I built AzureReview (Beta): An open-source, AI-powered Azure security auditing tool
Hey r/AZURE,
I’ve been working on an open-source tool called AzureReview designed to make Azure security assessments faster and deeper. I wanted to share this release with the community for feedback.
Please note: This is currently in Beta. The core engine is solid, but it is still a work in progress. There will be much more work, continuous updates, and refined audit rules added in the future as the platform evolves.
It uses a dual-engine approach to bridge the gap between fast automated scans and manual audits:
- Deterministic Finding Engine: 50+ rule-based checks for "hard" misconfigurations (IAM wildcards, open NSG ports, unencrypted storage).
- Specialized AI Agents: Domain-specific AI agents (Networking, Compute, IAM) that analyze raw resource data to uncover complex, cross-resource risks.
Key Features:
- 9-Domain Coverage (IAM/RBAC, Networking, Storage, Key Vault, Defender, etc.)
- AI Report Synthesis: Compiles findings into a professional executive summary.
- Client-Ready Exports: Generate PDF or DOCX reports.
- Secure-by-Design: Azure credentials are encrypted at rest using AES-256-GCM.
I've included a Demo Account in the repo's README so you can see the scanner and AI reports in action immediately without setting anything up yourself.
GitHub Repo:https://github.com/azizjarrar/azure-environment-reviewer
I’d love to hear your thoughts, feedback, or feature requests as I continue developing this!