yorek/Security-Audit.ps1

## Security-Audit.ps1
Login-AzureRmAccount

Select-AzureRmSubscription -Subscription <your-subscription-id>

$servers = Get-AzureRmSqlServer

foreach($s in $servers) {
    $databases = Get-AzureRmSqlDatabase -ServerName $s.ServerName -ResourceGroupName $s.ResourceGroupName
    foreach ($d in $databases)
    {
        $audit = Get-AzureRmSqlDatabaseAuditing -ServerName $s.ServerName -ResourceGroupName $s.ResourceGroupName -DatabaseName $d.DatabaseName
        $threatDetection = Get-AzureRmSqlDatabaseThreatDetectionPolicy -ServerName $s.ServerName -ResourceGroupName $s.ResourceGroupName -DatabaseName $d.DatabaseName
        $tde = Get-AzureRmSqlDatabaseTransparentDataEncryption  -ServerName $s.ServerName -ResourceGroupName $s.ResourceGroupName -DatabaseName $d.DatabaseName

        Write-Host $s.ServerName, $d.DatabaseName, $audit.AuditState, $threatDetection.ThreatDetectionState, $tde.State
    }
}
	Login-AzureRmAccount

	Select-AzureRmSubscription -Subscription <your-subscription-id>

	$servers = Get-AzureRmSqlServer

	foreach($s in $servers) {
	$databases = Get-AzureRmSqlDatabase -ServerName $s.ServerName -ResourceGroupName $s.ResourceGroupName
	foreach ($d in $databases)
	{
	$audit = Get-AzureRmSqlDatabaseAuditing -ServerName $s.ServerName -ResourceGroupName $s.ResourceGroupName -DatabaseName $d.DatabaseName
	$threatDetection = Get-AzureRmSqlDatabaseThreatDetectionPolicy -ServerName $s.ServerName -ResourceGroupName $s.ResourceGroupName -DatabaseName $d.DatabaseName
	$tde = Get-AzureRmSqlDatabaseTransparentDataEncryption -ServerName $s.ServerName -ResourceGroupName $s.ResourceGroupName -DatabaseName $d.DatabaseName

	Write-Host $s.ServerName, $d.DatabaseName, $audit.AuditState, $threatDetection.ThreatDetectionState, $tde.State
	}
	}