This is a collection of different McAfee MVISION EDR integration scripts. This includes:
McAfee MVISION EDR Action History: This is a script to retrieve the action history from MVISION EDR.
McAfee MVISION EDR Activity Feeds Script: This is a script to consume activity feeds from MVISION EDR. The script contains various modules to ingest trace data into e.g. ServiceNow, TheHive, Syslog or Email.
McAfee MVISION EDR Device Search: This is a script to query the device search in MVISION EDR.
McAfee MVISION EDR Real-Time-Search and Reaction Script: This is a collections of scripts that will start RTS for hashes or process and provides the ability to execute reactions.
McAfee MVISION EDR Threats: This is a script to retrieve the threat detections from MVISION EDR (Monitoring Dashboard).