Network complexity is rapidly increasing with the addition of non-traditional devices gaining access to organizational networks. Singular purpose devices made available through the Internet of Things (IoT) offering has increased network complexity even further with the ease of adding said devices to the network and sometimes without the knowledge of a system administrator. Hence the following received question:
"How do I ensure all the appropriate ports are closed with all these devices being added to my network?"
In scenarios like these, tools such as Azure Security Center do a great job on reporting probability of attacks that can occur in one's network and steps are needed to address this. However sometimes the challenge itself is convincing the organizational decision makers of the needed investment.
azure iot security architecture
To help with this, the following PowerShell script will provide a rudimentary analysis report on what ports of what IPs are currently open. This report can be used as a great starting point to highlight probable attack vectors that could occur and the beginning to a conversation on additional security tool adoption. Lets begin.
Run PowerShell Force AzureAD Password Sync
Specify the $port value to scan:
$port = (80)
Specify the $network value to scan:
$network = (192.168.0)
Specify the $range value to scan:
$range = (1..254)
Enable silent scan (without error reporting) of said network:
Calling the IP addresses one by one from the desired range and displaying the percentage to complete:
Again this is a rudimentary report output that can be utilized to begin the conversation with organizational decision makers regarding needed investments. Do comment below on additional tips or script edits.