Suspicious granting of permissions to an account rule | How to find the account ?

This page summarizes the projects mentioned and recommended in the original post on /r/AzureSentinel
Sample Code Cybersecurity

WorkOS
Our great sponsors
  • WorkOS - The modern identity platform for B2B SaaS
  • InfluxDB - Power Real-Time Data Analytics at Scale
  • SaaSHub - Software Alternatives and Reviews
Our great sponsors

  • Azure-Sentinel

    Cloud-native SIEM for intelligent security analytics for your entire enterprise.

    • Hello , I studied the rule "Suspicious granting of permissions to an account" (https://github.com/Azure/Azure-Sentinel/blob/master/Detections/AzureActivity/Granting_Permissions_To_Account_detection.yaml)and I was wondering how can I find the account that recieved the permissions ?Because I didn't find what indicator should I take from here to search for the account that recieved permission.Thanks

  • WorkOS

    The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.

    WorkOS logo
NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts