A fork of the great TokenTactics with support for CAE and token endpoint v2
☆406Feb 9, 2026Updated 2 months ago
Alternatives and similar repositories for TokenTacticsV2
Users that are interested in TokenTacticsV2 are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Azure JWT Token Manipulation Toolset☆727Dec 6, 2024Updated last year
- Abusing Azure services over C2☆368Jan 20, 2026Updated 2 months ago
- A collection of Azure AD/Entra tools for offensive and defensive security purposes☆2,582Feb 5, 2026Updated 2 months ago
- Research into Undocumented Behavior of Azure AD Refresh Tokens☆345Feb 23, 2024Updated 2 years ago
- A Post-exploitation Toolset for Interacting with the Microsoft Graph API☆1,270Mar 27, 2026Updated 2 weeks ago
- NordVPN Special Discount Offer • AdSave on top-rated NordVPN 1 or 2-year plans with secure browsing, privacy protection, and support for for all major platforms.
- TeamFiltration is a cross-platform framework for enumerating, spraying, exfiltrating, and backdooring O365 AAD accounts☆1,376Mar 9, 2026Updated last month
- TokenSmith generates Entra ID access & refresh tokens on offensive engagements. It is suitable for both covert adversary simulations and …☆389Jan 23, 2025Updated last year
- AAD related enumeration in Nim☆131Sep 7, 2023Updated 2 years ago
- Simple pure PowerShell POC to bypass Entra / Intune Compliance Conditional Access Policy☆169Nov 17, 2025Updated 4 months ago
- SCCMHunter is a post-ex tool built to streamline identifying, profiling, and attacking SCCM related assets in an Active Directory domain.…☆906Updated this week
- A tool for checking if MFA is enabled on multiple Microsoft Services☆1,646Updated this week
- A tool leveraging Kerberos tickets to get Microsoft 365 access tokens using Seamless SSO☆243Aug 25, 2024Updated last year
- Initial Access and Post-Exploitation Tool for Entra ID and M365 with a browser-based GUI☆1,247Dec 31, 2025Updated 3 months ago
- ☆158Dec 14, 2023Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
- ☆160Apr 17, 2024Updated last year
- Azure DevOps Services Attack Toolkit☆313Mar 15, 2025Updated last year
- Dump Azure AD Connect credentials for Azure AD and Active Directory☆784Aug 26, 2025Updated 7 months ago
- Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel☆395Feb 23, 2024Updated 2 years ago
- Remote operations commands implemented using Beacon Object Files☆1,146Mar 5, 2026Updated last month
- BOF and Python3 implementation of technique to unbind 445/tcp on Windows via SCM interactions☆348Nov 19, 2024Updated last year
- A Python POC for CRED1 over SOCKS5☆165Oct 5, 2024Updated last year
- Azure Security Resources and Notes☆1,730Feb 17, 2026Updated last month
- A comprehensive list of usable Entra ID first-party clients with pre-consented Microsoft Graph scopes, in a simple YAML-file explorable w…☆155Mar 20, 2026Updated 3 weeks ago
- NordVPN Special Discount Offer • AdSave on top-rated NordVPN 1 or 2-year plans with secure browsing, privacy protection, and support for for all major platforms.
- Azure Data Exporter for BloodHound☆892Updated this week
- ☆290Aug 14, 2025Updated 7 months ago
- Misconfiguration Manager is a central knowledge base for all known Microsoft Configuration Manager tradecraft and associated defensive an…☆1,117Mar 30, 2026Updated last week
- Azure Post Exploitation Framework☆246Oct 27, 2025Updated 5 months ago
- Weaponized Browser-in-the-Middle (BitM) for Penetration Testers☆621Apr 2, 2026Updated last week
- ☆234Oct 8, 2024Updated last year
- Scripts to interact with Microsoft Graph APIs☆45Nov 7, 2024Updated last year
- Dump NTDS with golden certificates and UnPAC the hash☆646Mar 20, 2024Updated 2 years ago
- Tools for interacting with authentication packages using their individual message protocols☆431Apr 1, 2026Updated last week
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
- Remote Kerberos Relay made easy! Advanced Kerberos Relay Framework☆639May 8, 2025Updated 11 months ago
- Collection of tools to use with Azure Applications☆113Oct 13, 2023Updated 2 years ago
- AADInternals PowerShell module for administering Azure AD and Office 365☆1,628Sep 30, 2025Updated 6 months ago
- Check for LDAP protections regarding the relay of NTLM authentication☆531Nov 19, 2024Updated last year
- Proof-of-Concept tool to authenticate to an LDAP/S server with a certificate through Schannel☆737Sep 3, 2025Updated 7 months ago
- BloodHound Attack Research Kit☆590Mar 18, 2025Updated last year
- PowerShell module to help getting tokens using managed identities☆17Dec 29, 2024Updated last year