| Microsoft 365 Resources | _type of the Entity | _class of the Entity |
|---|---|---|
| Account | azure_account |
Account |
| Group | azure_user_group |
UserGroup |
| Group Member | azure_group_member |
User |
| User | azure_user |
User |
| Azure Resources | _type of the Entity | _class of the Entity |
|---|---|---|
| Virtual Network | azure_vnet |
Network |
| Subnet | azure_subnet |
Network |
| Security Group | azure_security_group |
Firewall |
| Network Interface | azure_nic |
NetworkInterface |
| Public IP Address | azure_public_ip |
IpAddress |
| Virtual Machine | azure_vm |
Host |
| From | Edge | To |
|---|---|---|
azure_account |
HAS | azure_user |
azure_account |
HAS | azure_user_group |
azure_user_group |
HAS | azure_user |
azure_user_group |
HAS | azure_user_group |
azure_user_group |
HAS | azure_group_member |
azure_vnet |
CONTAINS | azure_subnet |
azure_subnet |
HAS | azure_vm |
azure_security_group |
PROTECTS | azure_subnet |
azure_security_group |
PROTECTS | azure_nic |
azure_vm |
USES | azure_nic |
azure_vm |
USES | azure_public_ip |
The following entities are created:
| Resources | Entity _type |
Entity _class |
|---|---|---|
| [AD] Account | azure_account |
Account |
| [AD] Group | azure_user_group |
UserGroup |
| [AD] Group Member | azure_group_member |
User |
| [AD] Service Principal | azure_service_principal |
Service |
| [AD] User | azure_user |
User |
| [RM] API Management API | azure_api_management_api |
ApplicationEndpoint |
| [RM] API Management Service | azure_api_management_service |
Gateway |
| [RM] Advisor Recommendation | azure_advisor_recommendation |
Finding |
| [RM] Azure Managed Disk | azure_managed_disk |
DataStore, Disk |
| [RM] Batch Account | azure_batch_account |
Service |
| [RM] Batch Application | azure_batch_application |
Process |
| [RM] Batch Certificate | azure_batch_certificate |
Certificate |
| [RM] Batch Pool | azure_batch_pool |
Cluster |
| [RM] CDN Endpoint | azure_cdn_endpoint |
Gateway |
| [RM] CDN Profile | azure_cdn_profile |
Service |
| [RM] Classic Admin | azure_classic_admin_group |
UserGroup |
| [RM] Container | azure_container |
Container |
| [RM] Container Group | azure_container_group |
Group |
| [RM] Container Registry | azure_container_registry |
DataStore |
| [RM] Container Registry Webhook | azure_container_registry_webhook |
ApplicationEndpoint |
| [RM] Container Volume | azure_container_volume |
Disk |
| [RM] Cosmos DB Account | azure_cosmosdb_account |
Account, Service |
| [RM] Cosmos DB Database | azure_cosmosdb_sql_database |
Database, DataStore |
| [RM] DNS Record Set | azure_dns_record_set |
DomainRecord |
| [RM] DNS Zone | azure_dns_zone |
DomainZone |
| [RM] Event Grid Domain | azure_event_grid_domain |
Service |
| [RM] Event Grid Domain Topic | azure_event_grid_domain_topic |
Queue |
| [RM] Event Grid Topic | azure_event_grid_topic |
Queue |
| [RM] Event Grid Topic Subscription | azure_event_grid_topic_subscription |
Subscription |
| [RM] Image | azure_image |
Image |
| [RM] Key Vault | azure_keyvault_service |
Service |
| [RM] Load Balancer | azure_lb |
Gateway |
| [RM] MariaDB Database | azure_mariadb_database |
Database, DataStore |
| [RM] MariaDB Server | azure_mariadb_server |
Database, DataStore, Host |
| [RM] Monitor Diagnostic Log Setting | azure_diagnostic_log_setting |
Configuration |
| [RM] Monitor Diagnostic Metric Setting | azure_diagnostic_metric_setting |
Configuration |
| [RM] Monitor Log Profile | azure_monitor_log_profile |
Configuration |
| [RM] MySQL Database | azure_mysql_database |
Database, DataStore |
| [RM] MySQL Server | azure_mysql_server |
Database, DataStore, Host |
| [RM] Network Interface | azure_nic |
NetworkInterface |
| [RM] Policy Assignment | azure_policy_assignment |
ControlPolicy |
| [RM] PostgreSQL Database | azure_postgresql_database |
Database, DataStore |
| [RM] PostgreSQL Server | azure_postgresql_server |
Database, DataStore, Host |
| [RM] Private DNS Record Set | azure_private_dns_record_set |
DomainRecord |
| [RM] Private DNS Zone | azure_private_dns_zone |
DomainZone |
| [RM] Public IP Address | azure_public_ip |
IpAddress |
| [RM] Redis Cache | azure_redis_cache |
Database, DataStore, Cluster |
| [RM] Redis Firewall Rule | azure_firewall_rule |
Firewall |
| [RM] Resource Group | azure_resource_group |
Group |
| [RM] Role Assignment | azure_role_assignment |
AccessPolicy |
| [RM] Role Definition | azure_role_definition |
AccessRole |
| [RM] SQL Database | azure_sql_database |
Database, DataStore |
| [RM] SQL Server | azure_sql_server |
Database, DataStore, Host |
| [RM] Security Assessment | azure_security_assessment |
Assessment |
| [RM] Security Contact | azure_security_center_contact |
Resource |
| [RM] Security Group | azure_security_group |
Firewall |
| [RM] Service Bus Namespace | azure_service_bus_namespace |
Service |
| [RM] Service Bus Queue | azure_service_bus_queue |
Queue |
| [RM] Service Bus Subscription | azure_service_bus_subscription |
Subscription |
| [RM] Service Bus Topic | azure_service_bus_topic |
Queue |
| [RM] Storage Account | azure_storage_account |
Service |
| [RM] Storage Container | azure_storage_container |
DataStore |
| [RM] Storage File Share | azure_storage_file_share |
DataStore |
| [RM] Storage Queue | azure_storage_queue |
Queue |
| [RM] Storage Table | azure_storage_table |
DataStore, Database |
| [RM] Subnet | azure_subnet |
Network |
| [RM] Subscription | azure_subscription |
Account |
| [RM] Virtual Machine | azure_vm |
Host |
| [RM] Virtual Network | azure_vnet |
Network |
The following relationships are created/mapped:
Source Entity _type |
Relationship _class |
Target Entity _type |
|---|---|---|
azure_account |
HAS | azure_user_group |
azure_account |
HAS | azure_keyvault_service |
azure_account |
HAS | azure_user |
azure_api_management_service |
HAS | azure_api_management_api |
azure_security_assessment |
IDENTIFIED | azure_advisor_recommendation |
azure_batch_account |
HAS | azure_batch_application |
azure_batch_account |
HAS | azure_batch_certificate |
azure_batch_account |
HAS | azure_batch_pool |
azure_cdn_profile |
HAS | azure_cdn_endpoint |
azure_classic_admin_group |
HAS | azure_user |
azure_container_group |
HAS | azure_container |
azure_container_group |
HAS | azure_container_volume |
azure_container_registry |
HAS | azure_container_registry_webhook |
azure_container |
USES | azure_container_volume |
azure_container_volume |
USES | azure_storage_file_share |
azure_cosmosdb_account |
HAS | azure_cosmosdb_sql_database |
azure_diagnostic_log_setting |
USES | azure_storage_account |
azure_diagnostic_metric_setting |
USES | azure_storage_account |
azure_dns_zone |
HAS | azure_dns_record_set |
azure_event_grid_domain |
HAS | azure_event_grid_domain_topic |
azure_event_grid_domain_topic |
HAS | azure_event_grid_topic_subscription |
azure_event_grid_topic |
HAS | azure_event_grid_topic_subscription |
azure_user_group |
HAS | azure_user_group |
azure_user_group |
HAS | azure_group_member |
azure_user_group |
HAS | azure_user |
azure_lb |
CONNECTS | azure_nic |
azure_mariadb_server |
HAS | azure_mariadb_database |
azure_monitor_log_profile |
USES | azure_storage_account |
azure_mysql_server |
HAS | azure_mysql_database |
azure_postgresql_server |
HAS | azure_postgresql_database |
azure_private_dns_zone |
HAS | azure_private_dns_record_set |
azure_redis_cache |
CONNECTS | azure_redis_cache |
azure_redis_cache |
HAS | azure_firewall_rule |
azure_resource_group |
HAS | azure_api_management_service |
azure_resource_group |
HAS | azure_batch_account |
azure_resource_group |
HAS | azure_cdn_profile |
azure_resource_group |
HAS | azure_container_group |
azure_resource_group |
HAS | azure_container_registry |
azure_resource_group |
HAS | azure_cosmosdb_account |
azure_resource_group |
HAS | azure_dns_zone |
azure_resource_group |
HAS | azure_event_grid_domain |
azure_resource_group |
HAS | azure_event_grid_topic |
azure_resource_group |
HAS | azure_image |
azure_resource_group |
HAS | azure_keyvault_service |
azure_resource_group |
HAS | azure_lb |
azure_resource_group |
HAS | azure_managed_disk |
azure_resource_group |
HAS | azure_mariadb_server |
azure_resource_group |
HAS | azure_mysql_server |
azure_resource_group |
HAS | azure_nic |
azure_resource_group |
HAS | azure_postgresql_server |
azure_resource_group |
HAS | azure_private_dns_zone |
azure_resource_group |
HAS | azure_public_ip |
azure_resource_group |
HAS | azure_redis_cache |
azure_resource_group |
HAS | azure_security_group |
azure_resource_group |
HAS | azure_service_bus_namespace |
azure_resource_group |
HAS | azure_sql_server |
azure_resource_group |
HAS | azure_storage_account |
azure_resource_group |
HAS | azure_vm |
azure_resource_group |
HAS | azure_vnet |
ANY_SCOPE |
HAS | azure_diagnostic_log_setting |
ANY_SCOPE |
HAS | azure_diagnostic_metric_setting |
ANY_SCOPE |
HAS | azure_advisor_recommendation |
ANY_SCOPE |
HAS | azure_policy_assignment |
azure_role_assignment |
ALLOWS | azure_api_management_service |
azure_role_assignment |
ALLOWS | azure_container_registry |
azure_role_assignment |
ALLOWS | azure_cosmosdb_account |
azure_role_assignment |
ALLOWS | azure_dns_zone |
azure_role_assignment |
ALLOWS | azure_keyvault_service |
azure_role_assignment |
ALLOWS | azure_nic |
azure_role_assignment |
ALLOWS | azure_private_dns_zone |
azure_role_assignment |
ALLOWS | azure_public_ip |
azure_role_assignment |
ALLOWS | azure_resource_group |
azure_role_assignment |
ALLOWS | azure_security_group |
azure_role_assignment |
ALLOWS | azure_storage_account |
azure_role_assignment |
ALLOWS | azure_subscription |
azure_role_assignment |
ALLOWS | azure_vnet |
azure_role_assignment |
ASSIGNED | azure_application |
azure_role_assignment |
ASSIGNED | azure_directory |
azure_role_assignment |
ASSIGNED | azure_directory_role_template |
azure_role_assignment |
ASSIGNED | azure_everyone |
azure_role_assignment |
ASSIGNED | azure_foreign_group |
azure_role_assignment |
ASSIGNED | azure_msi |
azure_role_assignment |
ASSIGNED | azure_service_principal |
azure_role_assignment |
ASSIGNED | azure_unknown |
azure_role_assignment |
ASSIGNED | azure_unknown_principal_type |
azure_role_assignment |
ASSIGNED | azure_user |
azure_role_assignment |
ASSIGNED | azure_user_group |
azure_role_assignment |
USES | azure_role_definition |
azure_security_group |
PROTECTS | azure_nic |
azure_security_group |
PROTECTS | azure_subnet |
azure_security_group |
ALLOWS | azure_subnet |
azure_service_bus_namespace |
HAS | azure_service_bus_queue |
azure_service_bus_namespace |
HAS | azure_service_bus_topic |
azure_service_bus_topic |
HAS | azure_service_bus_subscription |
azure_sql_server |
HAS | azure_sql_database |
azure_storage_account |
HAS | azure_storage_container |
azure_storage_account |
HAS | azure_storage_file_share |
azure_storage_account |
HAS | azure_storage_queue |
azure_storage_account |
HAS | azure_storage_table |
azure_storage_account |
USES | azure_keyvault_service |
azure_subnet |
HAS | azure_vm |
azure_subscription |
HAS | azure_monitor_log_profile |
azure_subscription |
HAS | azure_resource_group |
azure_subscription |
HAS | azure_security_center_contact |
azure_subscription |
PERFORMED | azure_security_assessment |
azure_vm |
USES | azure_managed_disk |
azure_vm |
USES | azure_nic |
azure_vm |
USES | azure_public_ip |
azure_vnet |
CONTAINS | azure_subnet |