CrowdStrike has introduced the CrowdStrike Reporting Tool for Azure (CRT), a free community tool designed to help organizations quickly and easily review excessive permissions in their Azure AD environments, identify configuration weaknesses, and provide mitigation advice. The initiative comes in response to the challenges that organizations face in auditing Azure AD permissions, particularly following the sophisticated and far-reaching SUNBURST cyberattack. The tool aims to assist Azure administrators in managing complex federated systems and enhancing security by offering insights into delegated permissions, application configurations, and potential vulnerabilities within Azure environments. Despite limitations due to undocumented Microsoft API capabilities, CRT is expected to aid organizations globally by providing critical information and guidance on strengthening their Azure infrastructure, with a particular emphasis on the importance of multi-factor authentication and robust permission management. CrowdStrike's collaboration with Microsoft in addressing recent security incidents underscores their commitment to transparency and customer security as they encourage global administrators to leverage CRT for improved Azure tenant security.