Pinned Repositories
amp-01-basics
Scripts that cover the basics of interacting with the AMP for Endpoints API
amp-05-health-checker-windows
amp-05-windows-tune
fp-05-firepower-cef-connector-arcsight
Cisco eStreamer client
fp-05-firepower-cli
Public Repo for an eStreamer CLI project
sxo-05-security-workflows
Workflows, atomic actions, and documentation for SecureX orchestration
tg-01-basics
Scripts that cover the basics of interacting with the Threat Grid API
tg-04-bulk-submit
Submit files in bulk to Threat Grid via the API
tr-05-api-module
Threat Response API Module
wiki
Wiki for general information about repositories
Cisco Security's Repositories
CiscoSecurity/tg-01-basics
Scripts that cover the basics of interacting with the Threat Grid API
CiscoSecurity/amp-04-delete-stale-guids
Script to fetch stale GUIDs and delete them
CiscoSecurity/tr-04-get-dispositions
Get the disposition for an observable
CiscoSecurity/amp-04-create-event-stream
Creates a new event stream to be used with an AMQP client
CiscoSecurity/sx-00-integration-workflows
SecureX Integration Workflow Documentation
CiscoSecurity/tr-01-enrich
Example scripts for the Threat Response Enrich API
CiscoSecurity/amp-04-save-policy-xml
Download and save the policy.xml for every policy configured in an organization
CiscoSecurity/tr-05-jwt-generator
Threat Response JWT Generator
CiscoSecurity/tr-05-sans-isc
CiscoSecurity/amp-00-integration-workflows
CiscoSecurity/amp-01-isolation
The basics of interacting with the AMP for Endpoints Endpoint Isolation
CiscoSecurity/amp-03-isolation-status
Get connector GUIDs based on isolation status
CiscoSecurity/sxo-05-third-party-workflows
CiscoSecurity/tg-03-pagination
Example of handling pagination with the Threat Grid API
CiscoSecurity/tg-04-submit-from-virustotal
Downloads a file from VirustTotal and submits it to Threat Grid
CiscoSecurity/tr-04-wipe-private-intel
Retrieve and delete all CTIM entities from Private Intel
CiscoSecurity/tr-05-cisco-psirt
CiscoSecurity/tr-05-relay-module-cli
Threat Response Relay Module CLI
CiscoSecurity/tr-05-module-maker
Make Threat Response module type JSON
CiscoSecurity/amp-04-delete-event-stream
Deletes an event stream from the streaming API
CiscoSecurity/amp-04-duplicate-event-stream
Duplicate and AMP for Endpoints Event Stream
CiscoSecurity/amp-04-view-event-stream
CiscoSecurity/sxo-05-rsac-tower-light
Tower Light Workflow for RSAC
CiscoSecurity/tg-00-integration-workflows
CiscoSecurity/tg-03-get-org-exes-95-or-greater
Query Threat Grid for exe files submitted by your organization that have a threat score of 95 or greater
CiscoSecurity/tr-00-smoke-tests
CiscoSecurity/tr-01-traefik-configuration
an example hosting configuration for relay hosting
CiscoSecurity/tr-05-generic-referer
CiscoSecurity/tr-05-oauth2-code-grant-example
Example implemention for using OAuth2 Authorization Code Grant Credentials
CiscoSecurity/tr-05-serverless-rabbitmq