Azure and GCP Perimeter Security, CIS Updates, and Enhanced Plugins →
Powerpipe Hub 
Hub
Mods
turbot/steampipe-mod-azure-compliance
Overview
15Dashboards
1471Benchmarks
461Queries
8Variables
GitHub

Control: Adaptive application controls for defining safe applications should be enabled on your machines

Description

Enable application controls to define the list of known-safe applications running on your machines, and alert you when other applications run. This helps harden your machines against malware. To simplify the process of configuring and maintaining your rules, Security Center uses machine learning to analyze the applications running on each machine and suggest the list of known-safe applications.

Usage

Run the control in your terminal:

powerpipe control run azure_compliance.control.compute_vm_adaptive_application_controls_enabled

Snapshot and share results via Turbot Pipes:

powerpipe login
powerpipe control run azure_compliance.control.compute_vm_adaptive_application_controls_enabled --share

SQL

This control uses a named query:

select
  id as resource,
  'info' as status,
  'Manual verification required. Check control description for more details.' as reason,
  display_name as subscription
from
  azure_subscription;

Tags

hipaa_hitrust_v92 = true
nist_sp_800_53_rev_5 = true
service = Azure/Compute