Carbon Black + Dell Trusted Device SafeBIOS verification integration script

 

Dell BiosVerification.py Live Response API Script: This set of tools uses the VMware Carbon Black Security Cloud Live Response APIs to retrieve artifacts generated by the Dell Trusted Device SafeBIOS verification service. The Dell Trusted Device agent saves BIOS image files to the filesystem when a verification failure event is detected. Incident responders can use this set of scripts to retrieve the BIOS image files for forensic analysis.[…]

https://github.com/carbonblack/cbapi-python/tree/master/examples/defense/cblr/DellBiosVerification

Leave a Reply

Please log in using one of these methods to post your comment:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s