-
All - Import-Excel module - Install with
Install-Module ImportExcel- You can change to export-csv if you don't have Excel installed. -
find-rules.ps1 - You need to connect to Exchange Online, if you can connect without multifactor authentication then you can just create a new remote powershell session
$Session = New-PSSession -ConfigurationName Microsoft.Exchange -ConnectionUri https://outlook.office365.com/powershell-liveid/ -Credential (Get-Credential) -Authentication Basic -AllowRedirectionImport-PSSession $Session -DisableNameCheckingHowever if you do use multifactor authentication then you'll need to install the Exchange Online Remote PowerShell Module and then call `Connect-Exopssession" before the script.
-
audit-mfa.ps1 - Requires the AzureAd module which can be installed with the following command
Install-Module -Name AzureADand then connected with theConnect-AzureADcmdlet before running the script. This natively supports multifactor login. -
audit-mailboxes.ps1 - Requires both Exchange online access and the Azure AD module so you'll need to complete both of the above steps.
More info available here: https://blog.rothe.uk/office365-detecting-compromise-with-powershell/