office365
orca
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
office365
-
Microsoft's rich notifications for Windows 10 and 11 present new, native-looking browser popups to more readily fool users into getting phished or downloading malware
r/sysadmin thread on disabling desktop notifications for Chrome via GPO (bonus: PowerShell script to do this
-
Get-Partner and Do something...
I am currently working on my 365 script and trying to make it more user friendly and do some more if checks before running commands (FYI this is a revision behind, found an error after uploading to my public git).
-
DKIM
Hey mate; Looks like you might have this sorted but I have two scripts that punch out the formatting for the DKIM records https://github.com/argetlam59/office365 You should be able to copy them out of the console into your DNS hosting and move from there.
-
Does anyone have a cheat sheet for hardening up spam and phishing policies in o365?
Script I use for all 365. it is a version behind at the moment as it is a pain to keep a public version of this for other people. https://github.com/argetlam59/office365/blob/main/365-Security-Basics.ps1
orca
-
Nuclear Spam Option
Look into running an ORCA report and see what it flags: https://github.com/cammurray/orca
- Anybody else having issues with anti-spam and phishing policies ??
-
How to block malicious emails with spoofed display names impersonating internal company's department email addresses (XYZ HR Department) coming from an external email address in Microsoft 365 Exchange/Defender?
I highly recommend reviewing this if you haven't already: https://techcommunity.microsoft.com/t5/microsoft-defender-for-office/email-protection-basics-in-microsoft-365-spoof-and-impersonation/ba-p/3562938. If you have all of the Impersonation features enabled, you can greatly reduce the risk of future impersonation emails getting through. You can quickly run the ORCA or the Configuration Analyzer tool in Defender to see if you're behind on best practices. I've seen this work very well in orgs that were previously big red targets for BEC.
- O365 security
-
Thoughts on Microsoft Defender for Office 365 (ATP)?
If you are going to use it, I highly recommend utilizing Cam Murray's ORCA Module to review your settings against Microsoft's recommended settings (assuming you have appropriate coverage to manage and are not expecting it to be a set it/forget it solution.)
-
Defender best practices?
Use ORCA. https://github.com/cammurray/orca
- Does anyone have a cheat sheet for hardening up spam and phishing policies in o365?
What are some alternatives?
EWS-Office365-Contact-Sync - Uses Exchange Web Services to synchronize a Global Address List in Office 365 to a user's mailbox
Export-RecipientPermissions - Document, filter and compare Exchange permissions: Mailbox access rights, mailbox folder permissions, public folder permissions, send as, send on behalf, managed by, moderated by, linked master accounts, forwarders, sender restrictions, resource delegates, group members, management role group members
O365Essentials - A module that helps to manage some tasks on Office 365/Azure via undocumented API
hawk - Powershell Based tool for gathering information related to O365 intrusions and potential Breaches
atproto - The AT Protocol (🦋 Bluesky) SDK for Python 🐍
twitter-crystal - A library to access the Twitter API using Crystal
oh-my-posh2 - A prompt theming engine for Powershell
aws-credentials - Get AWS credentials in various ways.
Set-OutlookSignatures - The open source gold standard to centrally manage and deploy email signatures and out-of-office replies for Outlook and Exchange
Microsoft365DSC - Manages, configures, extracts and monitors Microsoft 365 tenant configurations
posh-git - A PowerShell environment for Git