detecting-misconfigured-azure-storage

Featured

Detecting misconfigured Azure Storage accounts including publicly accessible blob containers, missing encryption settings, overly permissive SAS tokens, disabled logging, and network access violations using Azure CLI, PowerShell, and Microsoft Defender for Storage.

AI & Automation 12,642 stars 1468 forks Updated today Apache-2.0

Install

View on GitHub

Quality Score: 99/100

Stars 20%

100

Recency 20%

100

Frontmatter 20%

Documentation 15%

100

Issue Health 10%

License 10%

100

Description 5%

100

Skill Content

# Detecting Misconfigured Azure Storage ## When to Use - When performing a security audit of Azure Storage accounts across subscriptions - When responding to Microsoft Defender for Storage alerts about anonymous access or data exfiltration - When compliance requires verification of encryption, network restrictions, and access logging - When investigating potential data exposure through publicly accessible blob containers - When onboarding Azure subscriptions and establishing storage security baselines **Do not use** for Azure SQL or Cosmos DB security auditing (use dedicated database security tools), for real-time threat detection on storage operations (use Defender for Storage), or for Azure Files or Data Lake Gen2 specific auditing without adapting the checks. ## Prerequisites - Azure CLI installed and authenticated (`az login`) with Reader and Storage Account Contributor roles - Az PowerShell module installed for advanced queries (`Install-Module Az.Storage`) - Microsoft Defender for Storage enabled for threat detection - Access to Azure Resource Graph for cross-subscription queries - ScoutSuite or Prowler Azure provider for automated assessment ## Workflow ### Step 1: Enumerate All Storage Accounts and Basic Configuration List all storage accounts across subscriptions and assess their baseline security settings. ```bash # List all storage accounts across all subscriptions az storage account list \ --query "[].{Name:name, ResourceGroup:resourceGroup, Location:lo...

Details

Author: mukul975
Repository: mukul975/Anthropic-Cybersecurity-Skills
Created: 3 months ago
Last Updated: today
Language: Python
License: Apache-2.0

Integrates with

Azure · Cloud

Similar Skills

Semantically similar based on skill content — not just same category

AI & Automation Solid

detecting-azure-storage-account-misconfigurations

Audit Azure Blob and ADLS storage accounts for public access exposure, weak or long-lived SAS tokens, missing encryption at rest, disabled HTTPS-only traffic, and outdated TLS versions using the azure-mgmt-storage Python SDK.

12,642 Updated today

mukul975

AI & Automation Featured

auditing-azure-active-directory-configuration

Auditing Microsoft Entra ID (Azure Active Directory) configuration to identify risky authentication policies, overly permissive role assignments, stale accounts, conditional access gaps, and guest user risks using AzureAD PowerShell, Microsoft Graph API, and ScoutSuite.

12,642 Updated today

mukul975

AI & Automation Solid

azure-security-scanner

Azure security configuration scanning and hardening using Azure Security Center, Azure Policy, and ScoutSuite

1,034 Updated today

a5c-ai

AI & Automation Listed

azure-storage

335 Updated today

aiskillstore

AI & Automation Solid

azure-storage

Azure Storage Services including Blob Storage, File Shares, Queue Storage, Table Storage, and Data Lake. Provides object storage, SMB file shares, async messaging, NoSQL key-value, and big data analytics capabilities. Includes access tiers (hot, cool, archive) and lifecycle management. USE FOR: blob storage, file shares, queue storage, table storage, data lake, upload files, download blobs, storage accounts, access tiers, lifecycle management. DO NOT USE FOR: SQL databases, Cosmos DB (use azure-prepare), messaging with Event Hubs or Service Bus (use azure-messaging).

1,998 Updated 1 months ago

microsoft