Azure Cyber Security Assessment Tool (CSAT) / Tenant Security Scan

cc 好物分享

How secure is your IT environment? Especially with ransomware, DDoS attacks and phishing emails assailing various organizations, it is important to check how good your cyber security is. Preferably, you should do this periodically because these types of cyber attacks and malware continue to evolve. Moreover, one wrong mouse click can have major consequences – which are not always immediately visible.

A periodic assessment with the Cyber Security Assessment Tool (CSAT) provides quick insight into possible cyber risks and helps determine how and which security measures can be improved. The cybersecurity assessment examines your entire corporate network and your Microsoft 365 and Azure environment for possible vulnerabilities.

This post shows you a couple of way to execute your Cybersecurity assessment to your Azure Cloud environment.

 

 

CSAT (Cyber Security Assessment Tool)

Organizations are looking for a way to check their security status quickly and simply. They want insight into their vulnerabilities, based on data from the company infrastructure and Office 365. The Cyber Security Assessment Tool (CSAT) from QS solutions provides this through automated scans and analyses. This is the basis on which the CSAT provides recommendations and an action plan to improve your security. It's the perfect way to maximize security and demonstrate that your organization takes security seriously. This is also important given the GDPR regulations.

What is CSAT?

The Cyber Security Assessment Tool is a software product developed by experienced security experts to quickly assess the current status of your organizations security and recommend improvements based on facts. The tool collects relevant data from the IT environment by scanning:

  • Endpoints, both workstations and servers
  • Local Active Directory and/or the Azure AD
  • The Microsoft 365 tenant and its services
  • Your Azure tenant and subscription
  • Your Azure resources

    • Additionally, CSAT uses a questionnaire based on the internationally recognized CIS framework to collect data about organizational controls, policies and other key indicators.

    Security maturity and action plan

    The end result is a risk- and fact-based action plan to improve your organization's security. The perfect way to decide where to spend your valuable and limited security resources on!

    https://marketplace.microsoft.com/en-us/product/virtual-machines/qs-solutions.cyber-security-assesment-tool?tab=overview

    Click Get it now. 
    Cyber Security Assessment Tool - Scan and installation requirements
    • https://techcommunity.microsoft.com/t5/s/gxcuf89792/attachments/gxcuf89792/ANZModernWorkCommunity/3/4/CSAT%20Scan%20and%20installation%20requirements%20v2.05%20EN.pdf
    The minimal requirements for the CSAT server are:
    • Windows updates: Up to date with the latest Windows updates 
    • CPU cores: Four CPU cores
    • CPU speed: 1.4 GHz (2.0 GHz recommended) Memory 8 GB
    • Hard disk: At least 60 GB of free space (SSD recommended)
    • .NET Framework Version 4.8 or higher

    Microsoft 365 Tenant Security Scanner

    IT leaders are concerned about hidden security gaps and misconfigurations in Microsoft 365 eco system. Here is a way we can quickly execute a scan analyses on your tenant configuration and highlights issues that often get missed:

    👉 Run Your Free Security Scan

    This quick scan analyses your tenant configuration and highlights issues that often get missed, such as:

    • Risky permissions or privilege creep
    • Compliance exposures
    • Missed best practices affecting resilience
    How secure is your Microsoft 365 tenant?
    Benchmark your tenant security against the Center for Internet Security (CIS) Microsoft 365 Foundations Benchmark v6.0.0 and identify critical security policy gaps with the Microsoft 365 Tenant Security Scanner.

    Download the zip file, unzip it into a folder, then run  ./Generate-SecurityReport.ps1 to generate your report. 
    # SecToolOne Release Package


    This bundle contains everything a Microsoft 365 administrator needs to generate the combined CIS and policy compliance HTML report.


    ## What's Included


    - `Generate-SecurityReport.ps1` – orchestrates the full assessment and HTML export.
    - `src/*.psm1` – PowerShell modules for CIS baselines, assessments, reporting, and policy checks.
    - `data/controls.json` – CIS control metadata referenced by the modules.
    - `LICENSE` – proprietary software license (please review terms before use).


    ## Prerequisites


    - PowerShell 7.2+.
    - Microsoft Graph PowerShell SDK:


      ```powershell
      Install-Module Microsoft.Graph -Scope CurrentUser
      ```


    - Azure AD account with read permissions for tenant, policy, and application data (Global Reader or equivalent).
    - If you want the report to flag application-level Graph permissions, consent to `AppRoleAssignment.ReadWrite.All` (delegated) or use an app registration with `AppRoleAssignment.Read.All`.


    ## Run the Security Assessment


    1. Open an elevated PowerShell session.
    2. Navigate to the Release folder.
    3. Execute one of the following commands:
    ./Generate-SecurityReport.ps1

    PS D:/Download/Microsoft365TenantSecurityScanner_V2/Microsoft365TenantSecurityScanner> ./Generate-SecurityReport.ps1
    =====================================
      Select Assessment Type
    =====================================
      [1] All (CIS Controls + CoreView Playbooks)
      [2] CIS Controls Only
      [3] CoreView Playbooks Only
    Please select an option (1-3): 1

    =====================================
      M365 Security Assessment
    =====================================
    Establishing Microsoft Graph connection...
    鉁?Microsoft Graph connection established
    Running CIS control assessment...
    鉁?CIS assessment complete
    Running CoreView Playbooks (security policy checks)...
    WARNING: Error during user policy checks: Response status code does not indicate success: Forbidden (Forbidden).
    鉁?CoreView Playbooks complete
    Generating HTML report...
    鉁?Security assessment report written to D:/Download/Microsoft365TenantSecurityScanner_V2/Microsoft365TenantSecurityScanner/reports/security-assessment-202601071707.html
      Note: Report saved to D:/Download/Microsoft365TenantSecurityScanner_V2/Microsoft365TenantSecurityScanner/reports/security-assessment-202601071707.html
    =====================================
      Assessment Complete!
    =====================================


    Videos

    How to Use CIS Hosted CSAT To Assess Security Controls' Implementation:

    References

    https://blog.51sec.org

    版权声明:
    作者:cc
    链接:https://www.techfm.club/p/232547.html
    来源:TechFM
    文章版权归作者所有,未经允许请勿转载。

    THE END
    分享
    二维码
    < <上一篇
    下一篇>>