The newfangled app , dub Aviary , is a dashboard that grant drug user to easy figure and analyse data point from Sparrow , a via media detective work joyride that was eject in December 2020 . Sparrow can be apply by web guardian to look for for potential malicious bodily function within Microsoft Azure Active Directory ( AD ) , Microsoft 365 ( M365 ) , and Office 365 ( O365 ) environment . It was produce by CISA to care in the sensing of malicious activity link up to the SolarWinds via media . Sparrow was create to helper brass name story and lotion that could have been compromise in their Azure / M365 surroundings . defender may enjoyment Sparrow to observe perquisite escalation , discover OAuth go for and exploiter ’ go for to coating , key out anomalous SAML tokenish contract - INS , and fit the Graph API application program permit for Robert William Service head and apps in the surroundings , among former matter . The freshly eject Aviary , a Splunk - based splasher , is contrive to spend a penny it well-to-do to analyze Sparrow operation datum . The sensing putz is today available on GitHub , with education on how to establish Aviary after run for Sparrow admit in CISA ’s January announcement , which was update this calendar week with pedagogy on victimization Aviary .