TrustM365: Monitor. Baseline. Restore.
Self-hosted baseline management and drift detection for Microsoft 365
TrustM365 empowers MSSPs, Microsoft 365 admins, and security architects with complete control over tenant baseline management, real-time drift detection, and one-click remediation in a locally-deployed environment.
What is TrustM365?
TrustM365 is a self-hosted, local-instance platform designed to establish and maintain security baselines across Microsoft 365 tenants. Unlike cloud-dependent compliance tools, TrustM365 runs in your own environment, giving you complete control over baseline creation, drift detection, and remediation workflows.
Why TrustM365?
The Problem Statement
Organisations struggle to maintain consistency and detect configuration drift across multiple Microsoft 365 tenants.
Multiple MSSP's control single tenants with no ownership models.
Manual baseline monitoring is time-consuming, remediation is reactive and sometimes missed, and multi-tenant management at scale becomes operationally unsustainable.
The Solution
TrustM365 automates baseline creation, continuously monitors for drift, and provides one-click remediation.
Connect one or more M365 tenants, define a gold-standard baseline of critical configuration per tenant, and know instantly when something drifts, with a full property-level diff, one-click restore, and a completely reportable audit trail.
Whether you're an MSSP managing hundreds of tenants or an enterprise managing multiple business units, TrustM365 keeps your Microsoft 365 environment compliant and consistent.
Core Features
-
Selective Monitoring & Versioning — Don't monitor everything—select the resources that matter. Define a gold-standard baseline and maintain versions throughout your tenant lifecycle.
-
Property-Level Drift Detection — Industry-first property-level diff shows exactly what changed. Three drift states (Drifted, Clean, Missing) provide clear visibility.
-
Resource Groups & Organisation — Organise resources into named, colour-coded groups. Search across resources and baselines with full audit trails.
-
One-Click Restore & Remediation — Revert drifted configurations with one click. Test changes with dry-run before applying. Full restore log with timestamps.
-
Portfolio & Multi-Tenant Views — Manage hundreds of tenants from a single instance. Scorecard and Matrix views show drift across all tenants simultaneously.
-
Webhook Notifications & Reporting — Real-time alerts via Teams, Slack, PagerDuty. Generate audit reports in HTML, PDF, or Word (.docx).
-
Security & Compliance Baselines — Integrated Maester and CISA SCuBA frameworks. Custom collectors support any Microsoft Graph endpoint.
-
MSSP White-Label & Remediation — Complete branding with custom org name, logo, and brand colour. Per-tenant notes and settings management.
Want to Get Involved
Check out the GitHub Repository here: AntoPorter/TrustM365
See TrustM365 in Action
FAQ
Is TrustM365 free?
TrustM365 is open-source and free to use under the included licence. Deployment and infrastructure costs depend on your environment.
Can TrustM365 manage multiple tenants?
Yes. TrustM365 is designed for multi-tenant MSSP operations and enterprise scenarios with multiple business units.
What permissions does TrustM365 need?
TrustM365 requires read-only or read-write delegated permissions depending on your use case. See the GitHub repo for detailed permission requirements.
Does TrustM365 send data to the cloud?
No. TrustM365 is fully self-hosted. All baseline data, drift detection results, and audit logs remain in your local environment.
When will Purview, Teams, and Exchange baselines be available?
These are on the roadmap for future releases.
Ready to secure your Microsoft 365 environment?