#cloudsecrity — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #cloudsecrity, aggregated by home.social.
-
Hunting - Office 365 Unified Audit Log
"This is a key data source in any cloud investigation because it contains a record of all the activity that has occurred in Office 365 and Azure Active Directory."
"If we use this resource correctly, it can help us build a full story of a threat actor’s activity in Office 365."
https://techcommunity.microsoft.com/t5/microsoft-security-experts-blog/good-ual-hunting/ba-p/3718421
#hunting #advancedhunting #office365 #microsoft365 #sentinel #microsoftsentinel #casb #xdr #Azure #microsoft #microsoftsecurity #audit #ual #AzureActiveDirectory #Exchange #OneDrive #DefenderforCloudApps #siem #soar #cloud #cloudsecrity #data #kql