漏洞描述
Keeping the cost of your Microsoft Azure cloud infrastructure under control is vital for your organization. It's important to ensure that budget exceeding alerts are created to prevent unexpected expenditure within your Azure account.
azure-budget-alerts-missing: Azure Budget Alerts Not Configured
PoC代码[已公开]
id: azure-budget-alerts-missing
info:
name: Azure Budget Alerts Not Configured
author: princechaddha
severity: high
description: |
Keeping the cost of your Microsoft Azure cloud infrastructure under control is vital for your organization. It's important to ensure that budget exceeding alerts are created to prevent unexpected expenditure within your Azure account.
impact: |
Lack of budget alerts can lead to unexpected costs, potentially exceeding budget limits without timely notifications.
remediation: |
Create and configure budget alerts in your Azure account to monitor and manage cloud expenditures effectively.
reference:
- https://docs.microsoft.com/en-us/azure/cost-management-billing/costs/tutorial-acm-create-budgets
tags: cloud,devops,azure,microsoft,budget,azure-cloud-config
self-contained: true
code:
- engine:
- sh
- bash
source: |
az consumption budget list --output json
matchers:
- type: regex
regex:
- '(?m)^\[\]$'
extractors:
- type: dsl
dsl:
- '"There are no budget alerts set up for cost monitoring in the Microsoft Azure cloud subscription"'
# digest: 490a004630440220743a5140c3a19a8b1faf016db2a4321c8f29ac24e8613bea9fe1eff5eaae162d02205eaa62a1d8d97e068416c79af5adddc97d1a761fe71f53b6d6a51d39fdf04009:922c64590222798bb761d5b6d8e72950