Azure Virtual Machines

Azure Virtual Machines

Available

Cloud IaaS

Azure VMs contribute exposure context to Koopic's risk model. A VM with a public IP in a production subscription is a different risk surface than a dev VM in a private subnet - and Koopic treats them differently when scoring vulnerabilities. Every sync captures VM names, resource groups, subscription IDs, OS details, network interface data, and cloud metadata. Cross-referenced with Defender and Intune, Koopic can flag cloud VMs missing EDR coverage as higher priority targets.

Signal in your risk score

Data from Azure Virtual Machines flows into Koopic's unified asset inventory and shapes how vulnerabilities are scored. Koopic combines asset context - exposure, control presence, criticality - with CVSS severity, EPSS exploit probability, and CISA KEV membership to produce a single, explainable risk score per vulnerability per asset. A CVSS 9.8 on a segmented host with a compensating control scores lower than a CVSS 7.4 on an internet-exposed, unmanaged endpoint with no control in place.

What Azure Virtual Machines contributes to risk scoring

Automatic VM discovery across all Azure subscriptions
Resource group and subscription metadata
OS type, version, and provisioning state
Network interface and IP address details
Tags and custom metadata preserved
Cross-reference with Defender and Intune data

How to connect

1

Run the onboarding script

Copy the one-liner from Koopic and run it in Azure CLI (az). The script creates a service principal with Reader access and outputs the credentials automatically.

2

Add credentials in Koopic

Paste the tenant ID, client ID, and client secret from the script output into Koopic. All credentials are encrypted at rest.

3

Configure the integration

Select Azure Virtual Machines in the wizard. Koopic auto-discovers all accessible subscriptions.

4

Merge with existing data

Azure VM data merges with your Defender and Intune records using hostname or custom merge keys.

How teams use this data

Cloud Asset Inventory

Maintain a complete inventory of Azure VMs alongside on-prem and other cloud assets.

Coverage Analysis

Find Azure VMs missing Defender or Intune management by cross-referencing sources.

Resource Governance

Track VM lifecycle, identify orphaned resources, and ensure tagging compliance.

Related integrations

Microsoft Defender for Endpoint

Microsoft Defender for Endpoint

EDR sensor health and endpoint control presence - a key compensating-control signal for risk scoring.
Microsoft Intune

Microsoft Intune

MDM enrollment and compliance status - distinguishes managed endpoints from unmanaged exposure.
Active Directory

Active Directory

Organizational context and asset identity - OU, domain, and last-logon data enrich exposure scoring.

See it on your data

Work with us directly to run Koopic's prioritization engine on your actual vulnerability and asset data.

Become a design partner How the scoring works