Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/SikretaLabs/BlueMap

A Azure Exploitation Toolkit for Red Team & Pentesters
https://github.com/SikretaLabs/BlueMap

Last synced: 21 days ago
JSON representation

A Azure Exploitation Toolkit for Red Team & Pentesters

Awesome Lists containing this project

README

        

![GitHub](https://img.shields.io/github/license/SikretaLabs/BlueMap) ![Black Hat Arsenal](https://raw.githubusercontent.com/toolswatch/badges/master/arsenal/europe/2022.svg?sanitize=true)

### BlueMap: An Interactive Exploitation Toolkit for Azure

BlueMap helps penetration testers and red teamers to perform Azure auditing, discovery & enumeration, and exploitation in interactive mode that saves complex opsec and overhead that usually exists in Azure penetration testing engagements.

The tool is currently in the Alpha version and with initial capabilities, but it will evolve with time :)

### Installation

The up-to-date release can be downloaded by cloning the master branch from here.

```
git clone https://github.com/SikretaLabs/BlueMap.git
```

BlueMap works out of the box with [Python](https://www.python.org/download/) version **3.x** and above on any platform.
For more information about installtion and other setup, please refer our wiki.

## Screenshot

![image](https://github.com/SikretaLabs/BlueMap/blob/master/docs/images/privs_model.gif?raw=true)

### About Author

Maor Tal (CISSP, OSCP, CSSK) is security researcher, threat hunter and red-teamer. His main intresets includes web penteration testing, cloud security and red team activities. He has extenstive experience working with wide range of customers in field of public, private, hi-tech and fintech companies for cloud and penteration testing. In 2019, he published his book ["Web Application Advanced Hacking"](https://webadvancedhacking.com/) by LeanPub. You can Contact him via [Linkedin](https://www.linkedin.com/in/maor-tal-06a7ba2a/) or [Twitter](https://twitter.com/th3location).

### Legal Notice

The usage of BlueMap intended for information security professionals for ethical usage only. Any attempt or usage of BlueMap for attacking targets without prior written permission or matual consent is illegal. It is the end user's responsibility to obey all applicable local, state and federal laws. BlueMap developers assume no liability and are not responsible for any misuse or damage caused by this program.

### License

BlueMap is distributed under MIT License.