Secure Microsoft Azure with Mondoo

Secure your Azure subscriptions by continuously scanning compute, databases, networks, and more for misconfigurations and vulnerabilities.

Mondoo finds misconfigurations and vulnerabilities across your Microsoft Azure environment: compute instances, databases, networks, key vaults, and more. You can continuously monitor your subscriptions, scan in your build pipeline, or run ad hoc scans from your workstation.

Continuously scan

For ongoing security and compliance assessment of your Azure subscriptions, set up a continuous integration:

Automated setup: The fastest path. Runs a generated command in Azure Cloud Shell to provision everything.
Manual setup: For large environments, management group integrations, or key vaults using the legacy access policy permission model.

Stuck? See Test or Troubleshoot an Azure Integration.

Scan during build

Assess risk in the Azure Container Registry
Build VM images with Packer

Scan at runtime

Scan an Azure subscription from your workstation with cnspec
Install cnspec via cloud-init
Terraform deployment
Verify instances managed by Chef Infra
Verify instances managed by Ansible

Secure Microsoft Azure with Mondoo

Continuously scan

Scan during build

Scan at runtime

On this page