MartinIngesen / MSOLSpray
A Python implementation of dafthack's MSOLSpray. A password spraying tool for Microsoft Online accounts (Azure/O365). The script logs if a user cred is valid, if MFA is enabled on the account, if a tenant doesn't exist, if a user doesn't exist, if the account is locked, or if the account is disabled.
☆89Updated 11 months ago
Alternatives and similar repositories for MSOLSpray:
Users that are interested in MSOLSpray are comparing it to the libraries listed below
- Password Spraying Script detecting current and previous passwords of Active Directory User☆65Updated 3 years ago
- Azure AD RedTeam Full Enumeration Script used to query all aspects of your target Azure tenant.☆70Updated 9 months ago
- This script gets all accepted domains in Microsoft 365 using autodiscover, gets the tenant name and checks if there is a Microsoft Defend…☆24Updated 11 months ago
- Python3 tool to perform password spraying against Microsoft Online service using various methods☆87Updated 2 years ago
- ☆13Updated 3 weeks ago
- ☆55Updated last year
- Small utility to chunk up a large BloodHound JSON file into smaller files for importing.☆93Updated 2 years ago
- Library of sites for categorization☆27Updated 6 years ago
- Covenant is a collaborative .NET C2 framework for red teamers.☆41Updated 4 years ago
- ☆100Updated 2 years ago
- Modular Enumeration and Password Spraying Framework☆118Updated last year
- Fly into Gophish with One Click (Infra Automation)☆48Updated 2 years ago
- Efflanrs - GUI for Snaffler Output☆26Updated 7 months ago
- A collection of tools Neil and Andy have been working on released in one place and interlinked with previous tools☆88Updated last year
- A collection of Neo4j/BloodHound queries to collect interesting information.☆46Updated 2 years ago
- Custom queries list for BloodHound☆28Updated 8 months ago
- ☆21Updated last year
- Deduplicate custom BloudHound queries from different datasets and merge them in one customqueries.json file.☆38Updated last year
- A tool to assist in the development of landing pages for phishing campaigns☆15Updated 2 years ago
- Brute force attack tool for Azure AD Autologon/Seamless SSO - Source: https://arstechnica.com/information-technology/2021/09/new-azure-ac…☆101Updated 10 months ago
- Merges multiple .nessus files into one file.☆45Updated 2 years ago
- Parses Nessus .nessus files for exploitable vulnerabilities and outputs a report file in format MM-DD-YYYY-nessus.csv☆39Updated last year
- This script is a multi-threaded Okta password sprayer.☆70Updated last year
- Enumerate and check domains for Azure tenants☆58Updated 3 years ago
- Material for the "Hands-On BloodHound" Workshop☆108Updated 4 years ago
- Azur3Alph4 is a PowerShell module that automates red-team tasks for ops on objective. This module situates in a post-breach (RCE achieved…☆63Updated 3 years ago
- ☆62Updated this week
- BloodCheck enables Red and Blue Teams to manage multiple Neo4j databases and run Cypher queries against a BloodHound dataset.☆17Updated 3 years ago
- Some scripts to support with importing large datasets into BloodHound☆80Updated last year
- tool for enumeration & bulk download of sensitive files found in SharePoint environments☆60Updated last month