ZephrFish / AzureAttackKit
Collection of Azure Tools to Pull down for Attacking an Environment + quick tips and other useful information
☆72Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for AzureAttackKit
- Living off the land searches for explorer and sharepoint☆53Updated 3 weeks ago
- Small utility to chunk up a large BloodHound JSON file into smaller files for importing.☆82Updated last year
- A Python implementation of dafthack's MSOLSpray. A password spraying tool for Microsoft Online accounts (Azure/O365). The script logs if …☆83Updated 5 months ago
- ☆35Updated 3 years ago
- Azure pentesting reference for Altered Security Lab☆24Updated 2 years ago
- A collection of tools Neil and Andy have been working on released in one place and interlinked with previous tools☆85Updated last year
- Password attacks and MFA validation against various endpoints in Azure and Office 365☆149Updated last year
- InfoSec Notes☆54Updated 8 months ago
- Exchangelib wrapper for pentesting☆56Updated 5 months ago
- Deduplicate custom BloudHound queries from different datasets and merge them in one customqueries.json file.☆36Updated 8 months ago
- Convert ldapdomaindump to Bloodhound☆77Updated 11 months ago
- A module for CME that spiders across a domain.☆35Updated 2 years ago
- Brute force attack tool for Azure AD Autologon/Seamless SSO - Source: https://arstechnica.com/information-technology/2021/09/new-azure-ac…☆98Updated 4 months ago
- Azure AD RedTeam Full Enumeration Script used to query all aspects of your target Azure tenant.☆68Updated 4 months ago
- Password Spraying Script detecting current and previous passwords of Active Directory User☆63Updated 3 years ago
- This script gets all accepted domains in Microsoft 365 using autodiscover, gets the tenant name and checks if there is a Microsoft Defend…☆21Updated 5 months ago
- Red Teaming & Active Directory Cheat Sheet.☆39Updated last year
- A python port of @dafthack's MFAsweep with some added OPSEC functionality. MFAde can be used to find single-factor authentication failure…☆35Updated last year
- airCross is a tool that takes advantage of API functionality within VMWare's AirWatch MDM solution to perform single-factor authenticatio…☆40Updated 2 years ago
- Federated Office365 user enumeration based on correlated response trend analysis☆47Updated 2 years ago
- Retrieve AD accounts description and search for password in it☆83Updated 2 years ago
- A list of commands, tools and notes about enumerating and exploiting Active Directory and how to defend against these attacks☆20Updated 3 years ago
- Covenant is a collaborative .NET C2 framework for red teamers.☆41Updated 3 years ago
- Azure AD cheatsheet for the CARTP course☆98Updated 2 years ago
- User enumeration and password spraying tool for testing Azure AD☆68Updated 2 years ago
- ☆98Updated 2 years ago
- Red Team "Drop and Run" NAC (802.1x) Bypass☆69Updated last year
- A small script that automates Entra ID persistence with Windows Hello For Business key☆47Updated 4 months ago
- ☆51Updated last year