> ## Documentation Index
> Fetch the complete documentation index at: https://docs.petrasecurity.com/docs/llms.txt
> Use this file to discover all available pages before exploring further.

# Welcome to Petra Security

> Petra Security is a detection and analysis tool for M365 attacks. Teams use Petra to detect and quickly shut down BECs, deeply investigate M365 environments, and prepare active risk assessments.

<img src="https://mintcdn.com/petrasecurity-7f411ce9/v2OWWC-gCEvr839N/images/petra_main_graphic_2_downgraded.jpg?fit=max&auto=format&n=v2OWWC-gCEvr839N&q=85&s=b709e1f94aa409669a61732293a980c4" alt="Hero" width="1952" height="1040" data-path="images/petra_main_graphic_2_downgraded.jpg" />

<Info>
  Looking for the Portal? Visit [app.petrasecurity.com](https://app.petrasecurity.com).
</Info>

## Getting started

The first step is to get access to Petra. You can request access [here](https://www.petrasecurity.com/schedule-demo?utm_source=docs\&utm_medium=organic\&utm_campaign=welcome).

<CardGroup cols={1}>
  <Card title="Get Access" href="https://www.petrasecurity.com/schedule-demo?utm_source=docs&utm_medium=organic&utm_campaign=welcome" />
</CardGroup>

## Next Steps

<CardGroup cols={2}>
  <Card title="About Us" icon={<Icon icon="shield-check" size={20} />} href="https://www.petrasecurity.com/">
    Learn more about Petra Security and how we detect and protect against M365 attacks.
  </Card>

  <Card title="Read our Research" icon={<Icon icon="notebook" size={20} />} href="https://www.petrasecurity.com/research">
    We share detection research and insights weekly.
  </Card>

  <Card title="Remediate an Incident" icon={<Icon icon="fire-extinguisher" size={20} />} href="remediation/how-to-remediate">
    Remediate an incident and one-click remove persistence mechanisms, whether real-time or for a BEC IR case.
  </Card>

  <Card title="Investigate Behavior" icon={<Icon icon="microscope" size={20} />} href="investigating/investigate-what-the-attacker-did">
    Investigate what an attacker did/accessed. Then, dig into benign behavior like benign proxy/VPN use and failed attacks.
  </Card>
</CardGroup>

<Warning>
  **Suspect a user has been compromised?** Walk through [Is A User Compromised?](/is-a-user-compromised) to rule out the common false alarms before escalating.
</Warning>