Skip to content

Issues: cisagov/ScubaGear

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

180 Open 808 Closed
180 Open 808 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Issues list

Modify functional test schedule to run on Thursday night enhancement This issue or pull request will add new or improve existing functionality
#1427 opened Nov 14, 2024 by james-garriss
1 task
Kraken
1
@james-garriss
Document ability to add organizational metadata to the config file enhancement This issue or pull request will add new or improve existing functionality
#1425 opened Nov 13, 2024 by buidav
Append UUID to ScubaResults.json by default enhancement This issue or pull request will add new or improve existing functionality
#1422 opened Nov 12, 2024 by buidav Kraken
1
@adhilto
Certificate error due to broken url documentation This issue or pull request improves or adds to documentation
#1421 opened Nov 12, 2024 by ahuynhMITRE
1 task
Proposal: Create a new EXO policy to check for users with Default or Anonymous mailbox folder permissions baseline-document Issues relating to the text in the baseline documents themselves enhancement This issue or pull request will add new or improve existing functionality
#1420 opened Nov 12, 2024 by tkol2022
1 task
Proposal: Create a new EXO policy to check for users and groups that hold the ApplicationImpersonation role baseline-document Issues relating to the text in the baseline documents themselves enhancement This issue or pull request will add new or improve existing functionality
#1419 opened Nov 12, 2024 by tkol2022
1 task
Proposal: Create a new Defender policy to disable PowerShell access to inboxes from non-administrative users baseline-document Issues relating to the text in the baseline documents themselves enhancement This issue or pull request will add new or improve existing functionality hands-on-prototyping Reviewing an M365 feature by performing hands-on prototyping
#1418 opened Nov 12, 2024 by tkol2022
Proposal: Create a new Defender policy to check for users with their mailbox audit logging bypassed baseline-document Issues relating to the text in the baseline documents themselves enhancement This issue or pull request will add new or improve existing functionality hands-on-prototyping Reviewing an M365 feature by performing hands-on prototyping
#1417 opened Nov 12, 2024 by tkol2022
Policy question: Does Defender policy 6.2 need updates since Microsoft changed their default logging events for standard license holders? baseline-document Issues relating to the text in the baseline documents themselves enhancement This issue or pull request will add new or improve existing functionality hands-on-prototyping Reviewing an M365 feature by performing hands-on prototyping
#1416 opened Nov 12, 2024 by tkol2022
Proposal: change name of Defender 6.1 policy to more accurately reflect which configuration ScubaGear actually checks baseline-document Issues relating to the text in the baseline documents themselves enhancement This issue or pull request will add new or improve existing functionality
#1415 opened Nov 12, 2024 by tkol2022
Could not connect to SharePoint Online: Legacy Auth blocked by ADFS Claim rule bug This issue or pull request addresses broken functionality
#1414 opened Nov 11, 2024 by buidav
Download documentation omits importing the module documentation This issue or pull request improves or adds to documentation
#1411 opened Nov 11, 2024 by james-garriss Kraken
1
@james-garriss
Update Microsoft.PowerApps.Administration.PowerShell to v2.0.200 upstream update This issue or pull request pulls in upstream updates
#1409 opened Nov 8, 2024 by schrolla
3 tasks
Lionfish
sharepoint will be omitted from the output because of failed authentication bug This issue or pull request addresses broken functionality public-reported This issue is reported by the public users of the tool.
#1407 opened Nov 7, 2024 by lexpr0
7
Failed to execute in Azure B2C public-reported This issue is reported by the public users of the tool.
#1405 opened Nov 6, 2024 by sotodan
4
Defender export provider inadvertently downloads user data when retrieving a count of users without advanced auditing enhancement This issue or pull request will add new or improve existing functionality
#1404 opened Nov 5, 2024 by tkol2022 Kraken
1
@tkol2022
6
Write unit tests for Invoke-PSSA enhancement This issue or pull request will add new or improve existing functionality
#1403 opened Nov 5, 2024 by james-garriss
1 task
Backlog
@james-garriss
Move workflow code into functions and write unit tests for them epic A high-level objective issue encompassing multiple issues instead of a specific unit of work
#1402 opened Nov 5, 2024 by james-garriss
1 task
@james-garriss
1
Code Update: Removal of decommissioning Custom Script SharePoint Online Settings from the rego and yaml files bug This issue or pull request addresses broken functionality
#1400 opened Nov 4, 2024 by ahuynhMITRE
6 tasks
Kraken
@ahuynhMITRE
SCB Update: Removal of decommissioning Custom Script SharePoint Online settings from the SCBs baseline-document Issues relating to the text in the baseline documents themselves
#1399 opened Nov 4, 2024 by ahuynhMITRE
3 tasks
Kraken
1
@ahuynhMITRE
Determine risky permissions assignable from both Microsoft Graph and other APIs
#1397 opened Nov 2, 2024 by mitchelbaker-cisa
2 tasks
Kraken
@mitchelbaker-cisa
1
Power Platform DLP Policy bug bug This issue or pull request addresses broken functionality public-reported This issue is reported by the public users of the tool.
#1396 opened Nov 1, 2024 by desmay Kraken
7
Conduct an impact analysis of Inbound SMTP DANE with DNSSEC for Exchange Online baseline-document Issues relating to the text in the baseline documents themselves enhancement This issue or pull request will add new or improve existing functionality hands-on-prototyping Reviewing an M365 feature by performing hands-on prototyping
#1394 opened Oct 31, 2024 by tkol2022
4 tasks
Lionfish
@adhilto
1
Lionfish Documentation Updates documentation This issue or pull request improves or adds to documentation epic A high-level objective issue encompassing multiple issues instead of a specific unit of work
#1392 opened Oct 30, 2024 by schrolla
1 task
Lionfish
Modify Connection module to read from JSON permissions file instead of hard coded values enhancement This issue or pull request will add new or improve existing functionality
#1391 opened Oct 30, 2024 by tkol2022
2 tasks
Lionfish
1
ProTip! What’s not been updated in a month: updated:<2024-10-15.