Re: [EXTERNAL] Re: [SECURITY] REN-ISAC TAG Service Announcement: O365 Community Scripts Repository

["Jimenez, Julio" <000000b369504993-dmarc-request () LISTSERV EDUCAUSE EDU>]

I'll get some on the way home, anything else?

Julio Jim?nez
OSCP OSWP CEH CNDA PCCSA
Information Security Officer
Information Technology Services
Fayetteville State University
910 672 2988
jjimenez () unsfu edu

________________________________
From: The EDUCAUSE Security Community Group Listserv <SECURITY () LISTSERV EDUCAUSE EDU> on behalf of Stephen Fugale 
<stephen.fugale () VILLANOVA EDU>
Sent: Monday, January 28, 2019 5:07:48 PM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: [EXTERNAL] Re: [SECURITY] REN-ISAC TAG Service Announcement: O365 Community Scripts Repository

We need milk

Stephen Fugale
Vice President &
Chief Information Officer
Villanova University

On Jan 28, 2019, at 3:45 PM, Manjak, Martin <mmanjak () albany edu<mailto:mmanjak () albany edu>> wrote:

Greetings Everyone;

The Technical Advisory Group (TAG), a standing REN-ISAC committee[1], is very pleased to announce a new service: A 
public GitHub repository[2] of member-contributed O365 scripts for security incident analysis and response.

In addition to the scripts, here's some of the information you will find on the site:

               o A description of the different types of O365 logs available by license tier.
               o How and what tools can be used to pull those logs.
               o How to export those logs to external tools (e.g., SIEM).
               o A collection of tested, production scripts from REN-ISAC members.

This project is intended to encourage further community-of-practice collaborations and contributions (e.g., a GAFE 
repository) to sustain and increase the value of this open source resource.

Participation
Contributions are welcome, whether new scripts, documentation, or improvements to existing work. Refer to 
CONTRIBUTING.md[3] for details.

Scripts currently published include:
  + MessageTraceLogGatherer
  + O365_Clear_Forwarding
  + O365_Find_Forwarding_Duplicates
  + O365_Get_InboxRules
  + O365_Get_Last_PW_Reset
  + O365_Get_Mailbox_Forwarding
  + O365_Get_Message_Trace

Feedback and Proposals
Please share your thoughts about this service offering and submit proposals for similar projects via tag-comment () 
lists ren-isac net<mailto:tag-comment () lists ren-isac net>.
======================

[1] 
https://www.ren-isac.net/about/governance/tag.html<https://na01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ren-isac.net%2Fabout%2Fgovernance%2Ftag.html&data=02%7C01%7Cjjimene2%40UNCFSU.EDU%7Cf00cc919402b4992f6f108d6856e71d5%7Cb2e1e6f464f148729da1ca8a9a7c41f7%7C0%7C0%7C636843106753642795&sdata=3dMoxVtq9VycfRMgNRSUeqCQgKXcPVAidUZK52vrfwk%3D&reserved=0>

[2] 
https://github.com/renisac/O365-Management-and-Log-Scripts<https://na01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgithub.com%2Frenisac%2FO365-Management-and-Log-Scripts&data=02%7C01%7Cjjimene2%40UNCFSU.EDU%7Cf00cc919402b4992f6f108d6856e71d5%7Cb2e1e6f464f148729da1ca8a9a7c41f7%7C0%7C0%7C636843106753642795&sdata=BnAQy1%2FROUJ2aVZSIZae47GFtoZthoZd9dkD0KrexWA%3D&reserved=0>

[3] 
https://github.com/renisac/O365-Management-and-Log-Scripts/blob/master/CONTRIBUTING.md<https://na01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgithub.com%2Frenisac%2FO365-Management-and-Log-Scripts%2Fblob%2Fmaster%2FCONTRIBUTING.md&data=02%7C01%7Cjjimene2%40UNCFSU.EDU%7Cf00cc919402b4992f6f108d6856e71d5%7Cb2e1e6f464f148729da1ca8a9a7c41f7%7C0%7C0%7C636843106753642795&sdata=8T8m1%2FDx23k95%2BIbrNH7AMIsJYD4Zvhz8%2BCsAcLa%2BUg%3D&reserved=0>


Martin Manjak, CISSP
Chief Information Security Officer
Information Technology Services
University at Albany
1400 Washington Ave., ITB 102F
Albany, NY 12222
518/442-6411
mmanjak () albany edu<mailto:mmanjak () albany edu>