microsoft/microsoft365
| Vendor | Microsoft Corporation | Parsers | ✓ |
| Author | CrowdStrike | Dashboards | ✓ |
| Version | 1.1.0 | Alerts | ✗ |
| Minimum LogScale Version | 1.77.0 | Actions | ✗ |
|  |  | Scheduled Searches | ✗ |
This package describes how to ingest Microsoft 365 email events to LogScale, via Microsoft 365 Defender and the LogScale Azure Event Hub Collector. The package includes the required parser and a set of dashboards to help you get insights from the logs.
Note
The initial releases of this package focus exclusively on email security related events.