Walk through M365 and Entra ID controls, answer yes or no, and get a scored breakdown by category with findings and next steps. Built from the same checklist I use in identity security reviews.
← All Tools/Engineering Tools/Identity Risk Mapper
MFA is enforced for all users
Passwordless authentication is enabled
Legacy authentication protocols are blocked
Number of standing Global Administrators
PIM (Privileged Identity Management) is configured for privileged roles
Admin accounts are separate from daily-use accounts
A break-glass emergency admin account exists
Break-glass account is excluded from Conditional Access policies
Conditional Access policies are deployed and enforced
Sign-in risk policies are enabled (Entra ID Protection)
User risk policies are enabled (Entra ID Protection)
Identity Governance (access reviews, lifecycle) is configured
Security Rating
Category Scores
Top Findings
Prioritized Recommendations
Also available
22 free tools for DNS, subdomain enumeration, JWT analysis, CVE lookup, and more.