azure-security-scanner

Solid

Azure security configuration scanning and hardening using Azure Security Center, Azure Policy, and ScoutSuite

AI & Automation 1,160 stars 71 forks Updated today MIT

Install

View on GitHub

Quality Score: 96/100

Stars 20%
100
Recency 20%
100
Frontmatter 20%
70
Documentation 15%
100
Issue Health 10%
50
License 10%
100
Description 5%
100

Skill Content

# Azure Security Scanner Skill ## Purpose Automated Azure security configuration scanning and hardening to identify misconfigurations, compliance violations, and security risks across Azure subscriptions and tenants. ## Capabilities ### Azure Security Center Assessments - Run Microsoft Defender for Cloud security assessments - Check secure score and recommendations - Review security alerts and incidents - Validate just-in-time VM access - Check adaptive application controls - Monitor regulatory compliance dashboards ### Azure AD Security Analysis - Analyze Azure AD conditional access policies - Check MFA enforcement status - Review privileged identity management (PIM) - Identify risky sign-ins and users - Analyze app registrations and service principals - Check guest user access configurations ### Network Security Group Analysis - Review NSG rules for overly permissive access - Check for open management ports (RDP, SSH) - Validate application security groups - Review Azure Firewall configurations - Check DDoS protection status - Analyze virtual network configurations ### Storage Account Security - Identify publicly accessible storage accounts - Check encryption configurations (SSE, CMK) - Review shared access signatures (SAS) - Validate network access rules - Check secure transfer requirements - Review access keys rotation ### Key Vault Security - Check Key Vault access policies - Validate network restrictions - Review key expiration policies - Check certificate confi...

Details

Author
a5c-ai
Repository
a5c-ai/babysitter
Created
4 months ago
Last Updated
today
Language
JavaScript
License
MIT

Integrates with

Azure · Cloud

Similar Skills

Semantically similar based on skill content — not just same category

AI & Automation Solid

aws-security-scanner

AWS security configuration scanning and hardening using Prowler, Security Hub, and AWS Config

1,160 Updated today
a5c-ai
AI & Automation Solid

gcp-security-scanner

GCP security configuration scanning and hardening using Security Command Center, Forseti, and ScoutSuite

1,160 Updated today
a5c-ai
DevOps & Infrastructure Solid

iac-security-scanner

Infrastructure as Code security scanning and policy enforcement for Terraform, CloudFormation, Kubernetes, and Pulumi

1,160 Updated today
a5c-ai
AI & Automation Solid

security-scanner

Run security scans including SAST, dependency scanning, and secret detection

1,160 Updated today
a5c-ai
DevOps & Infrastructure Solid

azure-security

Expert knowledge for Azure Security development including troubleshooting, best practices, decision making, security, configuration, integrations & coding patterns, and deployment. Use when securing AKS and container images, SBOM/Notation pipelines, Key Vault vs HSM, or Customer Lockbox, and other Azure Security related development tasks. Not for Azure Defender For Cloud (use azure-defender-for-cloud), Azure Sentinel (use azure-sentinel), Azure DDos Protection (use azure-ddos-protection), Azure Web Application Firewall (use azure-web-application-firewall).

565 Updated yesterday
MicrosoftDocs