Additions to README.me, 365Inspect.ps1, DefaultTemplate.html, new CIS-Inspectors

[asterictnl-lvdw]

The following changes have been made:

• README.md: Made things more clear and added some additional information (also based on the soteria website)
• 365Inspect.ps1: Expected Value and Default Value (this is also included in the report.html if the values are null nothing is displayed in the table. It is handy to know and add these values in the .json file so users might know the expected value as well
• 365InspectDefaultTemplate.html: Added Expected Value and Default Value
• LICENSE.md should be (C) 2022 now ;)
• Added the CIS-Inspectors I have written that are based on the latest CIS benchmark from CISSecurity.

[ThoughtContagion]

Thank you for your continued development of the tool. At this time, we cannot merge the full PR as it is. The additional CIS inspectors are not called via any methods, updates to the html template and 365Inspect.ps1 files return bracketed values for the included inspectors, and 16 of the 36 CIS inspectors duplicate current inspectors.

• Audit-AnonymousCalendarSharing.ps1 duplicates ExternalCalendarSharing.ps1
• Audit-AnonymousLinksExpireSP.ps1 duplicates SharepointLinkExpiry.ps1
• Audit-AppsAccessCompanyData.ps1 duplicates ThirdPartyIntegratedAppPermission.ps1
• Audit-Basic-Authentication.ps1 duplicates Get-BasicAuthConfig.ps1
• Audit-DefaultUserRolePermissionsAzureAppsPt1.ps1 duplicates DangerousDefaults.ps1
• Audit-DlpPolicyExistence.ps1 duplicates Inspect-DLPPolicyState.ps1
• Audit-ExchangeAntiPhishPolicy.ps1 duplicates CustomAntiPhishingPolicy.ps1
• Audit-ExchangeDomainWhitelisting.ps1 duplicates TransportRulesWhitelistDomains.ps1
• Audit-ExchangeMalwareFilterPolicyAdminNotifications.ps1 duplicates InternalUsersSendingMalwarePolicy.ps1
• Audit-ExchangeSpamFilterPolicyStatus.ps1 duplicates CustomAntiMalwarePolicy.ps1
• Audit-M365_AuditLogSearch.ps1 duplicates AuditLogSearchEnabled.ps1
• Audit-ModernAuthentication.ps1 duplicates ExchangeModernAuthentication.ps1
• Audit-PasswordPolicyNoExpiration.ps1 duplicates PasswordExpiry.ps1
• Audit-PreventExternalUsersFromReSharingFilesSharePoint.ps1 duplicates SharepointExternalUserResharing.ps1
• Audit-SelfServicePasswordResetCheck.ps1 duplicates SelfServePasswordReset.ps1
• Audit-SharepointLegacyAuthChecker.ps1 duplicates SharepointLegacyAuthEnabled.ps1

We have pulled down your repo and will selectively include the changes that make sense, add the new functionality of Default and Expected Values, and will make sure to credit you for those items. We hope to have these enhancements integrated soon.

[asterictnl-lvdw]

@ThoughtContagion

Thank you for your reply.

I am happy that you are at least taking a look and considering implementing partial functions. For now I hope:

• The README.md is an addition to the current one.
• The not duplicate CIS audit are an addition to the current inspectors
• The DEFAULTVALUE and EXPECTEDVALUE field in the report are an addition

I only focused on the CIS benchmark for now. If I find it necessary to make more audit scripts for different modules to check I will do research and check if it is possible.

Kind regards,

~Leonardo van de Weteringh

[ThoughtContagion]

@asterictnl-lvdw

We appreciate the continued interest in and furthering of the tool!

The non-duplicate CIS inspectors are great additions to the tool, as are the default and expected value fields. We have been slowly working to integrate those fields from your previous feature requests, the work you've done here certainly should help expedite those additions. Where it makes sense with the items being incorporated, we'll ensure that the relevant portions of the README file reflect your suggested changes.

Thank you!