o365spray
AADInternals
o365spray | AADInternals | |
---|---|---|
2 | 5 | |
679 | 1,145 | |
- | 3.1% | |
5.3 | 5.6 | |
22 days ago | about 1 month ago | |
Python | PowerShell | |
MIT License | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
o365spray
-
o365Spray Attack Respond Rule
o365Spray is a python script that can be used to password spray attack Microsoft 365 email accounts very efficiently. Here is the link to the script: https://github.com/0xZDH/o365spray
- what is the open source tool used to audit o365/azure
AADInternals
- AAD Internals
-
Simple PowerShell things allowing you to dig a bit deeper than usual
This would be a great addition:
https://github.com/Gerenios/AADInternals
- what is the open source tool used to audit o365/azure
-
Around 83.4% of Fortune 500 have Azure Active Directory
AADInternals[0] is an excellent set of PowerShell modules for pentesting and performing recon against Azure AD as both an outsider[1] and for someone who has been invited to a tenant.
It has similar functionality integrated for discovering if a domain has an associated Azure AD Tenant and enumerating information about users in the tenant, who the "Owner" is and their contact information. As with many Microsoft products there are many configuration options and plenty of them aren't secure by default.
[0] https://o365blog.com/aadinternals/
-
Reverse engineering hidden Office 365 API to expose settings via PowerShell
Any chance this could be merged into [AADInternals](https://github.com/Gerenios/AADInternals)? It has a ton of similar reverse-engineered features in a pretty battle-tested structure
What are some alternatives?
jwtXploiter - A tool to test security of json web token
PSSharedGoods - PSSharedGoods is little PowerShell Module that primary purpose is to be useful for multiple tasks, unrelated to each other. I've created this module as “a glue” between my other modules.
mediator - An extensible, end-to-end encrypted reverse shell that works across networks without port forwarding.
O365Essentials - A module that helps to manage some tasks on Office 365/Azure via undocumented API
SSTImap - Automatic SSTI detection and exploitation tool with interactive interface
azure_enum - Office 365 and Exchange domain federation enumeration tool
APTRS - Automated Penetration Testing Reporting System
ReportingServicesTools - Reporting Services Powershell Tools
dotnet-script - Run C# scripts from the .NET CLI.
wsl-vpnkit - Provides network connectivity to WSL 2 when blocked by VPN
PSBits - Simple (relatively) things allowing you to dig a bit deeper than usual.
nushell - A new type of shell