iandday/o365AuditParser external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

iandday/o365AuditParser

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/iandday/o365AuditParser)

Close

iandday / o365AuditParserView on GitHubMore

• External links
• Readme badge

Microsoft Office365 Protection Center Audit Log Parser

☆27Jul 17, 2023Updated 2 years ago

Alternatives and similar repositories for o365AuditParser

Users that are interested in o365AuditParser are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• cylance / CyLR

  View on GitHub
  CyLR - Live Response Collection Tool
  ☆10Jul 14, 2020Updated 5 years ago
• jnbdz / forensic-imaging-quickstarts

  View on GitHub
  Forensic Imaging quickstarts!
  ☆14Aug 12, 2022Updated 3 years ago
• alexverboon / SentinelTIUploadToolkit

  View on GitHub
  Sentinel Threat Intelligence Upload Toolkit
  ☆18Jul 15, 2024Updated last year
• dwmetz / Axiom-PowerShell

  View on GitHub
  PowerShell scripts to aid investigators when utilizing O365 and Magnet Axiom.
  ☆12Aug 26, 2024Updated last year
• CyberCX-DFIR / usnjrnl_rewind

  View on GitHub
  USN Journal full path builder
  ☆69Apr 16, 2026Updated last month
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• dwmetz / Mal-Hash

  View on GitHub
  This script will generate hashes (MD5, SHA1, SHA256), submit the MD5 to Virus Total, and produce a text file with the results.
  ☆15Jul 13, 2023Updated 2 years ago
• SAP-archive / forensic-artifact-automation

  View on GitHub
  A collection of powershell scripts that are designed to be ran from a Microsoft Defender for Endpoint Live Response terminal, utilizing o…
  ☆12Apr 26, 2023Updated 3 years ago
• jan-tee / cycli-examples

  View on GitHub
  Examples for the CyCLI Powershell module
  ☆12Mar 8, 2019Updated 7 years ago
• bromiley / olaf

  View on GitHub
  Office365 Log Analysis Framework
  ☆81Jun 6, 2019Updated 6 years ago
• alpine-sec / SPECTR3

  View on GitHub
  Forensic tool for acquisition, triage and analysis of remote block devices via iSCSI protocol.
  ☆44Oct 25, 2024Updated last year
• invictus-ir / Microsoft-Extractor-Suite

  View on GitHub
  A PowerShell module for acquisition of data from Microsoft 365 and Azure for Incident Response and Cyber Security purposes.
  ☆809May 6, 2026Updated 2 weeks ago
• frkncelik / Sigma-Rule

  View on GitHub
  You can access the sigma rules to detect malicious activities. It is organized by Mitre Att&ck categories.
  ☆13Feb 7, 2022Updated 4 years ago
• yeti-platform / TibetanBrownBear

  View on GitHub
  ☆12Feb 16, 2023Updated 3 years ago
• lsoumille / Yara_Merger

  View on GitHub
  Merge all Yara rules from official Yara github repository in one .yar file
  ☆31Jun 22, 2018Updated 7 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• evild3ad / Get-MiniTimeline

  View on GitHub
  Get-MiniTimeline - Triage Collection and Timeline Generation w/ KAPE
  ☆33May 25, 2024Updated last year
• mutedmouse / ta-volatility

  View on GitHub
  Technical add-on to ingest json formatted volatility memory analysis plugin outputs
  ☆13May 21, 2018Updated 7 years ago
• brimorlabs / KStrike

  View on GitHub
  Stand-alone parser for User Access Logging from Server 2012 and newer systems
  ☆80Jan 9, 2024Updated 2 years ago
• eshlomo1 / Azure-AD-Incident-Response

  View on GitHub
  Azure AD Incident Response
  ☆28Oct 8, 2021Updated 4 years ago
• rgeoghan / app-password-persistence

  View on GitHub
  Using Microsoft 365 App Passwords for persistence
  ☆23Sep 2, 2020Updated 5 years ago
• CompassSecurity / Readinizer

  View on GitHub
  Microsoft GPO Readiness Lateral Movement Detection Tool
  ☆16Dec 8, 2022Updated 3 years ago
• Permiso-io-tools / azure-activity-log-axe

  View on GitHub
  Azure Activity Log Axe is a continually developing tool that simplifies the transactional log format provided by Microsoft. The tool leve…
  ☆35Sep 6, 2024Updated last year
• cylance / python-cyapi

  View on GitHub
  This Library provides python bindings to interact with the Cylance API.
  ☆20Mar 20, 2023Updated 3 years ago
• matthieugras / timeline-downloader

  View on GitHub
  ☆84Feb 4, 2026Updated 3 months ago
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• richlilly2004 / Azure-Sentinel

  View on GitHub
  ☆18Oct 20, 2022Updated 3 years ago
• randomaccess3 / Awesome-BEC

  View on GitHub
  Repository of attack and defensive information for Business Email Compromise investigations
  ☆276Apr 19, 2026Updated last month
• ReconInfoSec / velociraptor-to-timesketch

  View on GitHub
  ☆15Oct 24, 2024Updated last year
• ANSSI-FR / DFIR-O365RC

  View on GitHub
  PowerShell module for Office 365 and Azure log collection
  ☆281Sep 22, 2025Updated 7 months ago
• counteractive / Get-UnifiedAuditLog

  View on GitHub
  Gets events from the Office 365 unified audit log and outputs their details into the pipeline
  ☆16Dec 16, 2020Updated 5 years ago
• chaoticmachinery / mass_triage_tools

  View on GitHub
  Mass Triage Tools
  ☆20Mar 10, 2026Updated 2 months ago
• exactmike / Profile

  View on GitHub
  a personal PowerShell Profile Module for tools/functions
  ☆10Jun 19, 2025Updated 11 months ago
• cogentii / flask_blog_c9

  View on GitHub
  ☆10Sep 23, 2017Updated 8 years ago
• Hestat / soc-threat-hunting

  View on GitHub
  Repo of python/bash scripts for identifying IoC's in threat feed and other online tools
  ☆27Jul 27, 2020Updated 5 years ago
• End-to-end encrypted email - Proton Mail • Ad
  Special offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
• KelvinTegelaar / ExchangeOnlineManagement.SAM

  View on GitHub
  ☆13Sep 22, 2021Updated 4 years ago
• kiamatthews / office365-management-api-elk

  View on GitHub
  An API connector for the Office 365 Management API and the Elastic Stack
  ☆19Aug 9, 2018Updated 7 years ago
• AdamWhiteHat / Judge-Jury-and-Executable

  View on GitHub
  A file system forensics analysis scanner and threat hunting tool. Scans file systems at the MFT and OS level and stores data in SQL, SQL…
  ☆82Apr 7, 2026Updated last month
• digitalsleuth / Registry-Write-Block

  View on GitHub
  Short scripts which use the registry to enable or disable write-blocking for removable disks
  ☆35Oct 12, 2023Updated 2 years ago
• google / picatrix

  View on GitHub
  Picatrix is a library designed to help security analysts in a notebook environment, such as colab or jupyter.
  ☆53Mar 26, 2025Updated last year
• dewoodruff / evtx_to_csv

  View on GitHub
  ☆15Jun 4, 2018Updated 7 years ago
• porterhau5 / sleat

  View on GitHub
  Security Logon Event Analysis Tools - a collection of scripts for collecting, parsing, and analyzing logon events from Windows Security L…
  ☆16Jun 22, 2016Updated 9 years ago