Trellix Enterprise's repositories
mysql-audit
AUDIT Plugin for MySQL. See wiki and readme for description. If you find the plugin useful, please star us on GitHub. We love stars and it's a great way to show your feedback.
RTS-Queries
Practical Orientation Of MVISION EDR Query Language
ExpertRules
This repository contains a set of rules samples that can be directly used with Trellix Endpoint Security, in the Exploit Prevention policy.
ac3-threat-sightings
A threat sighting collects the behavior of a real threats and the observables used during its engagement.
mvision-edr-activity-feed
A command line tool to consume and subscribe to DXL events from MVISION EDR
postgresql-audit
Audit plugin for PostgreSQL database. See the wiki and README for descriptions. If you find the plugin useful, please star us on GitHub. We love stars and it's a great way to show your feedback.
EDR-Integration-Scripts
Trellix EDR Integration Scripts for MVision API