LICENSE
MANIFEST.in
NOTICE.txt
README.md
requirements-dev.txt
requirements.txt
setup.py
msticpy/__init__.py
msticpy/_version.py
msticpy/msticpyconfig.yaml
msticpy.egg-info/PKG-INFO
msticpy.egg-info/SOURCES.txt
msticpy.egg-info/dependency_links.txt
msticpy.egg-info/not-zip-safe
msticpy.egg-info/requires.txt
msticpy.egg-info/top_level.txt
msticpy/analysis/__init__.py
msticpy/analysis/cluster_auditd.py
msticpy/analysis/eventcluster.py
msticpy/analysis/outliers.py
msticpy/analysis/timeseries.py
msticpy/analysis/anomalous_sequence/__init__.py
msticpy/analysis/anomalous_sequence/anomalous.py
msticpy/analysis/anomalous_sequence/model.py
msticpy/analysis/anomalous_sequence/sessionize.py
msticpy/analysis/anomalous_sequence/utils/__init__.py
msticpy/analysis/anomalous_sequence/utils/cmds_only.py
msticpy/analysis/anomalous_sequence/utils/cmds_params_only.py
msticpy/analysis/anomalous_sequence/utils/cmds_params_values.py
msticpy/analysis/anomalous_sequence/utils/data_structures.py
msticpy/analysis/anomalous_sequence/utils/laplace_smooth.py
msticpy/analysis/anomalous_sequence/utils/probabilities.py
msticpy/common/__init__.py
msticpy/common/azure_auth.py
msticpy/common/azure_auth_core.py
msticpy/common/check_version.py
msticpy/common/cloud_mappings.py
msticpy/common/cred_wrapper.py
msticpy/common/exceptions.py
msticpy/common/keyvault_client.py
msticpy/common/keyvault_settings.py
msticpy/common/pkg_config.py
msticpy/common/provider_settings.py
msticpy/common/secret_settings.py
msticpy/common/timespan.py
msticpy/common/utility.py
msticpy/common/wsconfig.py
msticpy/config/__init__.py
msticpy/config/ce_azure.py
msticpy/config/ce_azure_sentinel.py
msticpy/config/ce_common.py
msticpy/config/ce_data_providers.py
msticpy/config/ce_keyvault.py
msticpy/config/ce_other_providers.py
msticpy/config/ce_provider_base.py
msticpy/config/ce_simple_settings.py
msticpy/config/ce_ti_providers.py
msticpy/config/ce_user_defaults.py
msticpy/config/comp_edit.py
msticpy/config/compound_ctrls.py
msticpy/config/file_browser.py
msticpy/config/mp_config_control.py
msticpy/config/mp_config_edit.py
msticpy/config/mp_config_file.py
msticpy/data/__init__.py
msticpy/data/azure_blob_storage.py
msticpy/data/azure_data.py
msticpy/data/azure_sentinel.py
msticpy/data/data_obfus.py
msticpy/data/data_providers.py
msticpy/data/data_query_reader.py
msticpy/data/param_extractor.py
msticpy/data/query_container.py
msticpy/data/query_defns.py
msticpy/data/query_source.py
msticpy/data/query_store.py
msticpy/data/sql_to_kql.py
msticpy/data/browsers/__init__.py
msticpy/data/browsers/mordor_browser.py
msticpy/data/browsers/query_browser.py
msticpy/data/drivers/__init__.py
msticpy/data/drivers/driver_base.py
msticpy/data/drivers/kql_driver.py
msticpy/data/drivers/kusto_driver.py
msticpy/data/drivers/local_data_driver.py
msticpy/data/drivers/mdatp_driver.py
msticpy/data/drivers/mordor_driver.py
msticpy/data/drivers/odata_driver.py
msticpy/data/drivers/resource_graph_driver.py
msticpy/data/drivers/security_graph_driver.py
msticpy/data/drivers/splunk_driver.py
msticpy/data/drivers/sumologic_driver.py
msticpy/data/queries/graph_alerts.yaml
msticpy/data/queries/kql_mdatp_alerts.yaml
msticpy/data/queries/kql_mdatp_file.yaml
msticpy/data/queries/kql_mdatp_hunting.yaml
msticpy/data/queries/kql_mdatp_network.yaml
msticpy/data/queries/kql_mdatp_process.yaml
msticpy/data/queries/kql_mdatp_user.yaml
msticpy/data/queries/kql_sent_alert.yaml
msticpy/data/queries/kql_sent_az_dns.yaml
msticpy/data/queries/kql_sent_az_network.yaml
msticpy/data/queries/kql_sent_azure.yaml
msticpy/data/queries/kql_sent_azuresentinel.yaml
msticpy/data/queries/kql_sent_heartbeat_info.yaml
msticpy/data/queries/kql_sent_lxauditd.yaml
msticpy/data/queries/kql_sent_lxsyslog_activity.yaml
msticpy/data/queries/kql_sent_lxsyslog_apps.yaml
msticpy/data/queries/kql_sent_lxsyslog_logon.yaml
msticpy/data/queries/kql_sent_net.yaml
msticpy/data/queries/kql_sent_o365.yaml
msticpy/data/queries/kql_sent_threatintel.yaml
msticpy/data/queries/kql_sent_timeseries.yaml
msticpy/data/queries/kql_sent_winevent.yaml
msticpy/data/queries/kql_sent_winevent_logon.yaml
msticpy/data/queries/kql_sent_winevent_proc.yaml
msticpy/data/queries/local_data.yaml
msticpy/data/queries/resource_graph_queries.yaml
msticpy/data/queries/splunk_queries.yaml
msticpy/data/queries/sumologic_queries.yaml
msticpy/data/uploaders/__init__.py
msticpy/data/uploaders/loganalytics_uploader.py
msticpy/data/uploaders/splunk_uploader.py
msticpy/data/uploaders/uploader_base.py
msticpy/datamodel/__init__.py
msticpy/datamodel/pivot.py
msticpy/datamodel/pivot_browser.py
msticpy/datamodel/pivot_data_queries.py
msticpy/datamodel/pivot_magic_core.py
msticpy/datamodel/pivot_pd_accessor.py
msticpy/datamodel/pivot_pipeline.py
msticpy/datamodel/pivot_register.py
msticpy/datamodel/pivot_register_reader.py
msticpy/datamodel/pivot_ti_provider.py
msticpy/datamodel/txt_df_magic.py
msticpy/datamodel/entities/__init__.py
msticpy/datamodel/entities/account.py
msticpy/datamodel/entities/alert.py
msticpy/datamodel/entities/azure_resource.py
msticpy/datamodel/entities/cloud_application.py
msticpy/datamodel/entities/cloud_logon_session.py
msticpy/datamodel/entities/dns.py
msticpy/datamodel/entities/entity.py
msticpy/datamodel/entities/entity_enums.py
msticpy/datamodel/entities/entity_graph.py
msticpy/datamodel/entities/file.py
msticpy/datamodel/entities/file_hash.py
msticpy/datamodel/entities/geo_location.py
msticpy/datamodel/entities/graph_property.py
msticpy/datamodel/entities/host.py
msticpy/datamodel/entities/host_logon_session.py
msticpy/datamodel/entities/iot_device.py
msticpy/datamodel/entities/ip_address.py
msticpy/datamodel/entities/mail_cluster.py
msticpy/datamodel/entities/mail_message.py
msticpy/datamodel/entities/mailbox.py
msticpy/datamodel/entities/malware.py
msticpy/datamodel/entities/network_connection.py
msticpy/datamodel/entities/process.py
msticpy/datamodel/entities/registry_key.py
msticpy/datamodel/entities/registry_value.py
msticpy/datamodel/entities/security_group.py
msticpy/datamodel/entities/submission_mail.py
msticpy/datamodel/entities/threat_intelligence.py
msticpy/datamodel/entities/unknown_entity.py
msticpy/datamodel/entities/url.py
msticpy/datamodel/soc/__init__.py
msticpy/datamodel/soc/incident.py
msticpy/nbtools/__init__.py
msticpy/nbtools/azure_ml_tools.py
msticpy/nbtools/data_viewer.py
msticpy/nbtools/entityschema.py
msticpy/nbtools/foliummap.py
msticpy/nbtools/morph_charts.py
msticpy/nbtools/nbdisplay.py
msticpy/nbtools/nbinit.py
msticpy/nbtools/nbwidgets.py
msticpy/nbtools/observationlist.py
msticpy/nbtools/process_tree.py
msticpy/nbtools/security_alert.py
msticpy/nbtools/security_alert_graph.py
msticpy/nbtools/security_base.py
msticpy/nbtools/security_event.py
msticpy/nbtools/ti_browser.py
msticpy/nbtools/timeline.py
msticpy/nbtools/timeline_duration.py
msticpy/nbtools/timeline_pd_accessor.py
msticpy/nbtools/timeseries.py
msticpy/nbtools/user_config.py
msticpy/nbtools/utility.py
msticpy/nbtools/wsconfig.py
msticpy/resources/WinSecurityEvent.json
msticpy/resources/cmd_line_rules.json
msticpy/resources/mp_pivot_reg.yaml
msticpy/resources/mpconfig_defaults.yaml
msticpy/resources/obfuscation_cols.yaml
msticpy/sectools/__init__.py
msticpy/sectools/auditdextract.py
msticpy/sectools/base64unpack.py
msticpy/sectools/cmd_line.py
msticpy/sectools/domain_utils.py
msticpy/sectools/eventcluster.py
msticpy/sectools/geoip.py
msticpy/sectools/iocextract.py
msticpy/sectools/ip_utils.py
msticpy/sectools/proc_tree_build_mde.py
msticpy/sectools/proc_tree_build_winlx.py
msticpy/sectools/proc_tree_builder.py
msticpy/sectools/process_tree_utils.py
msticpy/sectools/sectools_magics.py
msticpy/sectools/syslog_utils.py
msticpy/sectools/tilookup.py
msticpy/sectools/vtlookup.py
msticpy/sectools/vtlookupv3.py
msticpy/sectools/tiproviders/__init__.py
msticpy/sectools/tiproviders/alienvault_otx.py
msticpy/sectools/tiproviders/azure_sent_byoti.py
msticpy/sectools/tiproviders/greynoise.py
msticpy/sectools/tiproviders/http_base.py
msticpy/sectools/tiproviders/ibm_xforce.py
msticpy/sectools/tiproviders/kql_base.py
msticpy/sectools/tiproviders/open_page_rank.py
msticpy/sectools/tiproviders/riskiq.py
msticpy/sectools/tiproviders/ti_provider_base.py
msticpy/sectools/tiproviders/tor_exit_nodes.py
msticpy/sectools/tiproviders/virustotal.py
msticpy/vis/__init__.py
msticpy/vis/entity_graph_tools.py
msticpy/vis/matrix_plot.py
msticpy/vis/mp_pandas_plot.py