Releases: microsoft/msticpy
Releases · microsoft/msticpy
Data Query Library
New Features
- Data query library supporting multiple data providers (kqlmagic, Odata...).
- Query definitions are stored in YAML files in data/queries. Allowing default parameters and replaceable parameters at runtime.
Fixes
- Updates to IocExtract and base64unpack.
Minor README/Setup Updates
New Features
- Updated README with links to documentation and sample notebooks.
- Added links to code and documentation in setup.py allowing links to appear in the PyPI repo side menu.
Fixes
- Fixed a broken project url in setup.py.
Sphinx Documentation
New Features
Adding Sphinx documentation for Read the docs
Numpy docstrings should now be used (almost) everywhere
Added function to kql.py execute simple kql string query.
Added function to auditdextract.py to read audit logs from file.
Added these HowTo docs to repo:
- Jupyter And Security
- Azure Sentinel and Jupyter
- Enabling Auditd on Linux in Azure Sentinel
Fixes
Fixing some errors in iocextract
Pylint and Flake8 warnings (mostly reducing line length to < 90)
Adding test cases and correcting linting warnings
New Features
Added observationlist module
Fixes
Fixing linting warnings.
Adding unittests test_event_cluster, test_observationlist, test_security_event + test data
Miscellaneous small fixes and improvements.
Adding documentation notebooks
New Features
Added several doc notebooks for components
Updated Readme.md
Initial refactoring of docstrings to use numpy standard format.
Additional unit tests.
Fixes
Fixing some bugs found while doing the documentation.