JumpsecLabs / TokenSmith
TokenSmith generates Entra ID access & refresh tokens on offensive engagements. It is suitable for both covert adversary simulations and penetration tests with the tokens generated working out of the box with many popular Azure post exploitation tools.
☆265Updated 2 months ago
Alternatives and similar repositories for TokenSmith:
Users that are interested in TokenSmith are comparing it to the libraries listed below
- ☆210Updated 3 weeks ago
- A companion tool that uses ADeleg to find insecure trustee and resource delegations in Active Directory☆165Updated 7 months ago
- The purpose of this project is to publish and maintain the deployment PowerShell script that automates deployments for Active Directory C…☆250Updated last year
- M365/Azure adversary simulation tool that generates realistic attack telemetry to help blue teams improve their detection and response ca…☆284Updated last month
- Abusing Intune for Lateral Movement over C2☆332Updated 2 months ago
- Simple pure PowerShell POC to bypass Entra / Intune Compliance Conditional Access Policy☆141Updated last month
- A fork of the great TokenTactics with support for CAE and token endpoint v2☆280Updated last month
- Table of AD and Azure assets and whether they belong to Tier Zero☆219Updated 2 months ago
- A BloodHound collector for Microsoft Configuration Manager☆312Updated 3 months ago
- ☆178Updated 4 months ago
- Azure Post Exploitation Framework☆196Updated last month
- PowerShell scripts for alternative SharpHound enumeration, including users, groups, computers, and certificates, using the ActiveDirector…☆342Updated 4 months ago
- An ADCS honeypot to catch attackers in your internal network.☆286Updated 9 months ago
- ☆174Updated 4 months ago
- PowerShell script designed to help Incident Responders collect forensic evidence from local and remote Windows devices.☆101Updated 7 months ago
- A Azure Exploitation Toolkit for Red Team & Pentesters☆165Updated last year
- Assess the security of your Active Directory with few or all privileges.☆312Updated this week
- User Enumeration of Microsoft Teams users via API☆149Updated last year
- A cross-platform tool to find and decrypt Group Policy Preferences passwords from the SYSVOL share using low-privileged domain accounts.☆139Updated this week
- A tool leveraging Kerberos tickets to get Microsoft 365 access tokens using Seamless SSO☆172Updated 7 months ago
- BadZure orchestrates the setup of Azure AD tenants, populating them with diverse entities while also introducing common security misconfi…☆451Updated last week
- VeilTransfer is a data exfiltration utility designed to test and enhance the detection capabilities. This tool simulates real-world data …☆136Updated last month
- Automatically run and populate a new instance of BH CE☆72Updated 3 weeks ago
- Azure mindmap for penetration tests☆181Updated last year
- ☆160Updated last week
- Monitor your PingCastle scans to highlight the rule diff between two scans☆111Updated 8 months ago
- Initial Access and Post-Exploitation Tool for AAD and O365 with a browser-based GUI☆675Updated this week
- Some scripts to abuse kerberos using Powershell☆328Updated last year
- ☆74Updated 3 weeks ago
- Modular cross-platform Microsoft Graph API (Entra, o365, and Intune) enumeration and exploitation toolkit☆145Updated 4 months ago