Azure Compliance Scanning Tool

200+ checks covering industry defined security best practices for Azure. Includes full support for CIS v1.3, HIPAA HITRUST 9.2 and NIST SP 800-53 compliance benchmarks across all your Azure subscriptions.

Includes full support for the CIS v1.3 Azure Benchmarks:

Includes support for:

• Azure CIS v1.3.0
• HIPAA HITRUST 9.2
• NIST SP 800-53 Revision 5

Quick start

1. Download and install Steampipe (https://steampipe.io/downloads).

2. Install the Azure and the Azure Active Directory plugins with Steampipe:

steampipe plugin install azure
steampipe plugin install azuread

3. Configure your Azure CLI credentials

az login

4. Clone this repo:

git clone https://github.com/turbot/steampipe-mod-azure-compliance.git
cd steampipe-mod-azure-compliance

5. Run all the benchmarks:

steampipe check all

Other stuff to try out

Run an individual benchmark:

steampipe check benchmark.cis_v130_6

View all controls in this mod:

steampipe query "select resource_name from steampipe_control;"

Run a specific control:

steampipe check control.cis_v130_4_3_5

Contributing

If you have an idea for additional compliance controls, or just want to help maintain and extend this mod (or others) we would love you to join the community and start contributing. (Even if you just want to help with the docs.)

• Join our Slack community →
• Mod developer guide →

Please see the contribution guidelines and our code of conduct. All contributions are subject to the Apache 2.0 open source license.

help wanted issues:

• Steampipe
• Azure Compliance Mod