Azure Not Allowed Resource Types Policy
Description
Detects if an Azure subscription is missing the "Not allowed resource types" policy assignment. This policy is critical for controlling what types of Azure resources can be provisioned within a subscription, helping prevent the creation of unauthorized or potentially insecure resource types.
Detection Strategy
• Retrieves all policy assignments for the specified Azure subscription
• Checks if 'Not allowed resource types' policy is present in the list of assigned policies
• Reports a vulnerability if the policy is not found in the subscription's policy assignments
Search for vulnerabilities in your apps for free with Fluid Attacks' automated security testing! Start your 21-day free trial and discover the benefits of the Continuous Hacking Essential plan. If you prefer the Advanced plan, which includes the expertise of Fluid Attacks' hacking team, fill out this contact form.