| Rule ID | Title | Affected Services |
|---|---|---|
| CSPA-AZURE-2024-0001 | Unusual VM Size Patterns | Compute |
| CSPA-AZURE-2024-0002 | Instances with Hibernation Disabled | Compute |
| CSPA-AZURE-2024-0003 | Identifying Guest User Accounts | Microsoft Graph API |
| CSPA-AZURE-2024-0005 | Azure Web Apps with Disabled App Service Authentication | Web |
| CSPA-AZURE-2024-0006 | Web Apps Lacking Client Certificate Authentication | Web |
| CSPA-AZURE-2024-0007 | Azure Web Apps with FTP Deployment Enabled | Web |
| CSPA-AZURE-2024-0008 | Web Apps with HTTP 2.0 Disabled | Web |
| CSPA-AZURE-2024-0009 | Web Apps with Insecure HTTP Traffic Enabled | Web |
| CSPA-AZURE-2024-0010 | Unencrypted Disks Detected | Compute |
| CSPA-AZURE-2024-0011 | Enable the ‘Allow Trusted Microsoft Services’ Exception | Storage |
| CSPA-AZURE-2024-0012 | Configuring Storage Accounts to Restrict Default Network Access Settings | Storage |
| CSPA-AZURE-2024-0013 | Anomalies in Encryption Settings | |
| CSPA-AZURE-2024-0014 | Anomalies in the ‘Secure Transfer Required’ Setting | Storage |
| CSPA-AZURE-2024-0015 | Soft Delete or Purge Protection is disabled on the Azure Key Vault | Key Vaults |
| CSPA-AZURE-2024-0016 | Anomalies in Authorization Commands on Azure Key Vault | Key Vault |
| CSPA-AZURE-2024-0017 | Service .NET Version Detection for Optimal Execution | Web |
| CSPA-AZURE-2024-0018 | Detects the java version | Web |
| CSPA-AZURE-2024-0019 | Detects the php version | Web |
| CSPA-AZURE-2024-0020 | Detects the Python version | Web |
| CSPA-AZURE-2024-0021 | Minimum TLS version required | Web |
| CSPA-AZURE-2024-0022 | Azure Key Vaults should be accessible by Private endpoints only | Key Vaults |
