1. Home
  2. Mapping Frameworks
  3. M365 Home
  4. Audit Solutions

M365 PUR-AS-E5 Mappings

Microsoft Purview auditing solutions provide an integrated solution to help organizations effectively respond to security events, forensic investigations, internal investigations, and compliance obligations. Thousands of user and admin operations performed in dozens of Microsoft 365 services and solutions are captured, recorded, and retained in your organization's unified audit log. This capability provides visibility into the activities performed across your Microsoft 365 organization.

Mappings

Capability ID Capability Description Mapping Type ATT&CK ID ATT&CK Name
PUR-AS-E5 Audit Solutions Technique Scores T1548 Abuse Elevation Control Mechanism
PUR-AS-E5 Audit Solutions Technique Scores T1548.005 Temporary Elevated Cloud Access
PUR-AS-E5 Audit Solutions Technique Scores T1087 Account Discovery
PUR-AS-E5 Audit Solutions Technique Scores T1087.004 Cloud Account
PUR-AS-E5 Audit Solutions Technique Scores T1059 Command and Scripting Interpreter
PUR-AS-E5 Audit Solutions Technique Scores T1059.009 Cloud API
PUR-AS-E5 Audit Solutions Technique Scores T1530 Data from Cloud Storage
PUR-AS-E5 Audit Solutions Technique Scores T1213 Data from Information Repositories
PUR-AS-E5 Audit Solutions Technique Scores T1213.002 Sharepoint
PUR-AS-E5 Audit Solutions Technique Scores T1114 Email Collection
PUR-AS-E5 Audit Solutions Technique Scores T1114.002 Remote Email Collection
PUR-AS-E5 Audit Solutions Technique Scores T1114.003 Email Forwarding Rule
PUR-AS-E5 Audit Solutions Technique Scores T1606 Forge Web Credentials
PUR-AS-E5 Audit Solutions Technique Scores T1564 Hide Artifacts
PUR-AS-E5 Audit Solutions Technique Scores T1564.008 Email Hiding Rules
PUR-AS-E5 Audit Solutions Technique Scores T1546 Event Triggered Execution
PUR-AS-E5 Audit Solutions Technique Scores T1562 Impair Defenses
PUR-AS-E5 Audit Solutions Technique Scores T1562.008 Disable or Modify Cloud Logs
PUR-AS-E5 Audit Solutions Technique Scores T1070 Indicator Removal
PUR-AS-E5 Audit Solutions Technique Scores T1070.008 Clear Mailbox Data
PUR-AS-E5 Audit Solutions Technique Scores T1556 Modify Authentication Process
PUR-AS-E5 Audit Solutions Technique Scores T1556.006 Multi-Factor Authentication
PUR-AS-E5 Audit Solutions Technique Scores T1566 Phishing
PUR-AS-E5 Audit Solutions Technique Scores T1566.002 Spearphishing Link
PUR-AS-E5 Audit Solutions Technique Scores T1528 Steal Application Access Token
PUR-AS-E5 Audit Solutions Technique Scores T1552 Unsecured Credentials
PUR-AS-E5 Audit Solutions Technique Scores T1552.008 Chat Messages
PUR-AS-E5 Audit Solutions Technique Scores T1078 Valid Accounts
PUR-AS-E5 Audit Solutions Technique Scores T1078.004 Cloud Accounts