Cybercriminals have a new attack vector: Entra app registrations
Attackers use these apps to access critical files and emails. Then, they rapidly elevate their privileges (as seen in the Midnight Blizzard attack).
Identify elevated custom app permissions that lead to non-compliance and security gaps.
Attackers use these apps to access critical files and emails. Then, they rapidly elevate their privileges (as seen in the Midnight Blizzard attack).
Find and fix overprivileged apps with the Entra Security Scanner.
This free tool generates a report of all custom and third-party app registrations connected to Entra, so you can fix apps with elevated permissions.
Key Report Insights:
Secure your Entra app registrations (and your tenant) today.
Get started with our free scanner.
This tool uses a PowerShell script, AppRegistrationScanner.ps1, to scan all Entra Apps in your tenant. It can identify various apps, including those you've developed, PowerApps, and third-party applications.
You can customize the script with two options:
Each app starts with a 10-point score. Points are deducted for issues detected:
View the grading system table here.
This system helps you quickly identify and address potential security risks within your apps.