Tools for the Computer Incident Response Team 💻
-
Updated
Apr 17, 2017 - Python
Tools for the Computer Incident Response Team 💻
Multithreaded threat Intelligence gathering built with Python3
Carbon Black - JoeSandbox Binary Detonation Connector
cb-runner is an experimental Python program to run automated actions via Carbon Black Live Response. The actions are stored in a simple CSV format and can be applied to a single device or list of devices.
A tool to fuel your Carbon Black servers with threat intelligence
This pack is targeted for collections of Carbon Black events
Collection of scripts for use with Carbon Black Cb Response API
Electron app that downloads data from Carbon Black Defense and exports to CSV file
Utilizing your Threat data from a MISP instance into CarbonBlack Response by exposing the data in the Threat Intelligence Feed.
Management scripts for Carbon Black AppControl (Protection/Bit9).
This repo contains scripts that utilizes Carbon Black EDR for boosting its IR and detection cababilities
event shipper for Carbon Black Defense notifications
Carbon Black Cloud Events extractor
This project shows a graphical view of the process executions relationship in a tree format (HTML version)
Clojure Library for interacting with Carbon Black Response APIs
Carbon Black API - Python language bindings
Add a description, image, and links to the carbonblack topic page so that developers can more easily learn about it.
To associate your repository with the carbonblack topic, visit your repo's landing page and select "manage topics."