy.data.drivers.kql_driver.KqlDriver property)
(msticpy.data.drivers.kusto_driver.KustoDriver property)
(msticpy.data.drivers.local_data_driver.LocalDataDriver property)
(msticpy.data.drivers.mdatp_driver.MDATPDriver property)
(msticpy.data.drivers.mordor_driver.MordorDriver property)
(msticpy.data.drivers.odata_driver.OData property)
(msticpy.data.drivers.resource_graph_driver.ResourceGraphDriver property)
(msticpy.data.drivers.security_graph_driver.SecurityGraphDriver property)
(msticpy.data.drivers.splunk_driver.SplunkDriver property)
(msticpy.data.drivers.sumologic_driver.SumologicDriver property)
query_help() (msticpy.data.core.data_providers.QueryProvider method)
query_names (msticpy.data.core.query_store.QueryStore property)
query_params (msticpy.data.core.query_defns.QueryParamProvider property)
(msticpy.nbtools.security_alert.SecurityAlert property)
(msticpy.nbtools.security_base.SecurityBase property)
(msticpy.nbtools.security_event.SecurityEvent property)
(msticpy.nbwidgets.select_alert.AlertSelector property)
query_store (msticpy.data.core.query_source.QuerySource attribute)
query_time (msticpy.data.core.data_providers.QueryProvider property)
query_with_results() (msticpy.data.drivers.cybereason_driver.CybereasonDriver method)
(msticpy.data.drivers.driver_base.DriverBase method)
(msticpy.data.drivers.elastic_driver.ElasticDriver method)
(msticpy.data.drivers.kql_driver.KqlDriver method)
(msticpy.data.drivers.kusto_driver.KustoDriver method)
(msticpy.data.drivers.local_data_driver.LocalDataDriver method)
(msticpy.data.drivers.mdatp_driver.MDATPDriver method)
(msticpy.data.drivers.mordor_driver.MordorDriver method)
(msticpy.data.drivers.odata_driver.OData method)
(msticpy.data.drivers.resource_graph_driver.ResourceGraphDriver method)
(msticpy.data.drivers.security_graph_driver.SecurityGraphDriver method)
(msticpy.data.drivers.splunk_driver.SplunkDriver method)
(msticpy.data.drivers.sumologic_driver.SumologicDriver method)
QueryContainer (class in msticpy.data.core.query_container)
QueryParam (class in msticpy.data.core.data_providers)
QueryParamProvider (class in msticpy.data.core.query_defns)
QueryParams (class in msticpy.init.pivot_init.pivot_data_queries)
QueryProvider (class in msticpy.data.core.data_providers)
QuerySource (class in msticpy.data.core.query_source)
QueryStore (class in msticpy.data.core.query_store)
QueryTime (class in msticpy.nbwidgets.query_time)
(msticpy.datamodel.entities.mail_cluster.MailCluster attribute)
R
range_tool (msticpy.vis.timeline.PlotParams attribute)
(msticpy.vis.timeline_duration.PlotParams attribute)
(msticpy.vis.timeline_values.PlotParams attribute)
rarest_window_session() (in module msticpy.analysis.anomalous_sequence.utils.cmds_only)
(in module msticpy.analysis.anomalous_sequence.utils.cmds_params_only)
(in module msticpy.analysis.anomalous_sequence.utils.cmds_params_values)
read_from_file() (in module msticpy.transform.auditdextract)
read_query_def_file() (in module msticpy.data.core.data_query_reader)
read_secret() (msticpy.auth.secret_settings.SecretsClient static method)
ReceivedDate (msticpy.datamodel.entities.mail_message.MailMessage attribute)
Recipient (msticpy.datamodel.entities.mail_message.MailMessage attribute)
(msticpy.datamodel.entities.submission_mail.SubmissionMail attribute)
ref_col (msticpy.vis.timeline.PlotParams attribute)
(msticpy.vis.timeline_duration.PlotParams attribute)
(msticpy.vis.timeline_values.PlotParams attribute)
ref_event (msticpy.vis.timeline.PlotParams attribute)
(msticpy.vis.timeline_values.PlotParams attribute)
ref_events (msticpy.vis.timeline.PlotParams attribute)
(msticpy.vis.timeline_duration.PlotParams attribute)
(msticpy.vis.timeline_values.PlotParams attribute)
ref_label (msticpy.vis.timeline.PlotParams attribute)
ref_time (msticpy.vis.timeline.PlotParams attribute)
(msticpy.vis.timeline_values.PlotParams attribute)
ref_time_col (msticpy.vis.timeline.PlotParams attribute)
(msticpy.vis.timeline_values.PlotParams attribute)
ref_times (msticpy.vis.timeline.PlotParams attribute)
(msticpy.vis.timeline_duration.PlotParams attribute)
(msticpy.vis.timeline_values.PlotParams attribute)
refang_ioc() (in module msticpy.common.utility.format)
reference (msticpy.transform.base64unpack.BinaryRecord attribute)
references (msticpy.data.drivers.mordor_driver.MordorEntry attribute)
refresh_config() (in module msticpy.common.pkg_config)
refresh_keyring() (in module msticpy.common.provider_settings)
(msticpy.auth.secret_settings.SecretsClient method)
refresh_token() (msticpy.auth.msal_auth.MSALDelegatedAuth method)
register_pivots() (in module msticpy.init.pivot_core.pivot_register_reader)
RegisteredWidget (class in msticpy.nbwidgets.core)
RegistryHive (class in msticpy.datamodel.entities.entity_enums)
RegistryKey (class in msticpy.datamodel.entities.registry_key)
RegistryValue (class in msticpy.datamodel.entities.registry_value)
reload_settings() (in module msticpy.common.provider_settings)
remove_common_items() (in module msticpy.analysis.outliers)
remove_link() (msticpy.vis.entity_graph_tools.EntityGraph method)
remove_node() (msticpy.vis.entity_graph_tools.EntityGraph method)
rename_path() (msticpy.config.mp_config_control.MpConfigControls method)
replace_guid() (in module msticpy.data.data_obfus)
ReportLink (msticpy.datamodel.entities.threat_intelligence.Threatintelligence attribute)
ReportType (msticpy.datamodel.entities.submission_mail.SubmissionMail attribute)
req_body (msticpy.data.drivers.security_graph_driver.SecurityGraphDriver attribute)
request_uri (msticpy.data.drivers.security_graph_driver.SecurityGraphDriver attribute)
required (msticpy.init.pivot_init.pivot_data_queries.ParamAttrs attribute)
(msticpy.init.pivot_init.pivot_data_queries.QueryParams attribute)
required_columns (msticpy.transform.proc_tree_schema.ProcSchema property)
required_fields() (msticpy.analysis.observationlist.Observation class method)
required_params (msticpy.data.core.query_source.QuerySource property)
RES_MGMT_URIS (msticpy.auth.keyvault_settings.KeyVaultSettings attribute)
resolve_cloud_alias() (msticpy.auth.cloud_mappings.AzureCloudConfig static method)
resolve_param_aliases() (msticpy.data.core.query_source.QuerySource method)
resolve_pkg_path() (in module msticpy.common.utility.package)
RESOURCE_GROUP (msticpy.common.wsconfig.WorkspaceConfig attribute)
ResourceGraph (msticpy.data.core.query_defns.DataEnvironment attribute)
(msticpy.data.core.query_defns.DataFamily attribute)
ResourceGraphDriver (class in msticpy.data.drivers.resource_graph_driver)
ResourceGroup (msticpy.datamodel.entities.azure_resource.AzureResource property)
ResourceId (msticpy.datamodel.entities.azure_resource.AzureResource attribute)
ResourceIdParts (msticpy.datamodel.entities.azure_resource.AzureResource attribute)
result (msticpy.config.mp_config_control.ValidationResult attribute)
return_raw_output (msticpy.init.pivot_core.pivot_register.PivotRegistration attribute)
RiskLevel (msticpy.datamodel.entities.mailbox.Mailbox attribute)
risky_cmd_line() (in module msticpy.transform.cmd_line)
run() (msticpy.init.pivot_core.pivot_pd_accessor.PivotAccessor method)
(msticpy.init.pivot_core.pivot_pipeline.Pipeline method)
run_txt2df() (in module msticpy.init.pivot_core.pivot_magic_core)
S
save_ctrl_values() (msticpy.config.mp_config_control.MpConfigControls method)
schema (msticpy.analysis.observationlist.Observation attribute)
(msticpy.data.core.data_providers.QueryProvider property)
(msticpy.data.drivers.cybereason_driver.CybereasonDriver property)
(msticpy.data.drivers.driver_base.DriverBase property)
(msticpy.data.drivers.elastic_driver.ElasticDriver property)
(msticpy.data.drivers.kql_driver.KqlDriver property)
(msticpy.data.drivers.kusto_driver.KustoDriver property)
(msticpy.data.drivers.local_data_driver.LocalDataDriver property)
(msticpy.data.drivers.mdatp_driver.MDATPDriver property)
(msticpy.data.drivers.mordor_driver.MordorDriver property)
(msticpy.data.drivers.odata_driver.OData property)
(msticpy.data.drivers.resource_graph_driver.ResourceGraphDriver property)
(msticpy.data.drivers.security_graph_driver.SecurityGraphDriver property)
(msticpy.data.drivers.splunk_driver.SplunkDriver property)
(msticpy.data.drivers.sumologic_driver.SumologicDriver property)
schema_tables (msticpy.data.core.data_providers.QueryProvider property)
score (msticpy.analysis.observationlist.Observation attribute)
score_and_visualise_sessions() (in module msticpy.analysis.anomalous_sequence.anomalous)
score_sessions() (in module msticpy.analysis.anomalous_sequence.anomalous)
search() (msticpy.data.core.data_providers.QueryProvider method)
search_for_file() (in module msticpy.common.utility.package)
search_items (msticpy.data.core.query_store.QueryStore property)
search_mdr_data() (in module msticpy.data.drivers.mordor_driver)
search_module() (in module msticpy.common.utility.package)
search_name() (in module msticpy.common.utility.package)
search_queries() (msticpy.data.drivers.mordor_driver.MordorDriver method)
SECOND (msticpy.nbwidgets.core.TimeUnit attribute)
secrets (msticpy.auth.keyvault_client.BHKeyVaultClient property)
SecretsClient (class in msticpy.auth.secret_settings)
SecurityAlert (class in msticpy.nbtools.security_alert)
(msticpy.data.core.query_defns.DataFamily attribute)
SecurityBase (class in msticpy.nbtools.security_base)
SecurityEvent (class in msticpy.nbtools.security_event)
SecurityGraph (msticpy.data.core.query_defns.DataEnvironment attribute)
SecurityGraphAlert (msticpy.data.core.query_defns.DataFamily attribute)
SecurityGraphDriver (class in msticpy.data.drivers.security_graph_driver)
SecurityGroup (class in msticpy.datamodel.entities.security_group)
SelectAlert (class in msticpy.nbwidgets.select_alert)
selected_alert (msticpy.nbwidgets.select_alert.AlertSelector attribute)
(msticpy.nbwidgets.select_alert.SelectAlert attribute)
selected_items (msticpy.nbwidgets.select_subset.SelectSubset property)
selected_values (msticpy.nbwidgets.select_subset.SelectSubset property)
SelectItem (class in msticpy.nbwidgets.select_item)
SelectString (class in msticpy.nbwidgets.select_item)
SelectSubset (class in msticpy.nbwidgets.select_subset)
Sender (msticpy.datamodel.entities.mail_message.MailMessage attribute)
(msticpy.datamodel.entities.submission_mail.SubmissionMail attribute)
SenderIP (msticpy.datamodel.entities.mail_message.MailMessage attribute)
SenderIp (msticpy.datamodel.entities.submission_mail.SubmissionMail attribute)
SentinelAlert (class in msticpy.datamodel.soc.sentinel_alert)
SerialNumber (msticpy.datamodel.entities.iot_device.IoTDevice attribute)
service_queries (msticpy.data.drivers.cybereason_driver.CybereasonDriver property)
(msticpy.data.drivers.driver_base.DriverBase property)
(msticpy.data.drivers.elastic_driver.ElasticDriver property)
(msticpy.data.drivers.kql_driver.KqlDriver property)
(msticpy.data.drivers.kusto_driver.KustoDriver property)
(msticpy.data.drivers.local_data_driver.LocalDataDriver property)
(msticpy.data.drivers.mdatp_driver.MDATPDriver property)
(msticpy.data.drivers.mordor_driver.MordorDriver property)
(msticpy.data.drivers.odata_driver.OData property)
(msticpy.data.drivers.resource_graph_driver.ResourceGraphDriver property)
(msticpy.data.drivers.security_graph_driver.SecurityGraphDriver property)
(msticpy.data.drivers.splunk_driver.SplunkDriver property)
(msticpy.data.drivers.sumologic_driver.SumologicDriver property)
SessionId (msticpy.datamodel.entities.cloud_logon_session.CloudLogonSession attribute)
(msticpy.datamodel.entities.host_logon_session.HostLogonSession attribute)
sessionize_data() (in module msticpy.analysis.anomalous_sequence.sessionize)
SessionType (class in msticpy.analysis.anomalous_sequence.model)
set_axes_and_grids() (in module msticpy.vis.timeline_common)
set_config() (in module msticpy.common.pkg_config)
set_control() (msticpy.config.mp_config_control.MpConfigControls method)
set_help() (msticpy.config.comp_edit.CompEditHelp method)
set_secret() (msticpy.auth.keyring_client.KeyringClient method)
(msticpy.auth.keyvault_client.BHKeyVaultClient method)
set_status() (msticpy.config.ce_azure.CEAzure method)
(msticpy.config.ce_simple_settings.CESimpleSettings method)
(msticpy.config.comp_edit.CEItemsBase method)
(msticpy.config.comp_edit.CompEditFrame method)
(msticpy.config.comp_edit.CompEditItems method)
(msticpy.config.comp_edit.CompEditSimple method)
(msticpy.config.comp_edit.CompEditStatusMixin method)
set_tab() (msticpy.config.comp_edit.CompEditTabs method)
set_time() (msticpy.nbwidgets.query_time.QueryTime method)
set_token() (msticpy.auth.cred_wrapper.CredentialWrapper method)
set_unit_testing() (in module msticpy.common.utility.package)
set_value() (msticpy.config.mp_config_control.MpConfigControls method)
setdefault() (msticpy.analysis.anomalous_sequence.utils.data_structures.StateMatrix method)
(msticpy.common.provider_settings.ProviderArgs method)
SettingsControl (class in msticpy.config.comp_edit)
Severity (msticpy.datamodel.entities.alert.Alert attribute)
(msticpy.datamodel.soc.sentinel_alert.SentinelAlert attribute)
SHA1 (msticpy.datamodel.entities.entity_enums.Algorithm attribute)
Sha1 (msticpy.datamodel.entities.file.File attribute)
sha1 (msticpy.transform.base64unpack.BinaryRecord attribute)
sha1_hash (msticpy.transform.iocextract.IoCType attribute)
SHA1_REGEX (msticpy.transform.iocextract.IoCExtract attribute)
SHA256 (msticpy.datamodel.entities.entity_enums.Algorithm attribute)
Sha256 (msticpy.datamodel.entities.file.File attribute)
sha256 (msticpy.transform.base64unpack.BinaryRecord attribute)
sha256_hash (msticpy.transform.iocextract.IoCType attribute)
SHA256_REGEX (msticpy.transform.iocextract.IoCExtract attribute)
SHA256AC (msticpy.datamodel.entities.entity_enums.Algorithm attribute)
Sha256Ac (msticpy.datamodel.entities.file.File attribute)
short_name (msticpy.datamodel.entities.entity_enums.RegistryHive property)
(msticpy.init.pivot_init.pivot_data_queries.PivQuerySettings attribute)
show() (msticpy.nbwidgets.progress.Progress method)
Sid (msticpy.datamodel.entities.account.Account attribute)
SID (msticpy.datamodel.entities.security_group.SecurityGroup attribute)
signed_session() (msticpy.auth.cred_wrapper.CredentialWrapper method)
simulation (msticpy.data.drivers.mordor_driver.MordorEntry attribute)
singleton() (in module msticpy.common.utility.types)
SingletonArgsClass (class in msticpy.common.utility.types)
SingletonClass (class in msticpy.common.utility.types)
size (msticpy.vis.timeline.PlotParams attribute)
sort() (msticpy.init.pivot_core.pivot_pd_accessor.PivotAccessor method)
Source (msticpy.datamodel.entities.iot_device.IoTDevice attribute)
(msticpy.datamodel.entities.mail_cluster.MailCluster attribute)
source_columns (msticpy.vis.timeline.PlotParams attribute)
(msticpy.vis.timeline_duration.PlotParams attribute)
(msticpy.vis.timeline_values.PlotParams attribute)
source_index (msticpy.transform.proc_tree_schema.ColNames attribute)
source_index_par (msticpy.transform.proc_tree_schema.ColNames attribute)
SourceAddress (msticpy.datamodel.entities.network_connection.NetworkConnection attribute)
SourcePort (msticpy.datamodel.entities.network_connection.NetworkConnection attribute)
SourceRef (msticpy.datamodel.entities.iot_device.IoTDevice attribute)
Splunk (msticpy.data.core.query_defns.DataEnvironment attribute)
(msticpy.data.core.query_defns.DataFamily attribute)
SplunkDriver (class in msticpy.data.drivers.splunk_driver)
SplunkUploader (class in msticpy.data.uploaders.splunk_uploader)
src_class (msticpy.init.pivot_core.pivot_register.PivotRegistration attribute)
src_config_entry (msticpy.init.pivot_core.pivot_register.PivotRegistration attribute)
src_config_path (msticpy.init.pivot_core.pivot_register.PivotRegistration attribute)
src_func_name (msticpy.init.pivot_core.pivot_register.PivotRegistration attribute)
src_module (msticpy.init.pivot_core.pivot_register.PivotRegistration attribute)
start (msticpy.common.timespan.TimeSpan property)
(msticpy.nbwidgets.query_time.QueryTime property)
StartTime (msticpy.datamodel.entities.cloud_logon_session.CloudLogonSession attribute)
StartTimeUtc (msticpy.datamodel.entities.alert.Alert attribute)
(msticpy.datamodel.entities.host_logon_session.HostLogonSession attribute)
(msticpy.datamodel.soc.sentinel_alert.SentinelAlert attribute)
State (msticpy.datamodel.entities.geo_location.GeoLocation attribute)
StateMatrix (class in msticpy.analysis.anomalous_sequence.utils.data_structures)
status (msticpy.config.mp_config_control.ValidationResult attribute)
step_type (msticpy.init.pivot_core.pivot_pipeline.PipelineExecStep attribute)
(msticpy.init.pivot_core.pivot_pipeline.PipelineStep attribute)
string_empty() (in module msticpy.common.utility.format)
Subject (msticpy.datamodel.entities.mail_message.MailMessage attribute)
(msticpy.datamodel.entities.submission_mail.SubmissionMail attribute)
SubmissionDate (msticpy.datamodel.entities.submission_mail.SubmissionMail attribute)
SubmissionId (msticpy.datamodel.entities.submission_mail.SubmissionMail attribute)
SubmissionMail (class in msticpy.datamodel.entities.submission_mail)
Submitter (msticpy.datamodel.entities.submission_mail.SubmissionMail attribute)
subscription_filter() (msticpy.nbtools.security_alert.SecurityAlert method)
(msticpy.nbtools.security_base.SecurityBase method)
(msticpy.nbtools.security_event.SecurityEvent method)
SUBSCRIPTION_ID (msticpy.common.wsconfig.WorkspaceConfig attribute)
SubscriptionId (msticpy.datamodel.entities.azure_resource.AzureResource property)
suffix (msticpy.auth.cloud_mappings.AzureCloudConfig property)
suffixes (msticpy.auth.cloud_mappings.AzureCloudConfig property)
Sumologic (msticpy.data.core.query_defns.DataEnvironment attribute)
(msticpy.data.core.query_defns.DataFamily attribute)
SumologicDriver (class in msticpy.data.drivers.sumologic_driver)
SystemAlertIds (msticpy.datamodel.entities.alert.Alert attribute)
(msticpy.datamodel.soc.sentinel_alert.SentinelAlert attribute)
T
tab_controls (msticpy.config.comp_edit.CompEditTabs property)
tab_names (msticpy.config.comp_edit.CompEditTabs property)
table (msticpy.init.pivot_init.pivot_data_queries.QueryParams attribute)
tactics_full (msticpy.data.drivers.mordor_driver.MitreAttack property)
tags (msticpy.analysis.observationlist.Observation attribute)
(msticpy.data.drivers.mordor_driver.MordorEntry attribute)
target_logon_id (msticpy.transform.proc_tree_schema.ProcSchema attribute)
technique_desc (msticpy.data.drivers.mordor_driver.MitreAttack property)
technique_name (msticpy.data.drivers.mordor_driver.MitreAttack property)
technique_uri (msticpy.data.drivers.mordor_driver.MitreAttack property)
tee() (msticpy.init.pivot_core.pivot_pd_accessor.PivotAccessor method)
tee_exec() (msticpy.init.pivot_core.pivot_pd_accessor.PivotAccessor method)
TENANT_ID (msticpy.common.wsconfig.WorkspaceConfig attribute)
testing (msticpy.config.ce_azure.CEAzure attribute)
(msticpy.config.ce_simple_settings.CESimpleSettings attribute)
(msticpy.config.comp_edit.CEItemsBase attribute)
(msticpy.config.comp_edit.CompEditFrame attribute)
(msticpy.config.comp_edit.CompEditItems attribute)
(msticpy.config.comp_edit.CompEditSimple attribute)
(msticpy.config.comp_edit.CompEditStatusMixin attribute)
text (msticpy.init.pivot_core.pivot_pipeline.PipelineExecStep attribute)
ThreatDescription (msticpy.datamodel.entities.threat_intelligence.Threatintelligence attribute)
ThreatDetectionMethods (msticpy.datamodel.entities.mail_message.MailMessage attribute)
Threatintelligence (class in msticpy.datamodel.entities.threat_intelligence)
ThreatIntelligence (msticpy.datamodel.entities.ip_address.IpAddress attribute)
ThreatName (msticpy.datamodel.entities.threat_intelligence.Threatintelligence attribute)
Threats (msticpy.datamodel.entities.mail_cluster.MailCluster attribute)
(msticpy.datamodel.entities.mail_message.MailMessage attribute)
ThreatType (msticpy.datamodel.entities.threat_intelligence.Threatintelligence attribute)
time_column (msticpy.analysis.observationlist.Observation attribute)
(msticpy.vis.timeline.PlotParams attribute)
(msticpy.vis.timeline_values.PlotParams attribute)
time_span (msticpy.analysis.observationlist.Observation attribute)
time_stamp (msticpy.transform.proc_tree_schema.ProcSchema attribute)
TimeLineAccessor (class in msticpy.vis.timeline_pd_accessor)
TimeSpan (class in msticpy.common.timespan)
timespan (msticpy.nbwidgets.query_time.QueryTime property)
timestamp (msticpy.analysis.observationlist.Observation attribute)
Timestamp (msticpy.datamodel.entities.submission_mail.SubmissionMail attribute)
timestamp_orig_par (msticpy.transform.proc_tree_schema.ColNames attribute)
TimeUnit (class in msticpy.nbwidgets.core)
title (msticpy.data.drivers.mordor_driver.MordorEntry attribute)
(msticpy.vis.timeline.PlotParams attribute)
(msticpy.vis.timeline_duration.PlotParams attribute)
(msticpy.vis.timeline_values.PlotParams attribute)
to_df() (msticpy.vis.entity_graph_tools.EntityGraph method)
to_html() (msticpy.datamodel.entities.account.Account method)
(msticpy.datamodel.entities.alert.Alert method)
(msticpy.datamodel.entities.azure_resource.AzureResource method)
(msticpy.datamodel.entities.cloud_application.CloudApplication method)
(msticpy.datamodel.entities.cloud_logon_session.CloudLogonSession method)
(msticpy.datamodel.entities.dns.Dns method)
(msticpy.datamodel.entities.entity.Entity method)
(msticpy.datamodel.entities.file.File method)
(msticpy.datamodel.entities.file_hash.FileHash method)
(msticpy.datamodel.entities.geo_location.GeoLocation method)
(msticpy.datamodel.entities.host.Host method)
(msticpy.datamodel.entities.host_logon_session.HostLogonSession method)
(msticpy.datamodel.entities.iot_device.IoTDevice method)
(msticpy.datamodel.entities.ip_address.IpAddress method)
(msticpy.datamodel.entities.mail_cluster.MailCluster method)
(msticpy.datamodel.entities.mail_message.MailMessage method)
(msticpy.datamodel.entities.mailbox.Mailbox method)
(msticpy.datamodel.entities.malware.Malware method)
(msticpy.datamodel.entities.network_connection.NetworkConnection method)
(msticpy.datamodel.entities.process.Process method)
(msticpy.datamodel.entities.registry_key.RegistryKey method)
(msticpy.datamodel.entities.registry_value.RegistryValue method)
(msticpy.datamodel.entities.security_group.SecurityGroup method)
(msticpy.datamodel.entities.submission_mail.SubmissionMail method)
(msticpy.datamodel.entities.threat_intelligence.Threatintelligence method)
(msticpy.datamodel.entities.unknown_entity.UnknownEntity method)
(msticpy.datamodel.entities.url.Url method)
(msticpy.datamodel.soc.incident.Incident method)
(msticpy.datamodel.soc.sentinel_alert.SentinelAlert method)
(msticpy.nbtools.security_alert.SecurityAlert method)
(msticpy.nbtools.security_base.SecurityBase method)
(msticpy.nbtools.security_event.SecurityEvent method)
to_json() (msticpy.datamodel.entities.account.Account method)
(msticpy.datamodel.entities.alert.Alert method)
(msticpy.datamodel.entities.azure_resource.AzureResource method)
(msticpy.datamodel.entities.cloud_application.CloudApplication method)
(msticpy.datamodel.entities.cloud_logon_session.CloudLogonSession method)
(msticpy.datamodel.entities.dns.Dns method)
(msticpy.datamodel.entities.entity.Entity method)
(msticpy.datamodel.entities.file.File method)
(msticpy.datamodel.entities.file_hash.FileHash method)
(msticpy.datamodel.entities.geo_location.GeoLocation method)
(msticpy.datamodel.entities.host.Host method)
(msticpy.datamodel.entities.host_logon_session.HostLogonSession method)
(msticpy.datamodel.entities.iot_device.IoTDevice method)
(msticpy.datamodel.entities.ip_address.IpAddress method)
(msticpy.datamodel.entities.mail_cluster.MailCluster method)
(msticpy.datamodel.entities.mail_message.MailMessage method)
(msticpy.datamodel.entities.mailbox.Mailbox method)
(msticpy.datamodel.entities.malware.Malware method)
(msticpy.datamodel.entities.network_connection.NetworkConnection method)
(msticpy.datamodel.entities.process.Process method)
(msticpy.datamodel.entities.registry_key.RegistryKey method)
(msticpy.datamodel.entities.registry_value.RegistryValue method)
(msticpy.datamodel.entities.security_group.SecurityGroup method)
(msticpy.datamodel.entities.submission_mail.SubmissionMail method)
(msticpy.datamodel.entities.threat_intelligence.Threatintelligence method)
(msticpy.datamodel.entities.unknown_entity.UnknownEntity method)
(msticpy.datamodel.entities.url.Url method)
(msticpy.datamodel.soc.incident.Incident method)
(msticpy.datamodel.soc.sentinel_alert.SentinelAlert method)
to_networkx() (msticpy.datamodel.entities.account.Account method)
(msticpy.datamodel.entities.alert.Alert method)
(msticpy.datamodel.entities.azure_resource.AzureResource method)
(msticpy.datamodel.entities.cloud_application.CloudApplication method)
(msticpy.datamodel.entities.cloud_logon_session.CloudLogonSession method)
(msticpy.datamodel.entities.dns.Dns method)
(msticpy.datamodel.entities.entity.Entity method)
(msticpy.datamodel.entities.file.File method)
(msticpy.datamodel.entities.file_hash.FileHash method)
(msticpy.datamodel.entities.geo_location.GeoLocation method)
(msticpy.datamodel.entities.host.Host method)
(msticpy.datamodel.entities.host_logon_session.HostLogonSession method)
(msticpy.datamodel.entities.iot_device.IoTDevice method)
(msticpy.datamodel.entities.ip_address.IpAddress method)
(msticpy.datamodel.entities.mail_cluster.MailCluster method)
(msticpy.datamodel.entities.mail_message.MailMessage method)
(msticpy.datamodel.entities.mailbox.Mailbox method)
(msticpy.datamodel.entities.malware.Malware method)
(msticpy.datamodel.entities.network_connection.NetworkConnection method)
(msticpy.datamodel.entities.process.Process method)
(msticpy.datamodel.entities.registry_key.RegistryKey method)
(msticpy.datamodel.entities.registry_value.RegistryValue method)
(msticpy.datamodel.entities.security_group.SecurityGroup method)
(msticpy.datamodel.entities.submission_mail.SubmissionMail method)
(msticpy.datamodel.entities.threat_intelligence.Threatintelligence method)
(msticpy.datamodel.entities.unknown_entity.UnknownEntity method)
(msticpy.datamodel.entities.url.Url method)
(msticpy.datamodel.soc.incident.Incident method)
(msticpy.datamodel.soc.sentinel_alert.SentinelAlert method)
to_yaml() (msticpy.init.pivot_core.pivot_pipeline.Pipeline method)
token (msticpy.auth.msal_auth.MSALDelegatedAuth property)
token_count() (in module msticpy.analysis.eventcluster)
token_count_df() (in module msticpy.analysis.eventcluster)
token_uri (msticpy.auth.cloud_mappings.AzureCloudConfig property)
train() (msticpy.analysis.anomalous_sequence.model.Model method)
txt_to_dict() (in module msticpy.config.ce_common)
type (msticpy.data.drivers.mordor_driver.MordorEntry attribute)
(msticpy.init.pivot_init.pivot_data_queries.ParamAttrs attribute)
U
unescape_windows_path() (in module msticpy.common.utility.format)
unit_testing() (in module msticpy.common.utility.package)
units (msticpy.nbwidgets.query_time.QueryTime property)
Unknown (msticpy.data.core.query_defns.DataEnvironment attribute)
(msticpy.data.core.query_defns.DataFamily attribute)
(msticpy.datamodel.entities.entity_enums.Algorithm attribute)
unknown (msticpy.transform.iocextract.IoCType attribute)
UnknownEntity (class in msticpy.datamodel.entities.unknown_entity)
unpack() (in module msticpy.transform.base64unpack)
unpack_auditd() (in module msticpy.transform.auditdextract)
unpack_df() (in module msticpy.transform.base64unpack)
unpack_items() (in module msticpy.transform.base64unpack)
update() (msticpy.analysis.anomalous_sequence.utils.data_structures.StateMatrix method)
(msticpy.common.provider_settings.ProviderArgs method)
update_progress() (msticpy.nbwidgets.progress.Progress method)
upload_df() (msticpy.data.uploaders.loganalytics_uploader.LAUploader method)
(msticpy.data.uploaders.splunk_uploader.SplunkUploader method)
(msticpy.data.uploaders.uploader_base.UploaderBase method)
upload_file() (msticpy.data.uploaders.loganalytics_uploader.LAUploader method)
(msticpy.data.uploaders.splunk_uploader.SplunkUploader method)
(msticpy.data.uploaders.uploader_base.UploaderBase method)
upload_folder() (msticpy.data.uploaders.loganalytics_uploader.LAUploader method)
(msticpy.data.uploaders.splunk_uploader.SplunkUploader method)
(msticpy.data.uploaders.uploader_base.UploaderBase method)
upload_to_blob() (msticpy.data.storage.azure_blob_storage.AzureBlobStorage method)
UploaderBase (class in msticpy.data.uploaders.uploader_base)
Upn (msticpy.datamodel.entities.mailbox.Mailbox attribute)
UPNSuffix (msticpy.datamodel.entities.account.Account attribute)
Url (class in msticpy.datamodel.entities.url)
(msticpy.datamodel.entities.url.Url attribute)
url (msticpy.transform.iocextract.IoCType attribute)
URL_DF_REGEX (msticpy.transform.iocextract.IoCExtract attribute)
URL_REGEX (msticpy.transform.iocextract.IoCExtract attribute)
Urls (msticpy.datamodel.entities.mail_message.MailMessage attribute)
user_id (msticpy.transform.proc_tree_schema.ProcSchema attribute)
user_name (msticpy.transform.proc_tree_schema.ProcSchema attribute)
UserAgent (msticpy.datamodel.entities.cloud_logon_session.CloudLogonSession attribute)
V
valid_pyname() (in module msticpy.common.utility.format)
validate() (msticpy.data.core.query_source.QuerySource method)
(msticpy.transform.iocextract.IoCExtract method)
validate_all_settings() (msticpy.config.mp_config_control.MpConfigControls method)
validate_config() (in module msticpy.common.pkg_config)
validate_query_defs() (in module msticpy.data.core.data_query_reader)
validate_setting() (msticpy.config.mp_config_control.MpConfigControls method)
ValidationResult (class in msticpy.config.mp_config_control)
value (msticpy.config.comp_edit.SettingsControl property)
Value (msticpy.datamodel.entities.file_hash.FileHash attribute)
(msticpy.datamodel.entities.registry_value.RegistryValue attribute)
value (msticpy.nbwidgets.get_environment_key.GetEnvironmentKey property)
(msticpy.nbwidgets.get_text.GetText property)
(msticpy.nbwidgets.lookback.Lookback property)
(msticpy.nbwidgets.option_buttons.OptionButtons attribute)
(msticpy.nbwidgets.progress.Progress property)
(msticpy.nbwidgets.query_time.QueryTime property)
(msticpy.nbwidgets.select_alert.AlertSelector property)
(msticpy.nbwidgets.select_alert.SelectAlert property)
(msticpy.nbwidgets.select_item.SelectItem property)
(msticpy.nbwidgets.select_item.SelectString property)
(msticpy.nbwidgets.select_subset.SelectSubset property)
values() (msticpy.analysis.anomalous_sequence.utils.data_structures.StateMatrix method)
(msticpy.common.provider_settings.ProviderArgs method)
ValueType (msticpy.datamodel.entities.registry_value.RegistryValue attribute)
vault_name (msticpy.auth.keyvault_client.BHKeyVaultClient property)
VendorName (msticpy.datamodel.entities.alert.Alert attribute)
(msticpy.datamodel.soc.sentinel_alert.SentinelAlert attribute)
visualise_scored_sessions() (in module msticpy.analysis.anomalous_sequence.anomalous)
W
WEEK (msticpy.nbwidgets.core.TimeUnit attribute)
widget_to_py() (in module msticpy.config.ce_common)
width (msticpy.vis.timeline.PlotParams attribute)
(msticpy.vis.timeline_duration.PlotParams attribute)
(msticpy.vis.timeline_values.PlotParams attribute)
Windows (msticpy.datamodel.entities.entity_enums.OSFamily attribute)
windows_path (msticpy.transform.iocextract.IoCType attribute)
WindowsSecurity (msticpy.data.core.query_defns.DataFamily attribute)
WINPATH_REGEX (msticpy.transform.iocextract.IoCExtract attribute)
with_traceback() (msticpy.common.exceptions.MsticpyAzureConfigError method)
(msticpy.common.exceptions.MsticpyAzureConnectionError method)
(msticpy.common.exceptions.MsticpyConfigException method)
(msticpy.common.exceptions.MsticpyConnectionError method)
(msticpy.common.exceptions.MsticpyDataQueryError method)
(msticpy.common.exceptions.MsticpyException method)
(msticpy.common.exceptions.MsticpyImportExtraError method)
(msticpy.common.exceptions.MsticpyKeyVaultConfigError method)
(msticpy.common.exceptions.MsticpyKeyVaultMissingSecretError method)
(msticpy.common.exceptions.MsticpyKqlConnectionError method)
(msticpy.common.exceptions.MsticpyMissingDependencyError method)
(msticpy.common.exceptions.MsticpyNoDataSourceError method)
(msticpy.common.exceptions.MsticpyNotConnectedError method)
(msticpy.common.exceptions.MsticpyParameterError method)
(msticpy.common.exceptions.MsticpyResourceException method)
(msticpy.common.exceptions.MsticpyUserConfigError method)
(msticpy.common.exceptions.MsticpyUserError method)
(msticpy.transform.proc_tree_schema.ProcessTreeSchemaException method)
WORKSPACE_ID (msticpy.common.wsconfig.WorkspaceConfig attribute)
WORKSPACE_NAME (msticpy.common.wsconfig.WorkspaceConfig attribute)
WorkspaceConfig (class in msticpy.common.wsconfig)
X
xgrid (msticpy.vis.timeline.PlotParams attribute)
(msticpy.vis.timeline_duration.PlotParams attribute)
(msticpy.vis.timeline_values.PlotParams attribute)
Y
yaxis (msticpy.vis.timeline.PlotParams attribute)
(msticpy.vis.timeline_duration.PlotParams attribute)
(msticpy.vis.timeline_values.PlotParams attribute)
ygrid (msticpy.vis.timeline.PlotParams attribute)
(msticpy.vis.timeline_duration.PlotParams attribute)
(msticpy.vis.timeline_values.PlotParams attribute)
ylabel_cols (msticpy.vis.timeline.PlotParams attribute)
(msticpy.vis.timeline_duration.PlotParams attribute)
(msticpy.vis.timeline_values.PlotParams attribute)
Read the Docs
v: v2.3.0
Versions
latest
stable
v2.3.0
v2.2.0
v2.1.0
v2.0.0
v1.8.0
v1.7.5
v1.7.0
v1.6.1
v1.5.0
v1.4.0
v1.3.0
v1.2.1
v1.1.0
v1.0.0
release-msticpy-v2.0.0
Downloads
On Read the Docs
Project Home
Builds