Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add table azure_security_center_sub_assessment Closes #473 #482

Merged
merged 10 commits into from
May 4, 2022
Merged

Add table azure_security_center_sub_assessment Closes #473 #482

merged 10 commits into from
May 4, 2022

Conversation

karanpopat
Copy link
Contributor

@karanpopat karanpopat commented Apr 28, 2022
edited by bigdatasourav
Loading

Integration test logs

Logs 
Integration test is not feasible.

Example query results

Results 
> select
  name,
  display_name,
  type,
  category
from
  azure_security_center_sub_assessment;
+--------------------------------------+------------------------------------------------------------------------------------------+-----------------------------------------------+-----------------+
| name                                 | display_name                                                                             | type                                          | category        |
+--------------------------------------+------------------------------------------------------------------------------------------+-----------------------------------------------+-----------------+
| 1fb7d963-376a-5ae4-f61f-6cc7374cee0b | Deprecated accounts with owner permissions should be removed from your subscription      | Microsoft.Security/assessments/subAssessments | N/A             |
| 3d1851df-b87e-304c-fae3-54ec31555d52 | User(s) With Blank Password                                                              | Microsoft.Security/assessments/subAssessments | Security Policy |
| 87dae16e-22c0-6576-3c07-7bd8631c3d95 | Linux Docker Image Hard-Coded Credential Vulnerability                                   | Microsoft.Security/assessments/subAssessments | Local           |
| f9be72b0-481d-f2fb-28f2-e2622622aac1 | Enable MFA for Azure Management App accounts with owner permissions on your subscription | Microsoft.Security/assessments/subAssessments | N/A             |
| 78968958-1d62-25e1-9b6c-b6dff7eb2fff | Enable MFA for Azure Management App accounts with owner permissions on your subscription | Microsoft.Security/assessments/subAssessments | N/A             |
| 627c16ad-f127-3be5-5eca-947cbae06c5b | Enable MFA for Azure Management App accounts with owner permissions on your subscription | Microsoft.Security/assessments/subAssessments | N/A             |
+--------------------------------------+------------------------------------------------------------------------------------------+-----------------------------------------------+-----------------+

> select
  name,
  category,
  status
from
  azure_security_center_sub_assessment
where
  status ->> 'Code' = 'Unhealthy';
+--------------------------------------+-----------------+-----------------------------------------------------------------------------------------------------------------------------------------------------------+
| name                                 | category        | status                                                                                                                                                    |
+--------------------------------------+-----------------+-----------------------------------------------------------------------------------------------------------------------------------------------------------+
| 475c25eb-4491-9512-45ab-e5cbf9b165d7 | N/A             | {"Cause":"NoCaPolicyAssignedOnTenant","Code":"Unhealthy","Description":"Azure AD Conditional Access isn’t configured on the tenant.","Severity":"Medium"} |
| d108f80f-2845-e8fb-0916-66e6cbaf3ecc | N/A             | {"Cause":"NoCaPolicyAssignedOnTenant","Code":"Unhealthy","Description":"Azure AD Conditional Access isn’t configured on the tenant.","Severity":"Medium"} |
| 89ca9804-62dc-321e-12f7-c82b67441d0b | N/A             | {"Cause":"NoCaPolicyAssignedOnTenant","Code":"Unhealthy","Description":"Azure AD Conditional Access isn’t configured on the tenant.","Severity":"Medium"} |
| 1fb7d963-376a-5ae4-f61f-6cc7374cee0b | N/A             | {"Code":"Unhealthy","Severity":"High"}                                                                                                                    |
| 87dae16e-22c0-6576-3c07-7bd8631c3d95 | Local           | {"Code":"Unhealthy","Severity":"High"}                                                                                                                    |
| 3d1851df-b87e-304c-fae3-54ec31555d52 | Security Policy | {"Code":"Unhealthy","Severity":"High"}                                                                                                                   
+--------------------------------------+-----------------+-----------------------------------------------------------------------------------------------------------------------------------------------------------+

@karanpopat karanpopat self-assigned this Apr 28, 2022
@rajlearner17 rajlearner17 linked an issue Apr 29, 2022 that may be closed by this pull request
Add table azure_security_center_sub_assessment #473
Closed
@rajlearner17 rajlearner17 marked this pull request as draft April 29, 2022 05:24
@karanpopat karanpopat marked this pull request as ready for review April 29, 2022 08:24
bigdatasourav
bigdatasourav reviewed May 2, 2022
View reviewed changes
azure/table_azure_security_center_sub_assessment.go Outdated
},
{
Name: "assessment_name",
Description: "Assessment name.",
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
Description: "Assessment name.",
Description: "The assessment name.",

bigdatasourav
bigdatasourav reviewed May 2, 2022
View reviewed changes
azure/table_azure_security_center_sub_assessment.go Outdated
Transform: transform.FromField("SubAssessmentProperties.TimeGenerated"),
},
{
Name: "addressed_resource_type",
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
Name: "addressed_resource_type",
Name: "assessed_resource_type",

bigdatasourav
bigdatasourav approved these changes May 2, 2022
View reviewed changes
Copy link
Contributor

@bigdatasourav bigdatasourav left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@bigdatasourav bigdatasourav merged commit 84d2854 into main May 4, 2022
@bigdatasourav bigdatasourav deleted the issue_473_azure_security_center_sub_assessment branch May 4, 2022 07:22
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@bigdatasourav bigdatasourav bigdatasourav approved these changes

Assignees

@karanpopat karanpopat

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Add table azure_security_center_sub_assessment
2 participants
@karanpopat @bigdatasourav