O365Validatorby Trifident

Know Your Microsoft 365
Security Posture

Comprehensive security assessment for your Microsoft 365 tenant. We analyze your entire environment using Microsoft and CISA best practices, CIS Benchmarks, and real-world attack patterns to ensure your tenant is properly configured and secure.

Know your risks. Own your security.

AES-256 Encrypted
CISA SCuBA Aligned
Disconnect Anytime

Are You Under Attack Right Now?

Immediate incident response for Microsoft 365 compromises

Analyze sign-in logs & audit trails
Identify compromised accounts
Detect malicious OAuth apps
Generate IR reports

Read-Only Access

We only read data. We never modify your tenant settings.

AES-256 Encrypted

All tokens encrypted with military-grade encryption.

Disconnect Anytime

Revoke access instantly from Microsoft admin center.

Your Tenant, Your Data

Assessment data stays with you. We don't sell or share.

36 Security Checks Across Critical Domains

Based on CISA SCuBA baselines, CIS benchmarks, and real-world attack patterns observed in Microsoft 365 compromises.

14 checks

Identity & Access

  • MFA enforcement for all users
  • Legacy authentication blocked
  • Privileged role assignments
  • Stale guest accounts
8 checks

Conditional Access

  • Risk-based sign-in policies
  • Device compliance requirements
  • Location-based restrictions
  • Session controls
9 checks

Application Security

  • Illicit consent detection
  • Dangerous app permissions
  • Service principal credentials
  • OAuth permission sprawl
5 checks

Attack Detection

  • Token theft indicators
  • Federation trust abuse
  • Device code phishing
  • Partner admin risks

How It Works

Get actionable security insights in minutes, not days. No agents to install, no PowerShell scripts to run.

1

Connect Your Tenant

Sign in with your Microsoft 365 admin account. Review and approve the read-only permissions we request.

2

Automated Assessment

We analyze your tenant configuration against 36+ security checks. Takes about 2-3 minutes.

3

Actionable Results

Get a prioritized list of findings with severity ratings and step-by-step remediation guidance.

Choose Your Security Path

From free security assessments to enterprise MSP management, we have a solution for every need.

FREE

Security Assessment

$0

Comprehensive read-only assessment of your M365 tenant security posture

  • 36+ security checks
  • Prioritized findings
  • Man-hours estimate
  • Step-by-step remediation guides
  • PDF executive report
MOST POPULAR

Pro Auto-Fix

$299/30 days

Fix security issues automatically with our step-by-step wizard

  • Everything in Free
  • One-click auto-fix
  • Step-by-step wizard
  • Before/after comparison
  • Unlimited re-scans
  • Priority support
ENTERPRISE

MSP Partner

$10,000/year

Manage up to 10 client tenants from a single dashboard

  • Up to 10 client tenants
  • Single pane of glass
  • Automated scanning
  • One-click remediation
  • IR for each client
  • Team member access
  • White-label reports

Incident Response Service - $1,500

Emergency response for compromised M365 tenants. Find attackers, evict them, and get comprehensive reports. This is eviction, not protection.

We guide. You decide.

Ready to Assess Your Tenant Security?

Get your first assessment free. No credit card required. Results in under 5 minutes.

We will not change anything in your tenant, but we will guide you through every step. You got this.

Frequently Asked Questions

We understand connecting a third-party app to your Microsoft 365 tenant requires trust. Here are answers to common security questions.

Will you change any settings in my Microsoft 365 tenant?
Absolutely not. O365Validator uses exclusively read-only permissions. We analyze your security configuration but never modify any settings, policies, or user data. You can verify this by reviewing the specific Graph API permissions we request - all end in '.Read' or '.Read.All', never '.ReadWrite'.
What data do you store from my tenant?
We store only the assessment results (pass/fail status, severity ratings, remediation recommendations). We do not store raw tenant data, user lists, or personal information. Access tokens are encrypted with AES-256-GCM and automatically expire.
How do I disconnect O365Validator from my tenant?
You can revoke access anytime from the Microsoft Entra admin center. Go to Enterprise Applications, find O365Validator, and click 'Delete'. This immediately terminates all access to your tenant.
Is O365Validator approved by Microsoft?
O365Validator is built on official Microsoft Graph APIs and follows Microsoft's security best practices for multi-tenant applications. We request only the minimum permissions needed for security assessment.
Who can see my assessment results?
Only users in your organization who authenticate via your tenant. If you're an MSP client, your designated MSP administrator can also view your results. We never share data between tenants or with third parties.