2022-01-22 16:25:11 +01:00
## Azure-related penetration testing scripts, tools and Cheatsheets
2022-01-25 13:12:11 +01:00
- [**`Azure Roles`** ](https://github.com/mgeeky/Penetration-Testing-Tools/blob/master/clouds/azure/Azure%20Roles/README.md ) - All Azure RBAC and Azure AD Role Definitions, along with their permissions associated listed in a handy markdown report.
2022-01-22 16:25:11 +01:00
- **`AzureRT` ** - Powershell module implementing various cmdlets to interact with Azure and Azure AD from an offensive perspective. Helpful utilities dealing with access token based authentication, easily switching from `Az` to `AzureAD` and `az cli` interfaces, easy to use pre-made attacks such as Runbook-based command execution and more.
2022-01-22 16:26:38 +01:00
Authentication & Token mechanics:
2022-01-22 16:25:11 +01:00
2022-01-22 17:42:12 +01:00
- *`Get-ARTWhoami` *
2022-01-22 16:26:38 +01:00
- *`Connect-ART` *
- *`Connect-ARTAD` *
- *`Connect-ARTADServicePrincipal` *
- *`Get-ARTAccessTokenAzCli` *
- *`Get-ARTAccessTokenAz` *
- *`Get-ARTAccessTokenAzureAD` *
2022-02-03 21:45:34 +01:00
- *`Get-ARTAccessTokenAzureADCached` *
2022-01-22 16:26:38 +01:00
- *`Parse-JWTtokenRT` *
- *`Remove-ARTServicePrincipalKey` *
2022-01-22 16:25:11 +01:00
2022-01-22 16:26:38 +01:00
Recon and Situational Awareness:
2022-01-22 16:25:11 +01:00
2022-01-22 20:46:56 +01:00
- *`Get-ARTAccess` *
- *`Get-ARTADAccess` *
2022-02-03 23:12:43 +01:00
- *`Get-ARTTenants` *
2022-01-25 18:14:53 +01:00
- *`Get-ARTDangerousPermissions` *
2022-01-26 04:06:13 +01:00
- *`Get-ARTADScopedRoleAssignment` *
2022-01-22 16:26:38 +01:00
- *`Get-ARTResource` *
- *`Get-ARTRolePermissions` *
- *`Get-ARTADRolePermissions` *
2022-02-03 21:45:34 +01:00
- *`Get-ARTADDynamicGroups` *
2022-02-04 02:51:18 +01:00
- *`Get-ARTApplication` *
- *`Get-ARTApplicationProxy` *
- *`Get-ARTApplicationProxyPrincipals` *
2022-01-22 19:21:46 +01:00
- *`Get-ARTRoleAssignment` *
2022-01-22 16:26:38 +01:00
- *`Get-ARTKeyVaultSecrets` *
2022-01-25 12:19:14 +01:00
- *`Get-ARTAutomationRunbookCode` *
2022-01-31 02:18:53 +01:00
- *`Get-ARTAzVMPublicIP` *
2022-01-31 00:20:32 +01:00
- *`Get-ARTResourceGroupDeploymentTemplate` *
2022-01-31 02:18:53 +01:00
- *`Get-ARTAzVMUserDataFromInside` *
2022-01-22 16:25:11 +01:00
2022-01-22 16:26:38 +01:00
Privilege Escalation:
2022-01-22 16:25:11 +01:00
2022-02-03 23:12:43 +01:00
- *`Add-ARTADGuestUser` *
2022-01-26 04:40:28 +01:00
- *`Set-ARTADUserPassword` *
2022-01-22 16:26:38 +01:00
- *`Add-ARTUserToGroup` *
- *`Add-ARTUserToRole` *
2022-01-23 00:43:55 +01:00
- *`Add-ARTADAppSecret` *
2022-01-22 16:25:11 +01:00
2022-01-22 16:26:38 +01:00
Lateral Movement:
2022-01-22 16:25:11 +01:00
2022-01-22 16:26:38 +01:00
- *`Invoke-ARTAutomationRunbook` *
2022-01-25 18:14:53 +01:00
- *`Invoke-ARTRunCommand` *
2022-02-03 21:45:34 +01:00
- *`Invoke-ARTCustomScriptExtension` *
2022-01-31 02:18:53 +01:00
- *`Update-ARTAzVMUserData` *
2022-01-23 00:43:55 +01:00
Misc:
2022-01-25 12:19:14 +01:00
2022-01-31 03:53:56 +01:00
- *`Get-ARTPRTToken` *
- *`Get-ARTPRTNonce` *
2022-01-23 00:43:55 +01:00
- *`Get-ARTUserId` *
2022-01-31 03:53:56 +01:00
- *`Get-ARTTenantID` *
2022-01-25 23:21:22 +01:00
- *`Get-ARTSubscriptionId` *
2022-01-23 00:43:55 +01:00
- *`Parse-JWTtokenRT` *
2022-01-25 12:19:14 +01:00
- *`Invoke-ARTGETRequest` *
2022-02-03 21:45:34 +01:00
- *`Import-ARTModules` *
