AzureHunt is a blue team lab that falls under the Cloud Forensics category and will cover the following subjects: ELK, Persistence, Privilege Escalation, Collection.
Learning Objectives
Correlate Azure AD, Activity, and Blob Storage logs in Elastic Stack to reconstruct an attack timeline, identifying initial access, lateral movement, persistence, and data exfiltration.