Benchmark: Network Detections
Description
This detection benchmark contains recommendations when scanning Azure Network activity logs.
Usage
Install the mod:
mkdir dashboardscd dashboardspowerpipe mod initpowerpipe mod install github.com/turbot/tailpipe-mod-azure-activity-log-detectionsStart the Powerpipe server:
powerpipe serverOpen http://localhost:9033 in your browser and select Network Detections.
Run this benchmark in your terminal:
powerpipe benchmark run azure_activity_log_detections.benchmark.network_detectionsSnapshot and share results via Turbot Pipes:
powerpipe benchmark run azure_activity_log_detections.benchmark.network_detections --shareDetections
- Network Application Gateway Deleted
- Network Application Security Group Deleted
- Network DNS Zone Deleted
- Network Firewall Deleted
- Network Firewall Policy Deleted
- Network Firewall Rule Created or Updated
- Network Firewall Rule Deleted
- Network Security Group Created or Updated
- Network Security Group Deleted
- Network VPN Connection Created or Updated
- Network VPN Connection Deleted
- Network Watcher Deleted
- Network Virtual Network Created or Updated
- Network Virtual Network Deleted