v2.0.3

[2.0.3] - Enter the honk - 2024-09-23

Added

• Better task naming for logging
• Added Microsoft Graph role ThreatHunting.Read.All
• Added Log Analytics API role Data.Read
• Added dumping for Log Analytics Workspace

Changed

• Updated versions of required packages
• Create_SP.ps1 script will find existing an existing role group with the app name instead of erroring

Fixed

• Resolved issue with dumper cmd arguments for honk command not working (e.g. goosey honk --entraid)
• Issue identified in d4iot dumpers

v2.0.2

[2.0.2] - Enter the honk - 2024-08-21

Added

• Better task naming for logging

Changed

• Updated versions of required packages

Fixed

• Resolved some errors for config collection. Specifically relating to the security contacts collection

v2.0.1

[2.0.1] - Enter the honk - 2024-07-31

Added

• More Documentation

Changed

• Changed all entraid to azuread
• Removed version and author information from every file

Fixed

• Endless pulling issue for sign in logs when endtime wasn't specified

[2.0.0] - Enter the honk - 2024-05-08

Added

• autohonk. No more manual authentication
• Variables added to the conf to modify ual tasks running as well as optional extra time field

Changed

• more efficient ual pulling. Lots of improvements that led to an 800% speed up.
• fixed asynchronous issue with azure dumpers
• Better Logging for python3.12. Changed the docker image to use that as well

Fixed

• Asynchronous issues with azure dumpers
• No save state for azure activity log

v.1.2.5

[1.2.5] - The goose is loose - 2023-08-04

Added

Changed

• Updated cryptography to 41.0.3 based on dependabot.

Fixed

• Incorporated fix for function helper_multiple_object when parent object contains a /
• Updated authentication fix for graze.py and messagetrace.py

v.1.2.4

[1.2.4] - The goose is loose - 2023-07-27

Added

Changed

• Updated and pinned MSAL dependencies.

Fixed

• Updated validationkey logic for m365 authentication.
• Updated MSAL calls to align with the MSAL 1.23.0 change.

v.1.2.3

[1.2.3] - The goose is loose - 2023-07-20

Added

Changed

• Updated cryptography and aiohttp based on dependabot.
• Updated SBOM files.

Fixed

v1.2.2

[1.2.2] - The goose is loose - 2023-07-17

Added

• Better catches for when password for the account needs to be updated, when a conditional access policy blocks user account access, or when the user account is flagged for risky actions.
• Added catch for empty .conf fields, will allow more graceful exiting.

Changed

• Updated and pinned aiohttp, colored, cryptography, and selenium dependencies and updated Python version to 3.10.11.
• Pinned 3.1.0 version of ExchangeOnlineManagement PowerShell module.
• Improved logic for grabbing validationkey from requests.

Fixed

• Fixed MFA logic for messagetrace.py.
• Fixed data dumper logic, they will only run if something in their section is set to True.

v1.2.1

[1.2.1] - The goose is loose - 2023-06-06

Added

• Implemented new tables to be pulled from MDE.
• Added two SBOM files.

Changed

• Updated readme with cloud-only account requirement.
• Better logging for _no_results.json.

Fixed

• Fixed Azure government calls.
• Fixed minor debug logging issues.
• Fixed the AttributeError encountered during AzureAD calls.