One scan. Every gap. Instant action. Siemserva audits your entire Entra ID tenant, maps findings to compliance frameworks, and tells you exactly how to fix everything — in seconds, not weeks.
Each one is a potential gap an attacker can exploit. Most teams don't have the bandwidth to check them all.
Tenants accumulate misconfigurations over time — stale accounts, overly permissive apps, gaps in Conditional Access coverage.
Microsoft Secure Score and Identity Protection cover pieces of the puzzle, but not the whole picture. Critical gaps slip through.
Mapping every control to MCSB and SCuBA frameworks is tedious manual work — and mistakes mean failed audits.
Small security teams can't manually review every user, device, app, role, and policy across a growing tenant.
Purpose-built for Microsoft Entra ID and M365. Every check maps to real compliance controls.
MFA gaps, phishing-resistant auth, risk policies, stale accounts
What-if testing, sign-in replay, gap detection, bypass risk
PIM policies, just-in-time access, break glass monitoring
Expired creds, dangerous permissions, unverified publishers
Device compliance, OS versions, stale devices
Anti-phish, anti-spam, safe links, malware policies
Teams, SharePoint, OneDrive, Exchange configs
Audit log coverage, SIEM readiness, threat detection
Data protection, network security, AI security
A full-screen terminal dashboard that makes security data usable. Findings stream in live as the scan runs.
Built by security engineers who got tired of manually checking 580 settings across dozens of tenants.
Weighted scoring system where severity compounds — five findings at one tier equal one at the next. A single numeric score reflects both severity and volume.
Every finding comes with a risk narrative, recommended action, three-tier severity rating by privilege level, and step-by-step fix plans with PowerShell scripts and portal paths.
The most thorough Conditional Access analysis available — what-if scenario testing, sign-in replay forensics, discrepancy detection, and coverage gap identification.
Runs locally and queries Microsoft Graph API directly. No agents to deploy, no infrastructure to manage. Fast mode for daily scans, full mode for weekly deep coverage.
Scan all your tenants from one dashboard. Built for MSPs and enterprises managing dozens of Entra ID environments. Each tenant scored independently.
Compare scans over time to track improvement or regression. The Manager's Edition supports side-by-side comparison of any two scan exports.
Context-aware AI that understands your findings, explains risk in plain language, and generates production-ready remediation scripts.
Press A on the Live tab to analyze visible findings. Scroll to different sections for different analysis.
In-depth fix instructions with PowerShell commands, portal paths, prerequisites, and implementation order.
On the Remediation tab, press P to generate production-ready .ps1 scripts via AI. Uses Microsoft Graph PowerShell SDK with -WhatIf support. Saved to file automatically.
Root cause analysis for permission gaps, Graph API failures, throttling issues, and step-by-step fixes.
Full risk, compliance, and remediation context on any single finding. Open details and press A.
Comprehensive analysis of the top 25 most impactful findings. Direct streaming via the Anthropic Claude API, or copy-paste friendly for any AI tool.
All AI prompts are PII-free. Tenant names, user names, system names — all anonymized before anything leaves your machine.
Works without an API key. Press A to copy a ready-to-paste prompt for ChatGPT, Copilot, Claude, Gemini, or any AI tool. Press Ctrl+V to import the response.
Easy API setup. Run siemserva setup-ai for an interactive wizard — supports Anthropic Claude API (direct streaming), OpenAI-compatible, and M365 Copilot. Or set ANTHROPIC_API_KEY directly.
Every finding automatically maps to real compliance controls. Evidence links, justifications, and control codes included.
12 security domains, 66 controls. Microsoft's own benchmark, aligned with Defender for Cloud and NIST SP 800-53.
US federal security baselines for M365, increasingly adopted by private sector. Full control mapping with version tracking.
Self-contained HTML reports, browser-printable PDFs, AI-enhanced analysis, and database exports. All with a single keystroke.
4 HTML report types: Detailed, Compliance, Business Review, Remediation. Self-contained with embedded charts.
Paste AI responses from clipboard into any report for AI-enhanced analysis without an API key
Open the current tab or any finding as a standalone HTML page in your browser. Print to PDF from there.
Generate executable .ps1 remediation scripts via AI on the Remediation tab. Saved to file automatically.
Every scan writes to a standard SQLite database. Query with C#, Python, PowerShell, Power BI, or any SQL tool.
AES-256-GCM encryption with PBKDF2-SHA512 key derivation (210,000 iterations)
No data leaves your machine unless you explicitly export or email
Passphrase protection with show/hide toggle for demo-safe operation
PII-free AI prompts — tenant names anonymized before prompt generation
AOT-compatible — NativeAOT target with no reflection-based serialization
Local-only by default — SQLite database with WAL mode, no cloud dependency
Run Siemserva as a persistent security monitor. Scheduled scans, multi-tenant support, and automated alerts.
Configurable intervals with a game-clock countdown to the next cycle
Monitor all your tenants in a single, unified dashboard
Track security posture changes across scan cycles over time
Start free. Upgrade when you need more tenants, more checks, or AI API streaming.
No agents. No complex setup. Just connect and scan.
Point Siemserva at your Entra ID tenant. Service principal or managed identity — your choice.
580+ checks run automatically. Results stream in live on the dashboard as they're found.
AI-powered insights explain risk in business terms. PowerShell scripts generated for every fix.
Export HTML reports, run generated PowerShell scripts, or open the Manager's Edition for PDF/Excel output.
Senserva is a Microsoft Intelligent Security Association (MISA) member and Microsoft Security Excellence Awards finalist. Built by the team behind Shavlik Technologies.
Invited to join the Microsoft Intelligent Security Association for deep integration with Microsoft Sentinel, Entra ID, and Intune.
Finalist in the 2024 Microsoft Security Excellence Awards — recognized for impact with Microsoft Sentinel and Defender.
One scan reveals every gap in your tenant. Download free and run your first scan in minutes.