v1.0 for Steampipe, Powerpipe, Flowpipe, 116 plugins, and 44 mods →
Powerpipe Hub 
Hub
Mods
turbot/azure_compliance
Overview
13Dashboards
1311Controls
430Queries
2Variables
GitHub

Control: A vulnerability assessment solution should be enabled on your virtual machines

Description

Audits virtual machines to detect whether they are running a supported vulnerability assessment solution. A core component of every cyber risk and security program is the identification and analysis of vulnerabilities. Azure Security Center's standard pricing tier includes vulnerability scanning for your virtual machines at no extra cost. Additionally, Security Center can automatically deploy this tool for you.

Usage

Run the control in your terminal:

powerpipe control run azure_compliance.control.compute_vm_vulnerability_assessment_solution_enabled

Snapshot and share results via Turbot Pipes:

powerpipe login
powerpipe control run azure_compliance.control.compute_vm_vulnerability_assessment_solution_enabled --share

SQL

This control uses a named query:

compute_vm_vulnerability_assessment_solution_enabled

Tags

fedramp_high = true
hipaa_hitrust_v92 = true
nist_sp_800_171_rev_2 = true
nist_sp_800_53_rev_5 = true
pci_dss_v321 = true
rbi_itf_nbfc_v2017 = true
service = Azure/Compute