AADSCA v3 Release - Githubissues

Cloud-Architekt / AzureAD-Attack-Defense

This publication is a collection of various common attack scenarios on Microsoft Entra ID (formerly known as Azure Active Directory) and how they can be mitigated or detected.

2k stars 295 forks source link

AADSCA v3 Release #41

Closed Cloud-Architekt closed 5 months ago

Cloud-Architekt commented 5 months ago

[Features]

Overall improvements in Workbook
New section for "Conditional Access" in Workbook, including visualzation of the following checks
- Table list of Conditional Access Policies
- Changes to the selected conditional access policy
- Number of sign-in and effect of the selected policy
- Unusual failure to the policies (requires Microsoft Sentinel UEBA)
Updated schema to AadSecConfigV3.json for future releases