Description

Detects when Azure Network Watcher service is not enabled within an Azure subscription. Network Watcher is essential for monitoring network traffic, diagnosing connectivity issues, and performing network security analysis. Without it, organizations lack critical network visibility and security monitoring capabilities.

Detection Strategy

• Checks if any Network Watcher instances exist in the Azure subscription

• Reports a vulnerability if no Network Watcher instances are found in any region

• Vulnerability is generated at the subscription level since Network Watcher is a subscription-wide resource