Skip to content

Macmod/CrowdBehaviors

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

1 Commit
README.md
README.md
 
 
crowdbehaviors.py
crowdbehaviors.py
 
 
requirements.txt
requirements.txt
 
 

Repository files navigation

CrowdBehavior

A simple utility using FalconPy to print detection details from a CrowdStrike console as a readable table.

Usage

Install dependencies with pip:

$ pip install -r requirements.txt

Then just run:

$ python3 crowdbehaviors.py --client-id <YOUR_CLIENT_ID> --secret <YOUR_SECRET>

Optional Flags

  • --limit. Maximum number of detections to extract.
  • --offset. Offset for detections query.
  • --sort. Sorting criteria for detections query.
  • --filter. Filter to use for detections query.
  • --json. Dump detection objects as JSON instead of showing table of behaviors.
  • --detections-only. Show detections only - not their individual behaviors.

About

A simple utility to visualize detected behaviors from a CrowdStrike console.

Topics

security detection infosec crowdstrike edr falconpy

Resources

Readme
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases 1

v1.0.0 Latest
Apr 10, 2023

Packages

No packages published

Languages