| π AWS CloudTrail Root Account Usage Monitoring is not enabled π’ | | π’ x3 |
| π AWS IAM User has inline or directly attached policies π’ | 1 | π x1, π’ x5 |
| π AWS IAM User is not managed centrally in multi-account environments π’ | | π’ x3 |
| π Microsoft Entra ID Guest Invite Settings is not set to Only Users Assigned To Specific Admin Roles Can Invite Guest Users π’ | 1 | π’ x6 |
| π Microsoft Entra ID Guest Users are not reviewed on a regular basis π’ | | π’ x3 |
| π Microsoft Entra ID Guest Users restricted to their own directory objects π’ | 1 | π’ x6 |
| π Microsoft Entra ID Owners Can Manage Group Membership Requests In The Access Panel is set to Yes π’ | | π’ x3 |
| π Microsoft Entra ID Restrict User Ability To Access Groups Features In The Access Pane is set to No π’ | | π’ x3 |
| π Microsoft Entra ID User Consent For Applications is not set to Allow From Verified Publishers π’ | | π’ x3 |
| π Microsoft Entra ID User Consent For Applications is not set to Do Not Allow User Consent π’ | | π’ x3 |
| π Microsoft Entra ID User Settings Restrict Access To Microsoft Entra Admin Center is set to No π’ | | π’ x3 |
| π Microsoft Entra ID Users Can Create Microsoft 365 Groups In Azure Portals, API Or PowerShell is set to Yes π’ | | π’ x3 |
| π Microsoft Entra ID Users Can Create Security Groups In Azure Portals, API Or PowerShell is set to Yes π’ | | π’ x3 |
| π Microsoft Entra ID Users Can Register Applications is set to Yes π’ | 1 | π’ x6 |