A collection of scripts and resources to help with getting a better understanding of whats going on in Azure for security or compliance.
This script breaks down all Privileged access in Azure.
- Show all users, groups, service principles that are have Owner, Contibutor, Admin or AcrPush in the role.
- Show users in these groups (todo: Add expanding subgroups)
- Show addtional information about Service Principles
- Show OAuth permissions for anything with "ReadWrite.All" Biggest concern would be Directory.ReadWrite.All