ROADtools
ROADtools copied to clipboard
dirkjanm
A collection of Azure AD/Entra tools for offensive and defensive security purposes
Plugin iterates across a supplied user list of UPNs and prints any group memberships that match a supplied search term.
get_authority_url of .\roadlib\auth.py needs to be updated to support Azure Government deployments. For example, in the US the URL would be login.microsoftonline.us, not .com. Attempting to auth to login.microsoftonline.com results...
Hi there Dirk! Thank you for a splendid tool! :-) I've just collected a rather big database (2,5GB) containing more than 100k users, 500k groups, 260k devices etc. The `gather`...
This is a proof-of-concept for supporting backend pagination. It fixes #33. Most of the heavy lifting is done by [Flask SQLAlchemy](https://flask-sqlalchemy.palletsprojects.com/en/3.1.x/pagination/) TODO (?): - [ ] Implement pagination for all...
Added the ability to override default user agent in multiple flows: - PRT - Code Auth - Device - Hybrid Device Additionally it's possible to overwrite the target domain in...
fix npm build syntax ``` npm build Unknown command: "build" Did you mean this? npm run build # run the "build" package script To see a list of supported npm...
This pull requests includes updates to roadlib's auth.py and roadrecon's gather.py. The changes add the argument --origin which appends a header origin value to refresh token requests which is required...
Hi dirkjanm! I ran into a little issue when trying the policies plugin: ``` roadrecon plugin policies -p -d roadrecon.db ... #################### My Policy Name 97e32d76-dbc0-4cfe-b088-9f37b18743e9 { 'Conditions': { 'Applications':...
Hello, love the tool, thanks for sharing. When doing some tests, especially with brand new users I get into this case when user is required to register for MFA (
