Tuesday, October 19, 2021

A Cloud Forensics Powershell module to run threat hunting playbooks on data from Azure and O365

AzureHunter

A Powershell module to run threat hunting playbooks on data from Azure and O365 for Cloud Forensics purposes.

Getting Started

First please make sure you have ExchangeOnlineManagement (EXOv2) installed. You can find instructions on the web or go directly to my little KB on how to do it at the soc analyst scrolls

Then you can install AzureHunter from the PSGallery and Import the module

Install-Module AzureHunter – Scope CurrentUser Import-Module AzureHunter

What is the UnifiedAud…

Read More

Latest news
Related news