Azure and GCP Perimeter Security, CIS Updates, and Enhanced Plugins →
Powerpipe Hub 
Hub
Mods
turbot/steampipe-mod-azure-perimeter
Overview
2Dashboards
14Benchmarks
0Queries
3Variables
GitHub

Benchmark: Security Group Access

This benchmark answers the following questions:

  • What network security groups allow common ports to be accessed from the internet?
  • What network security groups allow TCP/UDP access to all ports (*) from the internet?

Usage

Install the mod:

mkdir dashboards
cd dashboards
powerpipe mod init
powerpipe mod install github.com/turbot/steampipe-mod-azure-perimeter

Start the Powerpipe server:

steampipe service start
powerpipe server

Open http://localhost:9033 in your browser and select Security Group Access.

Run this benchmark in your terminal:

powerpipe benchmark run azure_perimeter.benchmark.security_group_access

Snapshot and share results via Turbot Pipes:

powerpipe benchmark run azure_perimeter.benchmark.security_group_access --share

Controls

Tags

category = Perimeter
plugin = azure
service = Azure
type = Benchmark