Ready-made tests
Hundreds of curated tests covering identity, access, devices and apps โ ready to run on day one.
Security as Code (SaC)
Write Pester tests that encode your organization's business and security policies.
Apply modern DevSecOps practices and continuously monitor critical aspects of your Microsoft cloud.
Apply modern DevSecOps practices and continuously monitor critical aspects of your Microsoft cloud.
Conditional Access What-If
Avoid creating loopholes in your conditional access policies and test to see the impact of a policy change before it is applied.
Identity is the new control plane! Create iron-clad tests to ensure your tenant's posture is always secure as your access policies evolve.
Identity is the new control plane! Create iron-clad tests to ensure your tenant's posture is always secure as your access policies evolve.
Maester Test Framework
Maester is built on top of Pester, the PowerShell test framework and super charges it with cloud capabilities and user friendly reports.
Quickly set up Maester in your environment by following the step-by-step guides we've built for you.
Bring the ease of writing tests in PowerShell to your Microsoft 365 tenant with Maester!
Quickly set up Maester in your environment by following the step-by-step guides we've built for you.
Bring the ease of writing tests in PowerShell to your Microsoft 365 tenant with Maester!
๐ฅ Maester Test Reports
Get a quick snapshot of your tenant's security posture with the report generated by Maester.
The interactive click-through report lets you drill down to the details of each test.
The interactive click-through report lets you drill down to the details of each test.
Quick remediation
Test details include direct links to the Microsoft admin portals.
Jump straight into the conditional access policy that needs to be fixed or the group that needs to be reviewed.
Jump straight into the conditional access policy that needs to be fixed or the group that needs to be reviewed.
40+ EIDSCA Tests
Maester includes over 40+ out of the box tests from Entra ID Security Config Analyzer (EIDSCA).
EIDSCA is a part of the Microsoft Entra ID - Attack and Defense Playbook and is a collection of common attack scenarios on Microsoft Entra ID and how they can be mitigated.
EIDSCA is a part of the Microsoft Entra ID - Attack and Defense Playbook and is a collection of common attack scenarios on Microsoft Entra ID and how they can be mitigated.
Maester โค๏ธ GitHub
Integrate Maester with GitHub Actions to continuously monitor your tenant configuration.
Build an archive history of Maester test runs against your tenant with the native workflow integration in Maester.
Use Workload Identify Federation for your automation account to connect to Microsoft Graph (no more secrets or credential rotation!).
Build an archive history of Maester test runs against your tenant with the native workflow integration in Maester.
Use Workload Identify Federation for your automation account to connect to Microsoft Graph (no more secrets or credential rotation!).
Maester ๐ Azure DevOps
Maester can be integrated with Azure DevOps Pipelines and scheduled to be run daily
and when changes are introduced in your Microsoft 365 tenant.
Follow the step-by-step guide in the Maester docs to set up an automation account with Workload Identify Federation.
Follow the step-by-step guide in the Maester docs to set up an automation account with Workload Identify Federation.
Email Alerts
Set up email alerts to be delivered to your inbox with a
summary of the test results.
Get notified when a change is introduced in your Microsoft 365 tenant that affects the security configuration.
Get notified when a change is introduced in your Microsoft 365 tenant that affects the security configuration.
