MONOKEL
Microsoft 365 Security

Your Microsoft 365
security, in one place.

Connect your tenant. See findings across identity, email, devices, apps, and sharing in minutes.

Security Overview
Contoso Ltd · Microsoft 365 · Last scan 2 min ago
9 open findings3 / 6 areas passing
IdentityAt risk
3 open findings
EmailAt risk
2 open findings
DevicesPassing
No open findings
ApplicationsAt risk
4 open findings
SharingPassing
No open findings
External ExposureUnknown
No open findings
High
Global administrator without MFA enrolled
Identity · 2 affected accounts
Review →

Six areas. One view.

Everything that matters for M365 security, in one place.

🔐
Identity
Admin roles, MFA gaps, stale accounts, Conditional Access.
✉️
Email & Collaboration
Forwarding rules, DMARC/SPF/DKIM, transport anomalies.
💻
Devices
Intune compliance, endpoint protection, BitLocker, MDE status.
🔑
Applications
OAuth grants, over-permissioned apps, unused credentials.
📁
Information & Access
External sharing, public links, dormant guests, OneDrive exposure.
🌐
External Exposure
Domains, certificates, email authentication, and what an attacker sees from the outside.

Running in minutes.

No agents. No infra changes. Just connect and go.

01
Connect your M365 tenant
Grant read-only consent via the Graph API. Nothing to install.
02
Monokel scans your environment
Identity, sharing, apps, email, devices, domains — all in one pass.
03
See what needs attention
Each finding has severity, context, and a concrete recommendation.

What you get.

Built by people who ran M365 environments and wished this existed.

Findings, not dashboards
Every finding tells you what's wrong, why it matters, and what to do.
Posture + exposure
We check config and real sharing state. Most tools only do one.
Deep on Microsoft 365
Not generic cloud posture. Purpose-built for M365 and its quirks.
See what's visible from the outside
We show what an attacker can see about your organisation before they even log in.
For MSPs & IT Partners

Security across all your customers. Finally manageable.

Multi-tenant M365 security without the manual checks and portal-hopping.

Multi-tenant overview
All customers in one place. Per-tenant posture that makes sense.
Better customer conversations
Prioritised findings and clear impact, not portal screenshots.
Focus on what matters
Identity, sharing, apps, email — what actually gets customers breached.
No agents to deploy
Read-only Graph API access. Nothing to install.

FAQs

What access do you need to my tenant?+
Read-only. We use the Microsoft Graph API to analyse your environment but never modify anything.
How long does the scan take?+
Most tenants finish in under 10 minutes. You see findings immediately after.
Do I need a security background to use this?+
No. Every finding comes with plain-language explanations and specific fix recommendations. Built for IT leads, not SOC analysts.
How is this different from Microsoft Secure Score?+
Secure Score tracks config posture. Monokel also checks real exposure — who shared what externally, which apps have excessive permissions, which admins lack MFA. Different layer, actionable findings.
Does this work for multi-tenant / MSP setups?+
Yes. Monokel supports multiple tenants with per-tenant posture views and a cross-tenant overview.
Do you only check internal settings?+
No. Beyond configuration, we look at your external exposure — what's visible from the outside. Domains, certificates, email authentication, leaked credentials. The things an attacker checks first.

See what Monokel finds
in your environment.

Connect your tenant and see your first findings in minutes.

Open the product
Read-only accessFree to tryResults in under 10 minutes