Phishing Intelligence Engine (PIE)
An Active Defense PowerShell framework for detecting and responding to phishing attacks in Office 365 environments.
What is Phishing Intelligence Engine (PIE)?
PIE (Phishing Intelligence Engine) is an open-source Active Defense PowerShell framework designed to detect and respond to phishing attacks in Office 365 environments. It continuously monitors Message Trace logs for malicious content, analyzes threats using regex and third-party feeds, and automates response actions like quarantining emails and blocking senders. The framework integrates with security tools like LogRhythm SIEM for case management and provides plugins for services like VirusTotal and Urlscan.
Security operations teams, incident responders, and IT administrators managing Office 365 security who need automated phishing detection and response capabilities. It's particularly valuable for organizations using LogRhythm SIEM seeking to enhance their email security automation.
Developers choose PIE because it provides a comprehensive, extensible framework specifically tailored for Office 365 phishing defense with pre-built integrations for popular security services. Unlike generic security tools, it offers specialized automation for phishing workflows, including sandbox analysis, threat intelligence correlation, and seamless LogRhythm SIEM integration for unified security operations.
Overview
:mailbox: The Phishing Intelligence Engine - An Active Defense PowerShell Framework for Phishing Defense with Office 365
Use Cases
Best For
Related Projects
Found a gem we're missing?
Open-Awesome is built by the community, for the community. Submit a project, suggest an awesome list, or help improve the catalog on GitHub.
