ScubaGear

A tool that discovers all AWS resources created in an account

ScubaGear: An Assessment Tool for Microsoft 365 Configuration

ScubaGear is an assessment tool that is specifically designed to verify the configuration of Microsoft 365 (M365) tenants. It checks these configurations against the Secure Cloud Business Applications (SCuBA) Security Configuration Baseline documents.

The tool operates in three main steps

It uses PowerShell to query M365 APIs for configuration settings

It utilizes PowerShell to access M365 APIs in order to retrieve various configuration settings.

It employs Open Policy Agent to ensure compliance

It utilizes Open Policy Agent (OPA) to assess these settings against Rego security policies that are derived from the baseline documents.

Report Generation in Multiple Formats

It generates reports in HTML, JSON, and CSV formats to clearly present the results of the comparison. ScubaGear is specifically designed for M365 administrators who aim to evaluate their tenant environments against the CISA Secure Configuration Baselines.

Installation Sources and Requirements

It can be installed from PSGallery and it requires specific dependencies and permissions to operate correctly.

The tool enables the evaluation of

The tool enables the evaluation of various M365 products and can be executed with specific parameters or by utilizing a configuration file.

It also includes features for troubleshooting various issues

It also includes features for troubleshooting common issues that may arise with multiple tenants, Defender, Exchange Online, Power Platform, Microsoft Graph, and proxy configurations.