A curated collection of tools we use for Entra ID, Azure, and Microsoft 365 security and administration.
Framework for interacting with Azure AD (Entra ID) using the ROADrecon and ROADlib modules. Great for auditing and mapping tenant configurations.
Graph-based identity attack path analysis tool for Active Directory and Azure AD environments.
PowerShell-based Entra ID security configuration analyser that runs tests against best-practice benchmarks.
Interactive web tool for building, testing, and learning Microsoft Graph API queries.
Data collector for BloodHound that enumerates Azure and Entra ID objects and relationships.
CISA's tool for assessing M365 tenants against Secure Cloud Business Applications (SCuBA) baselines.
PowerShell module for auditing Microsoft 365, Azure, and Entra ID security configurations.
Microsoft's portal for managing Entra ID identities, access policies, and governance.
Query engine for exploring and analysing Azure resources at scale using Kusto Query Language.
Comprehensive PowerShell toolkit for Azure AD and Microsoft 365 administration and security research.
Microsoft's open-source PowerShell module that evaluates your tenant configuration against Zero Trust and Secure Future Initiative baselines.
Interactive Microsoft 365 licensing diagrams and feature matrix by Aaron Dinnage, showing what's included in every M365 license.
Proactively discover gaps in Entra Conditional Access policies before attackers do, by evaluating every possible access combination offline.
Browse Azure, Entra, and MS Graph administrative assets categorized into security tiers based on known attack paths.
Export Conditional Access policies to PowerPoint and explore Microsoft Entra products through an interactive mind map.
Find the minimum built-in Entra role for any admin task and compare roles side by side.