Sean

yara-scanner

Last released on Jan 18, 2021

A Python wrapper library for libyara and a local server for fully utilizing the CPUs of the system to scan with yara.

ace-metrics

Last released on Jan 4, 2021

A lib for measuring ACE based IDR operations.

urlfinderlib

Last released on Dec 4, 2020

Library to find URLs and check their validity.

ip-inspector

Last released on Jul 11, 2020

A tool for proving intel on IP addresses and enabling detection and response.

msgapi

Last released on Apr 23, 2020

A library and cli tool for interfacing with Microsoft's Graph API.

sipwhitelist

Last released on Jan 5, 2020

Library that interacts with SIP to build an indicator whitelist system.

phishfry

Last released on Jan 3, 2020

Python library and command line tool for removing/restoring emails in office365/Exchange using EWS API

falcon-sandbox

Last released on Dec 6, 2019

Python client library and command line tool for the [Falcon Sandbox API](https://www.falcon-sandbox.com/docs/api/v2).

gglsbl-rest-client

Last released on Oct 17, 2019

This is a simple python client wrapper for the [gglsbl-rest](https://github.com/mlsecproject/gglsbl-rest) service.

lerc-control

Last released on Oct 7, 2019

Libraries and utilities for controling and working with Live Endpoint Response Clients.

RotL

Last released on Jun 25, 2019

A simple utility for converting files that describe malware infections into remediation scripts that can clean up infections using native OS tools.

cbinterface

Last released on Jun 18, 2019

command line tool for interfacing with multiple carbonblack environments to perform analysis and live response functions

pysip

Last released on Jun 4, 2019

A thin wrapper around requests to interact with the Simple Intel Platform (SIP).

ace-api

Last released on Mar 7, 2019

Analysis Correlation Engine (ACE) API Python Bindings.

msoffice-decrypt

Last released on Jan 28, 2019

Python tool and library for decrypting encrypted MS Office files with a password

critswhitelist

Last released on Sep 4, 2018

Library that interacts with CRITS to build an indicator whitelist system.

critsapi

Last released on Aug 30, 2018

Library to interface with the CRITs API and raw MongoDB

c-cbinterface

Last released on Aug 22, 2018

command line tool for interfacing with multiple carbonblack environments to perform analysis and live response functions

officeparser

Last released on Aug 20, 2018

A python script that parses the format of OLE compound documents used by Microsoft Office applications.

vxstreamlib

Last released on Aug 9, 2018

A simple library to work with a local instance of VxStream.

splunklib

Last released on Aug 8, 2018

A simple library for performing splunk search automation.