secureworks/BAADTokenBroker external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

secureworks/BAADTokenBroker

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/secureworks/BAADTokenBroker)

Close

secureworks / BAADTokenBrokerView on GitHubMore

• External links
• Readme badge

☆122Jun 17, 2025Updated 9 months ago

Alternatives and similar repositories for BAADTokenBroker

Users that are interested in BAADTokenBroker are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• JumpsecLabs / TokenSmith

  View on GitHub
  TokenSmith generates Entra ID access & refresh tokens on offensive engagements. It is suitable for both covert adversary simulations and …
  ☆388Jan 23, 2025Updated last year
• fin3ss3g0d / IoDllProxyLoad

  View on GitHub
  DLL proxy load example using the Windows thread pool API, I/O completion callback with named pipes, and C++/assembly
  ☆66Mar 19, 2024Updated 2 years ago
• zh54321 / PoCEntraDeviceComplianceBypass

  View on GitHub
  Simple pure PowerShell POC to bypass Entra / Intune Compliance Conditional Access Policy
  ☆169Nov 17, 2025Updated 4 months ago
• G0ldenGunSec / SCCM_SQL_Collector

  View on GitHub
  PoC script to demonstrate collection of SCCM attack paths that can be viewed in BH with OpenGraph
  ☆24Aug 2, 2025Updated 8 months ago
• secureworks / family-of-client-ids-research

  View on GitHub
  Research into Undocumented Behavior of Azure AD Refresh Tokens
  ☆345Feb 23, 2024Updated 2 years ago
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• absolomb / FindMeAccess

  View on GitHub
  ☆216Dec 17, 2025Updated 3 months ago
• decoder-it / KrbRelayEx-RPC

  View on GitHub
  ☆200Mar 28, 2025Updated last year
• Malcrove / SeamlessPass

  View on GitHub
  A tool leveraging Kerberos tickets to get Microsoft 365 access tokens using Seamless SSO
  ☆243Aug 25, 2024Updated last year
• CCob / DRSAT

  View on GitHub
  Disconnected RSAT - A method of running Group Policy Manager, Certificate Authority and Certificate Templates MMC snap-ins from non-domai…
  ☆300Mar 28, 2026Updated 2 weeks ago
• SpecterOps / cred1py

  View on GitHub
  A Python POC for CRED1 over SOCKS5
  ☆165Oct 5, 2024Updated last year
• Macmod / ldapx

  View on GitHub
  Flexible LDAP proxy that can be used to inspect & transform all LDAP packets generated by other tools on the fly.
  ☆198Feb 16, 2026Updated last month
• CCob / Shwmae

  View on GitHub
  ☆160Jan 27, 2025Updated last year
• Mayyhem / Maestro

  View on GitHub
  Abusing Azure services over C2
  ☆368Jan 20, 2026Updated 2 months ago
• xpn / adfstoolkit

  View on GitHub
  ☆39Jan 7, 2025Updated last year
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• nickvourd / Rocabella

  View on GitHub
  Sniffing files generator
  ☆62Feb 24, 2025Updated last year
• hotnops / SharpGetEntraToken

  View on GitHub
  A dotnet executable to get an Entra token in an authenticated runtime
  ☆17Oct 30, 2024Updated last year
• MaLDAPtive / Invoke-Maldaptive

  View on GitHub
  MaLDAPtive is a framework for LDAP SearchFilter parsing, obfuscation, deobfuscation and detection.
  ☆337Aug 7, 2024Updated last year
• LuemmelSec / APEX

  View on GitHub
  Azure Post Exploitation Framework
  ☆246Oct 27, 2025Updated 5 months ago
• joaoviictorti / rustclr

  View on GitHub
  Host CLR and run .NET binaries using Rust
  ☆154Dec 23, 2025Updated 3 months ago
• sap8899 / Group3rExplorer

  View on GitHub
  Fun GUI for Group3rs output log
  ☆37Aug 14, 2023Updated 2 years ago
• ZephrFish / QoL-BOFs

  View on GitHub
  Curated list of public Beacon Object Files(BOFs) build in as submodules for easy cloning
  ☆139Dec 7, 2025Updated 4 months ago
• HackmichNet / SharpAzToken

  View on GitHub
  ☆64Jan 2, 2024Updated 2 years ago
• badsectorlabs / sccm-http-looter

  View on GitHub
  Find interesting files stored on (System Center) Configuration Manager (SCCM/CM) shares via HTTP(s)
  ☆210Sep 30, 2024Updated last year
• DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• shelltrail / cmloot

  View on GitHub
  ☆82Mar 11, 2026Updated last month
• obikuro / Sato

  View on GitHub
  SATO is a PowerShell tool focuses on providing flexible, multi-grant type support for obtaining, managing, and analyzing Azure tokens.
  ☆22Nov 24, 2025Updated 4 months ago
• ZephrFish / LOLSearches

  View on GitHub
  Living off the land searches for explorer and sharepoint
  ☆96Dec 7, 2025Updated 4 months ago
• CCob / PinSwipe

  View on GitHub
  Smart Card PIN swiping DLL
  ☆78Oct 4, 2020Updated 5 years ago
• xforcered / ForsHops

  View on GitHub
  ForsHops
  ☆153Mar 25, 2025Updated last year
• jfjallid / go-cmloot

  View on GitHub
  A tool to enumerate and download files from the System Center Configuration Manager (SCCM) SMB share (SCCMContentLib)
  ☆17Jul 27, 2024Updated last year
• RedSiege / SharpCollectionTemplate

  View on GitHub
  ☆14Sep 26, 2023Updated 2 years ago
• lsecqt / SharpRedirect

  View on GitHub
  Simple C# Redirector
  ☆94Aug 31, 2025Updated 7 months ago
• Mr-Un1k0d3r / MsGraphFunzy

  View on GitHub
  Scripts to interact with Microsoft Graph APIs
  ☆45Nov 7, 2024Updated last year
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
• dirkjanm / family-of-client-ids-research

  View on GitHub
  Research into Undocumented Behavior of Azure AD Refresh Tokens
  ☆13Oct 27, 2023Updated 2 years ago
• NtDallas / OdinLdr

  View on GitHub
  Cobaltstrike Reflective Loader with Synthetic Stackframe
  ☆191Jan 17, 2026Updated 2 months ago
• klezVirus / RAIWhateverTrigger

  View on GitHub
  Local SYSTEM auth trigger for relaying - X
  ☆154Jul 23, 2025Updated 8 months ago
• rvrsh3ll / TokenTactics

  View on GitHub
  Azure JWT Token Manipulation Toolset
  ☆723Dec 6, 2024Updated last year
• synacktiv / SCCMSecrets

  View on GitHub
  SCCMSecrets.py aims at exploiting SCCM policies distribution for credentials harvesting, initial access and lateral movement.
  ☆266Nov 22, 2025Updated 4 months ago
• t94j0 / sddl_py

  View on GitHub
  Parse SDDL strings
  ☆37Apr 1, 2024Updated 2 years ago
• Leo4j / KeyCredentialLink

  View on GitHub
  Add Shadow Credentials to a target object by editing their msDS-KeyCredentialLink attribute
  ☆25Jun 5, 2024Updated last year