Microsoft-Analyzer-Suite (Community Edition) : A Deep Dive Into Analyzing Microsoft 365 Security

Explore the capabilities of the Microsoft-Analyzer-Suite (Community Edition), a powerful collection of PowerShell scripts designed to enhance your security analysis.

This suite provides automated processing of logs from Microsoft 365 and Microsoft Entra ID, leveraging tools developed by Invictus-IR.

Dive into the intricacies of these tools and learn how they can bolster your cybersecurity efforts.

A collection of PowerShell scripts for analyzing data from Microsoft 365 and Microsoft Entra ID.

TL;DR

Automated Processing of Microsoft 365 Logs and Microsoft Entra ID Logs extracted by Microsoft-Extractor-Suite.

The Following Microsoft Data Sources Are Supported Yet:

• Get-ADSignInLogsGraph → ADSignInLogsGraph-Analyzer v0.1
• Get-MFA → MFA-Analyzer v0.2
• Get-OAuthPermissions → OAuthPermissions-Analyzer v0.2
• Get-RiskyDetections → RiskyDetections-Analyzer v0.2
• Get-RiskyUsers → RiskyUsers-Analyzer v0.2
• Get-UALAll → UAL-Analyzer v0.3
• Get-Users → Users-Analyzer v0.1
• Get-TransportRules → TransportRules-Analyzer v0.1