-
Notifications
You must be signed in to change notification settings - Fork 132
AzureSSO
knavesec edited this page Oct 1, 2021
·
1 revision
The AzureSSO module is for brute-forcing Azure AD instances using the "autologon.microsoftazuread-sso.com" URL method. This technique does not leave logs on the tenant at the time of writing.
This module was based off nyxgeek's https://github.com/nyxgeek/AzureAD_Autologon_Brute
The AzureSSO plugin adds one new required argument, --domain. This is simply your target Tenant domain.
TBD, more research required (feel free to PR with notes). Azure SmartLockout may apply to rate limit requests, however the tool should notify if Azure SmartLockout is in effect.
python3 credmaster.py --access_key <key> --secret_access_key <key> \
--plugin azuresso --domain tenantdomain.com \
-u userfile.txt -p passfile.txt -a useragents.txt -o outputfile \
-t 5 -j 20 -m 10 -d 360 --passwordsperdelay 3