[CDP-development] CISA Publishes New Tool for Cyber Hunt and Incident Response
Masse, Theresa
theresa.masse at cisa.dhs.gov
Thu Mar 23 11:12:37 PDT 2023
FYSA
Today, the Cybersecurity and Infrastructure Security Agency (CISA) released the Untitled Goose Tool<https://github.com/cisagov/untitledgoosetool>, a robust and flexible hunt and incident response tool to help network defenders detect potentially malicious activity. The tool provides network defenders novel authentication and data gathering methods to use as they interrogate and analyze Microsoft cloud services.
Developed in partnership with Sandia National Laboratories, the Untitled Goose Tool can query, export and investigate Azure Active Directory, Microsoft 365, and Azure configurations. Read our fact sheet<https://www.cisa.gov/sites/default/files/2023-03/untitled_goose_tool_fact_sheet_final_508cv2.pdf> for information about tool and its full capabilities, requirements, and applications.
Theresa A. Masse
Cybersecurity State Coordinator/Advisor, Region 10 (Oregon)
Cybersecurity and Infrastructure Security Agency
Department of Homeland Security
Phone: (503) 930-5671
Email: theresa.masse at cisa.dhs.gov<mailto:theresa.masse at cisa.dhs.gov>
[cid:image001.png at 01D95D78.5032B760]
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://omls.oregon.gov/pipermail/cdp-development/attachments/20230323/05c24042/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image001.png
Type: image/png
Size: 16152 bytes
Desc: image001.png
URL: <https://omls.oregon.gov/pipermail/cdp-development/attachments/20230323/05c24042/attachment-0001.png>
More information about the CDP-development
mailing list