DFIR-O365RC
Log collector
A PowerShell module for collecting and analyzing logs from Microsoft 365 and Azure systems
PowerShell module for Office 365 and Azure log collection
252 stars
12 watching
30 forks
Language: PowerShell
last commit: 12 months ago azureazure-active-directorydevopsdfirexchangeonlineforensicsoffice365powershell
Related projects:
| Repository | Description | Stars |
|---|---|---|
 invictus-ir/microsoft-extractor-suite | A PowerShell module designed to collect data from Microsoft 365 and Azure for incident response and cyber security purposes. | 501 |
| anssi-fr/dfir4vsphere | A PowerShell module for collecting logs and forensics data from VMware vSphere environments. | 143 |
 activecm/espy | A system for collecting and processing network connection logs from Microsoft Sysmon in Elastic ECS format | 68 |
 bromiley/olaf | An O365 investigation framework providing tools and analysis techniques for analyzing Office 365 logs to aid in security investigations. | 81 |
 op7ic/unix_collector | A script designed to automatically collect various system artifacts and data from Unix-like systems without the need for manual intervention or external dependencies. | 33 |
 mdecrevoisier/splunk-input-windows-baseline | Provides an advanced Splunk configuration for collecting Windows log data relevant to threat detection, incident response, and forensic analysis. | 85 |
 securityjoes/forensicminer | Automates evidence collection and analysis from Windows machines using PowerShell. | 149 |
 aliyuncontainerservice/log-pilot | A tool for collecting and sending logs from Docker containers to centralized log systems | 1,431 |
 awslabs/flowgger | A fast data collector written in Rust to process log entries from various protocols and formats. | 837 |
 pwc-ir/office-365-extractor | A tool designed to extract and manage audit logs from Office 365 environments. | 259 |
 loggie-io/loggie | A cloud-native data transfer agent and aggregator for log data | 1,266 |
 nire0510/d2 | Provides quick access to online documentation of popular development tools and libraries | 11 |
 orlikoski/cylr | A tool that collects and preserves forensic artifacts from NTFS file systems without impacting the host system. | 652 |
 logsem/aneris | A framework for developing and verifying distributed systems using separation logic | 33 |
 elodina/syslog-service | A Go-based system for collecting and forwarding log data | 0 |