A Powershell module to run threat hunting playbooks on data from Azure and O365 for Cloud Forensics purposes.
First please make sure you have ExchangeOnlineManagement (EXOv2) installed. You can find instructions on the web or go directly to my little KB on how to do it at the soc analyst scrolls
Then you can install AzureHunter from the PSGallery and Import the module
Install-Module AzureHunter – Scope CurrentUser Import-Module AzureHunter
What is the UnifiedAud…