This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Log in to ask a question
DanDye
Staff
Since ‎11-07-2023
Tuesday

My Stats

  • 25 Posts
  • 1 Solutions
  • 21 Likes given
  • 24 Likes received

DanDye's Bio

Badges DanDye Earned

View all badges

Recent Activity

Bulk closing alerts with Python and the Google Security Operations API

07-30-2024
In the postscript of my last blog post, I scripted 99 calls to the Ingestion API to create 99 USER_LOGIN Unified Data Model (UDM) events where the principal.ip was one of the known-malicious IPs from an Abuse IPDB blocklist (stored as a reference lis...

Events, and Lists, and Rules, oh my!

07-10-2024
As a “Noogler” (new Google employee) on the Cloud Security team, I have configured a lab environment with a fresh instance of Google Security Operations for the purposes of learning and experimenting. This blank slate presents an opportunity to clear...

Update Reference Lists with Python and the new Chronicle REST API

03-05-2024
In this post, I introduce newly published Python scripts that demonstrate calling the Chronicle REST API (currently in v1alpha). These Python examples complement the Chronicle API reference documentation. But first, a little background. Chronicle API...