Cloud Automated Security Audit
This project is to develop an automated security audit application based on Azure, which can be used to report security check results against pre-configured compliance policies, including user identity, data, and end-point devices. This App will provide recommendations for organizations for applying suggested security mechanisms, deploying appropriate security policies, or addressing the improvement actions.
This project provides a consolidated tool to perform cloud security audit automatically.
The App works based on Microsoft cloud Azure. It is needed to create and configure the client secrete from file "appsettings.json". For example: { "settings": { "clientId": "f9f12bec-7f61-4cfc-81ca-c423f69a0ccc", "clientSecret": "lWh8Q~***", "tenantId": "240d0a1a-***", "authTenant": "common" } } Once the configuration is correct, users can run the app without any manual authentication. Reference: https://learn.microsoft.com/en-us/azure/active-directory/develop/msal-authentication-flows
Project codes are written in C#. Run from windows command line or PowerShell: dotnet run .NET Graph Tutorial
- Once launch the App Security and compliance score - CLI Please choose one of the following options:
- Exit
- Authentication
- Password Authentication
- Conditional Access
- Require MFA for Admins
- Block Legacy Authentication
- Blocking risky sign-in behaviors
- Secure Scores
- Role Overlap
- One Admin
- Legacy Authentication
- Admin MFA
- Policies
- Security Defaults
- Self Service Password Reset
- Domains
- TXT spf
- TXT dkim
- TXT dmarc
- Export CSV
-
Specify a number, e.g. 21 21 Conditional Access - Block legacy authentication : PASS
-
Exit the program with input 0
Jing (Jenny) Li, Nitin Tutlani, Samuel William Almeida