Tools

**Recommended Modules to install:

Install-Module -Name Az -Repository PSGallery -Force
Install-Module AzureAD
Install-Module MSOnline

**For everything main tool:

Install-Module AADInternals

**User Enumeration

This script depends on the Python "Requests" library. The script can take a single email address
with the -e parameter or a list of email addresses, one per line, with the -f parameter. 
Additionally, the script can output valid email addressesto a file with the -o parameter.

Examples:
o365creeper.py -e test@example.com
o365creeper.py -f emails.txt
o365creeper.py -f emails.txt -o validemails.txt

**If there is ADFS implemented we can use

Onedrive user enumeration

**Password Spray:

Download releases from here

https://github.com/CausticKirbyZ/SprayCannon/releases

https://github.com/NetSPI/MicroBurst/blob/master/Misc/Invoke-EnumerateAzureBlobs.ps1

Just Download releases

https://github.com/Flangvik/TeamFiltration/releases

**Security Auditing Tools for Azure AD:

References: https://github.com/Gerenios/AADInternals https://github.com/LMGsec/o365creeper https://github.com/dafthack/MSOLSpray https://github.com/NetSPI/MicroBurst https://github.com/nyxgeek/o365recon https://github.com/Tw1sm/spraycharles https://github.com/CausticKirbyZ/SprayCannon [https://github.com/blacklanternsecurity/TREVORspray] (https://github.com/blacklanternsecurity/TREVORspray) https://github.com/Flangvik/TeamFiltration https://github.com/rvrsh3ll/TokenTactics https://github.com/NetSPI/MicroBurst/blob/master/Misc/Invoke-EnumerateAzureBlobs.ps1 https://github.com/dafthack/GraphRunner https://github.com/nccgroup/ScoutSuite https://github.com/prowler-cloud/prowler https://github.com/Azure/Stormspotter https://github.com/AzureAD/AzureADAssessment https://github.com/vletoux/pingcastle https://github.com/dirkjanm/ROADtoolsa

PreviousPrivilege EscalationNextAWS Penetration Test

Last updated