A curated list of awesome Microsoft Entra tools, guides, and other resources.
Contributions welcome! Read the contribution guidelines first.
- AADInternals: a PowerShell toolkit for administering and hacking Azure AD and Microsoft 365.
- AADInternals - OSINT: an OSINT web app that displays tenant information.
- BloodHound: BloodHound uses graph theory to reveal hidden relationships and attack paths in an Active Directory environment that would otherwise be impossible to quickly identify.
- MicroBurst: a PowerShell Toolkit for Attacking Azure.
- PowerZure: a PowerShell project created to perform reconnaissance and exploitation of Azure, AzureAD, and the associated resources.
- ROADrecon: a tool for exploring information in Azure AD from both a Red Team and Blue Team perspective.
- ScoutSuite: Multi-Cloud Security auditing tool.
- StormSpotter: Azure Red Team tool for graphing Azure and Azure Active Directory objects.