PM.Readme chain for #292

[skgithubtest[bot]]

Provide a list of App Catalog groups

[skgithubtest[bot]]

README

App Catalog Groups

An application that offers comprehensive features for managing and handling App Catalog Groups. It fully utilizes the benefits of management groups and resource groups.

Key Features of the Application:

1. Management Groups: The app provides a feature to manage permissions throughout the organization using Management Groups.

2. Resource Groups: For more specific permissions within subscriptions, the app implements Resource Groups.

3. Group Management in Azure Active Directory (Azure AD): This application offers the capability to assign permissions to groups in Azure AD instead of granting them to specific users.

4. Use of Built-In Roles: The app encourages the use of Azure's built-in roles for assigning permissions where possible. Therefore, minimizing customization that could lead to complexities and fragilities.

5. Lifecycle Management: Designed to maintain the lifecycle management for critical impact accounts, the app ensures disabling or deleting of administrative accounts when admin personnel leave the organization or their administrative positions.

6. Attack Simulation: This application implements regular simulated attacks against administrative users with current attack techniques to educate and empower them, utilising Office 365 Attack Simulation capabilities.

7. Inter-team Communication: The app provides processes for aligning communication, investigation, and the hunting activities with the application team.

Code Architecture

This application uses modern and scalable architecture, allowing efficient and easy development. The application uses a segmented approach based on functionalities for better maintenance and understanding, following a clean architecture pattern:

• Azure Active Directory (Azure AD): Group management (creation, deletion, permission management, etc.) and assigning permissions to these groups.

• Permission Management: Assigning and managing permissions utilizing built-in roles and customized access.

• Lifecycle Management: Disabling/deleting of administrative accounts, and managing their lifecycle aligning with personnel changes in the organization.

• Simulated attacks: The code section that handles the simulation of attacks against administrative users and other attack simulation capabilities.

How to run the App

Follow the steps below to run the application:

1. Clone the repository from [URL]
2. Setup your Azure AD credentials in the configuration file
3. Install all the required packages and dependencies mentioned in requirements.txt using pip install -r requirements.txt
4. Run the main.py python file.

Note: Make sure your system fulfills the necessary requirements and dependencies before running the application.

Related links

• Overview of alerts in Microsoft Azure
• Create and manage action groups
• Engage your organization's security team
• Manage connected tenants