chrivand

Pinned Repositories

AWS_to_Firepower
Parses AWS IP addresses and can create Network Group Objects in Firepower Management Center
Language:Python4 4 01
block_doh_firepower
Pulls DoH domains and resolves them to IP addresses. Then it creates a Network Group Object in Firepower to be blocked (or something else).
Language:Python8 3 00
cisco_rapid_threat_containment
A sample application for Rapid Threat Containment (with ISE) and penalty tracking based on AMP, Umbrella and Stealthwatch events.
Language:Python2 3 00
Firepower_O365_Feed_Parser
This is a Sample Script that can parse the O365 Web Service API and upload it to Firepower Management Center as Group Objects.
Language:Python66 26 1025
meraki-mx-security-events-workflow
7 2 14
sample_python_vulns
Language:Python2 1 00
securex_dashboard_tiles
Language:Python3 3 04
securex_incident_correlator
2 1 00
talos_blog_to_casebook
This is a sample script how to parse the Talos blogs, and automatically add observables to Cisco Casebook.
Language:Python18 5 47
twitter_search_threatresponse
Twitter Search to Cisco Threat Response Casebook [v1.0]
Language:Python15 1 06

chrivand's Repositories

chrivand/Firepower_O365_Feed_Parser
This is a Sample Script that can parse the O365 Web Service API and upload it to Firepower Management Center as Group Objects.
Language:Python66 26 1025
chrivand/talos_blog_to_casebook
This is a sample script how to parse the Talos blogs, and automatically add observables to Cisco Casebook.
Language:Python18 5 47
chrivand/twitter_search_threatresponse
Twitter Search to Cisco Threat Response Casebook [v1.0]
Language:Python15 1 06
chrivand/block_doh_firepower
Pulls DoH domains and resolves them to IP addresses. Then it creates a Network Group Object in Firepower to be blocked (or something else).
Language:Python8 3 00
chrivand/meraki-mx-security-events-workflow
7 2 14
chrivand/AWS_to_Firepower
Parses AWS IP addresses and can create Network Group Objects in Firepower Management Center
Language:Python4 4 01
chrivand/sample_python_vulns
Language:Python2 1 00
chrivand/securex_incident_correlator
2 1 00
chrivand/action-kenna-cve-exploits-js
Language:JavaScript1 1 00
chrivand/action-webex-js
Language:JavaScript1 1 01
chrivand/amp-umb-mssp-sxo
1 2 00
chrivand/github-kenna-securex-workflow
1 1 0
chrivand/MISP-SecureX-Orchestration-Workflows
1 0 0
chrivand/thousand-eyes-securex-response
1 1 0
chrivand/thousandeyes-umbrella
Language:Python1 1 01
chrivand/UmbrellaAdBlocker
Language:Python1 1 01
chrivand/action-wxt
Action to post message to Webex Teams
Language:Shell0 0
chrivand/ansible-module
Tetration Ansible Collection
Language:Python0 0
chrivand/bigevilbeard
0 0
chrivand/chrivand
2 0
chrivand/isolate_endpoint_with_approval
1 0
chrivand/kenna-secx-incident-enrich
This workflow periodically checks SecureX incidents for Threat Detected Events from Cisco Secure Endpoint. When an incident is returned, the workflow collects all observations from it and reaches to Kenna Security for vulnerabilities information related to executed malware. If information is returned, the workflow updates the incident in SecureX to document the findings. This workflow is designed to run every 5 minutes on a schedule.
0 0
chrivand/pandas-devnet
Language:Python2 02
chrivand/PSIRT-to-SecureX-Casebook
0 0
chrivand/sxo-workflows
0 0
chrivand/sxo_secops_workflow
1 0
chrivand/terraform-provider
Terraform Provider for managing Cisco Secure Workload (Tetration) resources.
Language:Go0 0
chrivand/terraform-provider-ciscofdm
Terraform Cisco Firepower FDM Provider
Language:Go0 0
chrivand/tr-05-serverless-cisco-psirt
Language:Python0 0
chrivand/webhook-payload-templates
A collection of Webhook Payload Templates and related integration docs.
Language:Liquid0 0