silverhack
diff --git a/‎rules/findings/Microsoft365/Microsoft Fabric/CIS3.1/fabric-allow-users-apply-sensitivity-labels-not-enabled.json‎
Lines changed: 53 additions & 7 deletions b/‎rules/findings/Microsoft365/Microsoft Fabric/CIS3.1/fabric-allow-users-apply-sensitivity-labels-not-enabled.json‎
Lines changed: 53 additions & 7 deletions
diff --git a/‎rules/findings/Microsoft365/Microsoft Fabric/CIS3.1/fabric-block-resourcekey-authentication-not-enabled.json‎
Lines changed: 39 additions & 7 deletions b/‎rules/findings/Microsoft365/Microsoft Fabric/CIS3.1/fabric-block-resourcekey-authentication-not-enabled.json‎
Lines changed: 39 additions & 7 deletions
diff --git a/‎rules/findings/Microsoft365/Microsoft Fabric/CIS3.1/fabric-enabling-external-data-sharing-not-restricted.json‎
Lines changed: 53 additions & 7 deletions b/‎rules/findings/Microsoft365/Microsoft Fabric/CIS3.1/fabric-enabling-external-data-sharing-not-restricted.json‎
Lines changed: 53 additions & 7 deletions
diff --git a/‎rules/findings/Microsoft365/Microsoft Fabric/CIS3.1/fabric-external-user-invitations-not-restricted.json‎
Lines changed: 53 additions & 7 deletions b/‎rules/findings/Microsoft365/Microsoft Fabric/CIS3.1/fabric-external-user-invitations-not-restricted.json‎
Lines changed: 53 additions & 7 deletions
@@ -39,23 +39,59 @@
   ],
   "compliance": [
     {
-      "name": "CIS Microsoft 365 Foundations Benchmark",
-      "version": "3.1.0",
-      "reference": "9.1.6",
-	  "profile": "E3 Level 1"
+		"name": "CIS Microsoft 365 Foundations Benchmark",
+		"version": "5.0.0",
+		"reference": "9.1.6",
+		"profile": [
+			"E3 Level 1",
+			"E5 Level 1"
+		]
     }
   ],
   "level": "medium",
   "tags": [
 
   ],
   "rule": {
-    "path": "",
+    "path": "m365_fabric_tenant",
     "subPath": null,
     "selectCondition": {
 
     },
     "query": [
+      {
+        "filter": [
+          {
+            "conditions": [
+              [
+                "settingName",
+                "eq",
+                "EimInformationProtectionEdit"
+              ]
+            ]
+          }
+        ]
+      },
+	  {
+        "connectOperator": "and",
+        "filter": [
+          {
+            "conditions": [
+              [
+                "enabled",
+                "eq",
+                "True"
+              ],
+			  [
+                "enabledSecurityGroups.Count",
+                "eq",
+                "0"
+              ]
+            ],
+			"operator": "and"
+          }
+        ]
+	  }
     ],
     "shouldExist": null,
     "returnObject": null,
@@ -64,6 +100,12 @@
   "output": {
     "html": {
       "data": {
+        "properties": {
+          "title": "Title",
+          "enabled": "Enabled",
+          "tenantSettingGroup": "Group",
+          "enabledSecurityGroups": "Security Groups"
+        },
         "expandObject": null
       },
       "table": "Normal",
@@ -76,7 +118,11 @@
       "actions": {
         "objectData": {
           "properties": [
-            "*"
+            "title",
+            "enabled",
+            "location",
+            "tenantSettingGroup",
+            "enabledSecurityGroups"
           ],
           "expandObject": null,
           "limit": null
@@ -98,7 +144,7 @@
 
         ],
         "message": "Ensure 'Allow users to apply sensitivity labels for content' is 'Enabled'",
-        "defaultMessage": null
+        "defaultMessage": "Ensure 'Allow users to apply sensitivity labels for content' is 'Enabled'"
       },
       "properties": {
         "resourceName": null,
 
@@ -31,23 +31,45 @@
   ],
   "compliance": [
     {
-      "name": "CIS Microsoft 365 Foundations Benchmark",
-      "version": "3.1.0",
-      "reference": "9.1.9",
-	  "profile": "E3 Level 1"
+		"name": "CIS Microsoft 365 Foundations Benchmark",
+		"version": "5.0.0",
+		"reference": "9.1.9",
+		"profile": [
+			"E3 Level 1",
+			"E5 Level 1"
+		]
     }
   ],
   "level": "medium",
   "tags": [
 
   ],
   "rule": {
-    "path": "",
+    "path": "m365_fabric_tenant",
     "subPath": null,
     "selectCondition": {
 
     },
     "query": [
+      {
+        "filter": [
+          {
+            "conditions": [
+              [
+                "settingName",
+                "eq",
+                "BlockResourceKeyAuthentication"
+              ],
+			  [
+                "enabled",
+                "ne",
+                "True"
+              ]
+            ],
+			"operator": "and"
+          }
+        ]
+      }
     ],
     "shouldExist": null,
     "returnObject": null,
@@ -56,6 +78,12 @@
   "output": {
     "html": {
       "data": {
+        "properties": {
+          "title": "Title",
+          "enabled": "Enabled",
+          "tenantSettingGroup": "Group",
+          "enabledSecurityGroups": "Security Groups"
+        },
         "expandObject": null
       },
       "table": "Normal",
@@ -68,7 +96,11 @@
       "actions": {
         "objectData": {
           "properties": [
-            "*"
+            "title",
+            "enabled",
+            "location",
+            "tenantSettingGroup",
+            "enabledSecurityGroups"
           ],
           "expandObject": null,
           "limit": null
@@ -90,7 +122,7 @@
 
         ],
         "message": "Ensure 'Block ResourceKey Authentication' is 'Enabled'",
-        "defaultMessage": null
+        "defaultMessage": "Ensure 'Block ResourceKey Authentication' is 'Enabled'"
       },
       "properties": {
         "resourceName": null,
 
@@ -33,23 +33,59 @@
   ],
   "compliance": [
     {
-      "name": "CIS Microsoft 365 Foundations Benchmark",
-      "version": "3.1.0",
-      "reference": "9.1.8",
-	  "profile": "E3 Level 1"
+		"name": "CIS Microsoft 365 Foundations Benchmark",
+		"version": "5.0.0",
+		"reference": "9.1.8",
+		"profile": [
+			"E3 Level 1",
+			"E5 Level 1"
+		]
     }
   ],
   "level": "medium",
   "tags": [
 
   ],
   "rule": {
-    "path": "",
+    "path": "m365_fabric_tenant",
     "subPath": null,
     "selectCondition": {
 
     },
     "query": [
+      {
+        "filter": [
+          {
+            "conditions": [
+              [
+                "settingName",
+                "eq",
+                "EnableDatasetInPlaceSharing"
+              ]
+            ]
+          }
+        ]
+      },
+	  {
+        "connectOperator": "and",
+        "filter": [
+          {
+            "conditions": [
+              [
+                "enabled",
+                "eq",
+                "True"
+              ],
+			  [
+                "enabledSecurityGroups.Count",
+                "eq",
+                "0"
+              ]
+            ],
+			"operator": "and"
+          }
+        ]
+	  }
     ],
     "shouldExist": null,
     "returnObject": null,
@@ -58,6 +94,12 @@
   "output": {
     "html": {
       "data": {
+        "properties": {
+          "title": "Title",
+          "enabled": "Enabled",
+          "tenantSettingGroup": "Group",
+          "enabledSecurityGroups": "Security Groups"
+        },
         "expandObject": null
       },
       "table": "Normal",
@@ -70,7 +112,11 @@
       "actions": {
         "objectData": {
           "properties": [
-            "*"
+            "title",
+            "enabled",
+            "location",
+            "tenantSettingGroup",
+            "enabledSecurityGroups"
           ],
           "expandObject": null,
           "limit": null
@@ -92,7 +138,7 @@
 
         ],
         "message": "Ensure enabling of external data sharing is restricted",
-        "defaultMessage": null
+        "defaultMessage": "Ensure enabling of external data sharing is restricted"
       },
       "properties": {
         "resourceName": null,
 
@@ -38,23 +38,59 @@
   ],
   "compliance": [
     {
-      "name": "CIS Microsoft 365 Foundations Benchmark",
-      "version": "3.1.0",
-      "reference": "9.1.2",
-	  "profile": "E3 Level 1"
+		"name": "CIS Microsoft 365 Foundations Benchmark",
+		"version": "5.0.0",
+		"reference": "9.1.2",
+		"profile": [
+			"E3 Level 1",
+			"E5 Level 1"
+		]
     }
   ],
   "level": "medium",
   "tags": [
 
   ],
   "rule": {
-    "path": "",
+    "path": "m365_fabric_tenant",
     "subPath": null,
     "selectCondition": {
 
     },
     "query": [
+      {
+        "filter": [
+          {
+            "conditions": [
+              [
+                "settingName",
+                "eq",
+                "ExternalSharingV2"
+              ]
+            ]
+          }
+        ]
+      },
+	  {
+        "connectOperator": "and",
+        "filter": [
+          {
+            "conditions": [
+              [
+                "enabled",
+                "eq",
+                "True"
+              ],
+			  [
+                "enabledSecurityGroups.Count",
+                "eq",
+                "0"
+              ]
+            ],
+			"operator": "and"
+          }
+        ]
+	  }
     ],
     "shouldExist": null,
     "returnObject": null,
@@ -63,6 +99,12 @@
   "output": {
     "html": {
       "data": {
+        "properties": {
+          "title": "Title",
+          "enabled": "Enabled",
+          "tenantSettingGroup": "Group",
+          "enabledSecurityGroups": "Security Groups"
+        },
         "expandObject": null
       },
       "table": "Normal",
@@ -75,7 +117,11 @@
       "actions": {
         "objectData": {
           "properties": [
-            "*"
+            "title",
+            "enabled",
+            "location",
+            "tenantSettingGroup",
+            "enabledSecurityGroups"
           ],
           "expandObject": null,
           "limit": null
@@ -97,7 +143,7 @@
 
         ],
         "message": "Ensure external user invitations are restricted",
-        "defaultMessage": null
+        "defaultMessage": "Ensure external user invitations are restricted"
       },
       "properties": {
         "resourceName": null,