Intel Name: Aadinternals powershell cmdlets execution – proccesscreation
Date of Scan: February 18, 2025
Impact: High
Summary: Detects the execution of AADInternals Cmdlet, a tool used for administering Azure AD and Office 365. Threat actors can exploit this tool to target Azure AD or Office 365 environments for malicious activities.
