Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/unusualevent/awesome-entra-red-team
Azure AD / Entra ID pentesting links.
https://github.com/unusualevent/awesome-entra-red-team
List: awesome-entra-red-team
awesome-list azuread entra-id microsoft-azure-security redteam-tools
Last synced: 20 days ago
JSON representation
Azure AD / Entra ID pentesting links.
- Host: GitHub
- URL: https://github.com/unusualevent/awesome-entra-red-team
- Owner: unusualevent
- Created: 2024-09-08T08:47:49.000Z (2 months ago)
- Default Branch: main
- Last Pushed: 2024-09-24T01:53:50.000Z (about 2 months ago)
- Last Synced: 2024-10-24T03:34:16.636Z (27 days ago)
- Topics: awesome-list, azuread, entra-id, microsoft-azure-security, redteam-tools
- Homepage:
- Size: 3.91 KB
- Stars: 0
- Watchers: 1
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
# awesome-entra-red-team
Azure AD / Entra ID pentesting links.
> because someone asked for a list. If you have a better list, please link to it in an issue or propose something or pull request it.
## Tools
- https://github.com/fox-it/adconnectdump - Azure AD Connect password extraction
- https://github.com/dirkjanm/ROADtools - Azure AD framework
- https://github.com/CrowdStrike/CRT
- https://github.com/AzureAD/AzureADAssessment
- https://gist.github.com/xpn/f12b145dba16c2eebdd1c6829267b90c
- https://github.com/dafthack/MSOLSpray
- https://github.com/MartinIngesen/MSOLSpray
- https://github.com/fox-it/adconnectdump
- https://github.com/alaanasser00/entraid-bench
- https://github.com/vectra-ai-research/Halberd
- https://github.com/vectra-ai-research/MAAD-AF
- https://github.com/jsa2/caOptics
- https://github.com/hausec/PowerZure
- https://github.com/cisagov/ScubaGear
- https://github.com/rvrsh3ll/TokenTactics
- https://github.com/f-bader/TokenTacticsV2
- https://github.com/netwrix/pingcastle
- https://github.com/nccgroup/ScoutSuite
- https://github.com/Azure/Stormspotter
## Reading
- https://github.com/infosecn1nja/AD-Attack-Defense?tab=readme-ov-file#azure-active-directory
- https://github.com/PacktPublishing/Penetration-Testing-Azure-for-Ethical-Hackers / https://static.packt-cdn.com/downloads/9781839212932_ColorImages.pdf
- https://danielchronlund.com/2022/01/07/the-attackers-guide-to-azure-ad-conditional-access/
- https://github.com/Kyuu-Ji/Awesome-Azure-Pentest?tab=readme-ov-file#articles
- https://emptydc.com/2020/12/10/privilege-escalation-in-azure-ad/
## Powershell
- https://github.com/NetSPI/MicroBurst (config dumping, post exploitation)
- https://github.com/Gerenios/AADInternals (for administering)
- https://github.com/csandker/Azure-AccessPermissions
## Other Awesome Lists
- AD/O365 attack and defense: https://github.com/infosecn1nja/AD-Attack-Defense
- https://github.com/Kyuu-Ji/Awesome-Azure-Pentest
- https://github.com/merill/awesome-entra
- https://github.com/kmcquade/awesome-azure-security