iandday/o365AuditParser external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

iandday/o365AuditParser

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/iandday/o365AuditParser)

Close

iandday / o365AuditParserView on GitHubMore

• External links
• Readme badge

Microsoft Office365 Protection Center Audit Log Parser

☆27Jul 17, 2023Updated 2 years ago

Alternatives and similar repositories for o365AuditParser

Users that are interested in o365AuditParser are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• cylance / CyLR

  View on GitHub
  CyLR - Live Response Collection Tool
  ☆10Jul 14, 2020Updated 5 years ago
• jnbdz / forensic-imaging-quickstarts

  View on GitHub
  Forensic Imaging quickstarts!
  ☆13Aug 12, 2022Updated 3 years ago
• alexverboon / SentinelTIUploadToolkit

  View on GitHub
  Sentinel Threat Intelligence Upload Toolkit
  ☆18Jul 15, 2024Updated last year
• dwmetz / Axiom-PowerShell

  View on GitHub
  PowerShell scripts to aid investigators when utilizing O365 and Magnet Axiom.
  ☆12Aug 26, 2024Updated last year
• CyberCX-DFIR / usnjrnl_rewind

  View on GitHub
  USN Journal full path builder
  ☆68Apr 4, 2026Updated 2 weeks ago
• End-to-end encrypted email - Proton Mail • Ad
  Special offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
• dwmetz / Mal-Hash

  View on GitHub
  This script will generate hashes (MD5, SHA1, SHA256), submit the MD5 to Virus Total, and produce a text file with the results.
  ☆15Jul 13, 2023Updated 2 years ago
• SAP-archive / forensic-artifact-automation

  View on GitHub
  A collection of powershell scripts that are designed to be ran from a Microsoft Defender for Endpoint Live Response terminal, utilizing o…
  ☆12Apr 26, 2023Updated 2 years ago
• jan-tee / cycli-examples

  View on GitHub
  Examples for the CyCLI Powershell module
  ☆12Mar 8, 2019Updated 7 years ago
• bromiley / olaf

  View on GitHub
  Office365 Log Analysis Framework
  ☆81Jun 6, 2019Updated 6 years ago
• alpine-sec / SPECTR3

  View on GitHub
  Forensic tool for acquisition, triage and analysis of remote block devices via iSCSI protocol.
  ☆44Oct 25, 2024Updated last year
• frkncelik / Sigma-Rule

  View on GitHub
  You can access the sigma rules to detect malicious activities. It is organized by Mitre Att&ck categories.
  ☆13Feb 7, 2022Updated 4 years ago
• yeti-platform / TibetanBrownBear

  View on GitHub
  ☆12Feb 16, 2023Updated 3 years ago
• lsoumille / Yara_Merger

  View on GitHub
  Merge all Yara rules from official Yara github repository in one .yar file
  ☆31Jun 22, 2018Updated 7 years ago
• evild3ad / Get-MiniTimeline

  View on GitHub
  Get-MiniTimeline - Triage Collection and Timeline Generation w/ KAPE
  ☆33May 25, 2024Updated last year
• End-to-end encrypted cloud storage - Proton Drive • Ad
  Special offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
• hulkmode / echothreat

  View on GitHub
  ☆33Mar 24, 2026Updated 3 weeks ago
• brimorlabs / KStrike

  View on GitHub
  Stand-alone parser for User Access Logging from Server 2012 and newer systems
  ☆80Jan 9, 2024Updated 2 years ago
• eshlomo1 / Azure-AD-Incident-Response

  View on GitHub
  Azure AD Incident Response
  ☆28Oct 8, 2021Updated 4 years ago
• rgeoghan / app-password-persistence

  View on GitHub
  Using Microsoft 365 App Passwords for persistence
  ☆23Sep 2, 2020Updated 5 years ago
• CompassSecurity / Readinizer

  View on GitHub
  Microsoft GPO Readiness Lateral Movement Detection Tool
  ☆16Dec 8, 2022Updated 3 years ago
• Digital-Defense-Institute / triage.zip

  View on GitHub
  A preconfigured Velociraptor triage collector
  ☆76Apr 13, 2026Updated last week
• Permiso-io-tools / azure-activity-log-axe

  View on GitHub
  Azure Activity Log Axe is a continually developing tool that simplifies the transactional log format provided by Microsoft. The tool leve…
  ☆35Sep 6, 2024Updated last year
• Digital-Forensics-Discord-Server / MemberProjects

  View on GitHub
  A repo that contains links to projects by members of the Digital Forensics Discord Server! This is meant to help promote projects made by…
  ☆19Apr 13, 2026Updated last week
• cylance / python-cyapi

  View on GitHub
  This Library provides python bindings to interact with the Cylance API.
  ☆20Mar 20, 2023Updated 3 years ago
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• matthieugras / timeline-downloader

  View on GitHub
  ☆83Feb 4, 2026Updated 2 months ago
• AndrewRathbun / DFIRRegex

  View on GitHub
  A repo to centralize some of the regular expressions I've found useful over the course of my DFIR career.
  ☆108Mar 12, 2026Updated last month
• richlilly2004 / Azure-Sentinel

  View on GitHub
  ☆18Oct 20, 2022Updated 3 years ago
• randomaccess3 / Awesome-BEC

  View on GitHub
  Repository of attack and defensive information for Business Email Compromise investigations
  ☆276Updated this week
• ReconInfoSec / velociraptor-to-timesketch

  View on GitHub
  ☆14Oct 24, 2024Updated last year
• ANSSI-FR / DFIR-O365RC

  View on GitHub
  PowerShell module for Office 365 and Azure log collection
  ☆281Sep 22, 2025Updated 6 months ago
• counteractive / Get-UnifiedAuditLog

  View on GitHub
  Gets events from the Office 365 unified audit log and outputs their details into the pipeline
  ☆16Dec 16, 2020Updated 5 years ago
• bitranox / fingerprint

  View on GitHub
  Monitoring Registry and File Changes in Windows
  ☆69Apr 12, 2026Updated last week
• chaoticmachinery / mass_triage_tools

  View on GitHub
  Mass Triage Tools
  ☆20Mar 10, 2026Updated last month
• Simple, predictable pricing with DigitalOcean hosting • Ad
  Always know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
• huaminghuangtw / ESP32WiFiSnifferApp

  View on GitHub
  📌 An interdisciplinary team project of the course Software Lab at Technical University of Munich (TUM), aiming to map WiFi signals to in…
  ☆15Jan 30, 2022Updated 4 years ago
• exactmike / Profile

  View on GitHub
  a personal PowerShell Profile Module for tools/functions
  ☆10Jun 19, 2025Updated 10 months ago
• cogentii / flask_blog_c9

  View on GitHub
  ☆10Sep 23, 2017Updated 8 years ago
• Hestat / soc-threat-hunting

  View on GitHub
  Repo of python/bash scripts for identifying IoC's in threat feed and other online tools
  ☆26Jul 27, 2020Updated 5 years ago
• KelvinTegelaar / ExchangeOnlineManagement.SAM

  View on GitHub
  ☆13Sep 22, 2021Updated 4 years ago
• kiamatthews / office365-management-api-elk

  View on GitHub
  An API connector for the Office 365 Management API and the Elastic Stack
  ☆19Aug 9, 2018Updated 7 years ago
• Intrinsec / mplog_parser

  View on GitHub
  This tool aims at parsing Microsoft Protection logs to provide relevant data to forensic analysts during incident responses.
  ☆21Sep 30, 2022Updated 3 years ago