Skip to content

Latest commit

 

History

History
33 lines (23 loc) · 948 Bytes

README.md

File metadata and controls

33 lines (23 loc) · 948 Bytes

script output

MS Docs schemas to Kustainer

Python script that maps Microsoft Defender XDR Schemas to a local Kustainer Data Explorer instance by parsing the open source Microsoft documentation. These schemas will be created as tables in the AdvancedHunting database.

Clone repository

Clone this repository including submodules:

$ git clone --recurse-submodules https://github.com/KapiteinKrapBijKas/defender_schemas_to_kustainer

Start kustainer

You can use docker compose to start a persistent Kustainer instance. The persistent data will be mapped to the kustodata directory in the root of this project:

$ docker compose up -d

Install pip requirements

$ python3 -m venv ./venv
$ source ./venv/bin/activate
$ pip install -r requirements.txt

Run script

$ python3 main.py