Skip to content
/ Powershell-Azure-Applications Public

Azure PowerShell management modules representation in Azure sign-in logs

1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

vradchenko/Powershell-Azure-Applications

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

7 Commits
Example of Microsoft Azure PowerShell.png
Example of Microsoft Azure PowerShell.png
 
 
README.md
README.md
 
 

Repository files navigation

Powershell-Azure-Applications

How Azure PowerShell management modules look in Azure sign-in logs:

PowerShell cmdlet Azure Application Resource
Connect-ExchangeOnline or Connect-IPPSSession (V2 module) Microsoft Exchange REST API Based Powershell Office 365 Exchange Online
Connect-AzureAD Azure Active Directory PowerShell Windows Azure Active Directory
Connect-Az Microsoft Azure PowerShell Windows Azure Service Management API
Connect-EXOPSSession or Connect-IPPSSession (V1 module) Microsoft Exchange Online Remote PowerShell Office 365 Exchange Online

Watch out for non-admin user sign-ins into these Azure Applications. Can be an indication of data exfiltration from Azure and Azure Active Directory.

About

Azure PowerShell management modules representation in Azure sign-in logs

Topics

powershell azure exchange

Resources

Readme
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published