Giters

ares-92310 / XDR_scripts

A few XDR Scripts

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

XDR_scripts

A few custom BIOC signature

A few XQL queries which can be used for widgets

A few XDR Scripts

ProcDump.py is as you might expect to run a ProcDump on a process pid. pid to be passed as argument. (this is not my code but from somebody I don't know )

fullmemorydump.py is as you might expect to run winpmem to get the entire memory dump for Forensic purpose.

A few XDR Collector Filebeat configurations

About

A few XDR Scripts

Languages

Language:Python 100.0%