Skip to content

Issues: cisagov/ScubaGear

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Assignee
Filter by who’s assigned
Sort

Issues list

Deprecate the -KeepIndividualJSON parameter breaking change This issue or pull request involves changes to existing functionality enhancement This issue or pull request will add new or improve existing functionality
#1438 opened Nov 20, 2024 by buidav Backlog
Validate the parameters passed into the Scuba config file bug This issue or pull request addresses broken functionality
#1437 opened Nov 20, 2024 by buidav
Link in the sample-report broken public-reported This issue is reported by the public users of the tool.
#1434 opened Nov 19, 2024 by elysiumsecurityltd
Conduct hands-on examination of organization and user level audit settings for Exchange Online mailboxes hands-on-prototyping Reviewing an M365 feature by performing hands-on prototyping
#1433 opened Nov 18, 2024 by tkol2022
3 tasks
Kraken
Update SCB acronym to be synonymous with "Secure Configuration Baseline" for consistency baseline-document Issues relating to the text in the baseline documents themselves documentation This issue or pull request improves or adds to documentation
#1432 opened Nov 15, 2024 by ahuynhMITRE
1 task
Kraken
Update Config file documentation and document ability to add organizational metadata to the config file enhancement This issue or pull request will add new or improve existing functionality
#1425 opened Nov 13, 2024 by buidav
Certificate error due to broken url documentation This issue or pull request improves or adds to documentation
#1421 opened Nov 12, 2024 by ahuynhMITRE
1 task
Proposal: Create a new EXO policy to check for users with Default or Anonymous mailbox folder permissions baseline-document Issues relating to the text in the baseline documents themselves enhancement This issue or pull request will add new or improve existing functionality
#1420 opened Nov 12, 2024 by tkol2022
1 task
Proposal: Create a new EXO policy to check for users and groups that hold the ApplicationImpersonation role baseline-document Issues relating to the text in the baseline documents themselves enhancement This issue or pull request will add new or improve existing functionality
#1419 opened Nov 12, 2024 by tkol2022
1 task
Proposal: Create a new Defender policy to disable PowerShell access to inboxes from non-administrative users baseline-document Issues relating to the text in the baseline documents themselves enhancement This issue or pull request will add new or improve existing functionality hands-on-prototyping Reviewing an M365 feature by performing hands-on prototyping
#1418 opened Nov 12, 2024 by tkol2022
Proposal: Create a new Defender policy to check for users with their mailbox audit logging bypassed baseline-document Issues relating to the text in the baseline documents themselves enhancement This issue or pull request will add new or improve existing functionality hands-on-prototyping Reviewing an M365 feature by performing hands-on prototyping
#1417 opened Nov 12, 2024 by tkol2022
Policy question: Does Defender policy 6.2 need updates since Microsoft changed their default logging events for standard license holders? baseline-document Issues relating to the text in the baseline documents themselves enhancement This issue or pull request will add new or improve existing functionality hands-on-prototyping Reviewing an M365 feature by performing hands-on prototyping
#1416 opened Nov 12, 2024 by tkol2022
Proposal: change name of Defender 6.1 policy to more accurately reflect which configuration ScubaGear actually checks baseline-document Issues relating to the text in the baseline documents themselves enhancement This issue or pull request will add new or improve existing functionality
#1415 opened Nov 12, 2024 by tkol2022
Could not connect to SharePoint Online: Legacy Auth blocked by ADFS Claim rule bug This issue or pull request addresses broken functionality
#1414 opened Nov 11, 2024 by buidav
Update Microsoft.PowerApps.Administration.PowerShell to v2.0.200 upstream update This issue or pull request pulls in upstream updates
#1409 opened Nov 8, 2024 by schrolla
3 tasks
Lionfish
sharepoint will be omitted from the output because of failed authentication bug This issue or pull request addresses broken functionality public-reported This issue is reported by the public users of the tool.
#1407 opened Nov 7, 2024 by lexpr0
Failed to execute in Azure B2C public-reported This issue is reported by the public users of the tool.
#1405 opened Nov 6, 2024 by sotodan
Write unit tests for Invoke-PSSA enhancement This issue or pull request will add new or improve existing functionality
#1403 opened Nov 5, 2024 by james-garriss
1 task
Kraken
Move workflow code into functions and write unit tests for them epic A high-level objective issue encompassing multiple issues instead of a specific unit of work
#1402 opened Nov 5, 2024 by james-garriss
1 task
Code Update: Removal of decommissioning Custom Script SharePoint Online Settings from the rego and yaml files bug This issue or pull request addresses broken functionality
#1400 opened Nov 4, 2024 by ahuynhMITRE
6 tasks
Kraken
SCB Update: Removal of decommissioning Custom Script SharePoint Online settings from the SCBs baseline-document Issues relating to the text in the baseline documents themselves
#1399 opened Nov 4, 2024 by ahuynhMITRE
3 tasks
Kraken
Power Platform DLP Policy bug bug This issue or pull request addresses broken functionality public-reported This issue is reported by the public users of the tool.
#1396 opened Nov 1, 2024 by desmay Kraken
Conduct an impact analysis of Inbound SMTP DANE with DNSSEC for Exchange Online baseline-document Issues relating to the text in the baseline documents themselves enhancement This issue or pull request will add new or improve existing functionality hands-on-prototyping Reviewing an M365 feature by performing hands-on prototyping
#1394 opened Oct 31, 2024 by tkol2022
4 tasks
Lionfish
ProTip! Updated in the last three days: updated:>2024-11-20.