Microsoft-Analyzer-Suite (Community Edition) : A Deep Dive Into Analyzing Microsoft 365 Security

Explore the capabilities of the Microsoft-Analyzer-Suite (Community Edition), a powerful collection of PowerShell scripts designed to enhance your security analysis.

This suite provides automated processing of logs from Microsoft 365 and Microsoft Entra ID, leveraging tools developed by Invictus-IR.

Dive into the intricacies of these tools and learn how they can bolster your cybersecurity efforts.

A collection of PowerShell scripts for analyzing data from Microsoft 365 and Microsoft Entra ID.

TL;DR

Automated Processing of Microsoft 365 Logs and Microsoft Entra ID Logs extracted by Microsoft-Extractor-Suite.

The Following Microsoft Data Sources Are Supported Yet:

Output Files of Microsoft-Extractor-Suite v1.3.5 by Invictus-IR

Get-ADSignInLogsGraph → ADSignInLogsGraph-Analyzer v0.1
Get-MFA → MFA-Analyzer v0.2
Get-OAuthPermissions → OAuthPermissions-Analyzer v0.2
Get-RiskyDetections → RiskyDetections-Analyzer v0.2
Get-RiskyUsers → RiskyUsers-Analyzer v0.2
Get-UALAll → UAL-Analyzer v0.3
Get-Users → Users-Analyzer v0.1
Get-TransportRules → TransportRules-Analyzer v0.1

Varshini

Varshini is a Cyber Security expert in Threat Analysis, Vulnerability Assessment, and Research. Passionate about staying ahead of emerging Threats and Technologies.