Recent Releases of https://github.com/byt3n33dl3/azurehoundad
https://github.com/byt3n33dl3/azurehoundad - AzureHuntr 1.4
AzureHoundAD
Features • Installation • Usage • Scope
The Attack Path Management data collector for Microsoft Azure AzureHoundAD collects data from Azure Active Directory (AzureAD) and Azure Resource Manager (AzureRM). It can then send this data to Attack Path Management, maybe BloodHound Enterprise for processing and analysis.
AzureHoundAD uses the Microsoft Graph and Azure REST APIs to collect data. It can run on any operating system and doesn't require any external dependencies. Authentication Attack with AzureHoundAD supports several Authentication flows, including username or password, JWT, refresh token, service principal secret, and service principal certificate.
- AzureHound is a Go binary that collects data from AzureAD and AzureRM via the MS Graph and Azure REST APIs.
Get AzureHoundAD
Download the appropriate binary for your platform from one of our Releases.
The rolling release contains pre-built binaries that are automatically kept up-to-date with the main branch and can be downloaded from
here.
Warning: The rolling release may be unstable.
Compiling
- Go 1.21 or later
To build this project from source run the following:
sh
go build -ldflags="-s -w -X github.com/byt3n33dl3/AzureHoundAD/v2/constants.Version=`git describe tags --exact-match 2> /dev/null || git rev-parse HEAD`"
Usage
Print all Azure Tenant data to stdout
sh
❯ azurehound list -u "$USERNAME" -p "$PASSWORD" -t "$TENANT"
Print all Azure Tenant data to file
sh
❯ azurehound list -u "$USERNAME" -p "$PASSWORD" -t "$TENANT" -o "mytenant.json"
Configure and start data collection service for BloodHound Enterprise
```sh ❯ azurehound configure (follow prompts)
❯ azurehound start ```
Command Line
``` ❯ azurehound --help AzureHound vx.x.x Created by the BloodHound Enterprise team -
The official tool for collecting Azure data for BloodHound and BloodHound Enterprise
Usage: azurehound [command]
Available Commands: completion Generate the autocompletion script for the specified shell configure Configure AzureHound help Help about any command list Lists Azure Objects start Start Azure data collection service for BloodHound Enterprise
Flags: -c, --config string AzureHound configuration file (.config/azurehound/config.json) -h, --help help for azurehound --json Output logs as json -j, --jwt string Use an acquired JWT to authenticate into Azure --log-file string Output logs to this file --proxy string Sets the proxy URL for the AzureHound service -r, --refresh-token string Use an acquired refresh token to authenticate into Azure -v, --verbosity int AzureHound verbosity level (defaults to 0) [Min: -1, Max: 2] --version version for azurehound
Use "azurehound [command] --help" for more information about a command. ```
Thanks To
- C#
Published by byt3n33dl3 over 1 year ago
https://github.com/byt3n33dl3/azurehoundad - AzureHuntr 1.1
AzureHoundAD
Features • Installation • Usage • Scope
The Attack Path Management data collector for Microsoft Azure AzureHoundAD collects data from Azure Active Directory (AzureAD) and Azure Resource Manager (AzureRM). It can then send this data to Attack Path Management, maybe BloodHound Enterprise for processing and analysis.
AzureHoundAD uses the Microsoft Graph and Azure REST APIs to collect data. It can run on any operating system and doesn't require any external dependencies. Authentication Attack with AzureHoundAD supports several Authentication flows, including username or password, JWT, refresh token, service principal secret, and service principal certificate.
- AzureHound is a Go binary that collects data from AzureAD and AzureRM via the MS Graph and Azure REST APIs.
Get AzureHoundAD
Download the appropriate binary for your platform from one of our Releases.
The rolling release contains pre-built binaries that are automatically kept up-to-date with the main branch and can be downloaded from
here.
Warning: The rolling release may be unstable.
Compiling
- Go 1.21 or later
To build this project from source run the following:
sh
go build -ldflags="-s -w -X github.com/byt3n33dl3/AzureHoundAD/v2/constants.Version=`git describe tags --exact-match 2> /dev/null || git rev-parse HEAD`"
Usage
Print all Azure Tenant data to stdout
sh
❯ azurehound list -u "$USERNAME" -p "$PASSWORD" -t "$TENANT"
Print all Azure Tenant data to file
sh
❯ azurehound list -u "$USERNAME" -p "$PASSWORD" -t "$TENANT" -o "mytenant.json"
Configure and start data collection service for BloodHound Enterprise
```sh ❯ azurehound configure (follow prompts)
❯ azurehound start ```
Command Line
``` ❯ azurehound --help AzureHound vx.x.x Created by the BloodHound Enterprise team -
The official tool for collecting Azure data for BloodHound and BloodHound Enterprise
Usage: azurehound [command]
Available Commands: completion Generate the autocompletion script for the specified shell configure Configure AzureHound help Help about any command list Lists Azure Objects start Start Azure data collection service for BloodHound Enterprise
Flags: -c, --config string AzureHound configuration file (.config/azurehound/config.json) -h, --help help for azurehound --json Output logs as json -j, --jwt string Use an acquired JWT to authenticate into Azure --log-file string Output logs to this file --proxy string Sets the proxy URL for the AzureHound service -r, --refresh-token string Use an acquired refresh token to authenticate into Azure -v, --verbosity int AzureHound verbosity level (defaults to 0) [Min: -1, Max: 2] --version version for azurehound
Use "azurehound [command] --help" for more information about a command. ```
Thanks To
- C#
Published by byt3n33dl3 over 1 year ago
https://github.com/byt3n33dl3/azurehoundad - AzureHuntr
AzureHoundAD
Features • Installation • Usage • Scope
The Attack Path Management data collector for Microsoft Azure AzureHoundAD collects data from Azure Active Directory (AzureAD) and Azure Resource Manager (AzureRM). It can then send this data to Attack Path Management, maybe BloodHound Enterprise for processing and analysis.
AzureHoundAD uses the Microsoft Graph and Azure REST APIs to collect data. It can run on any operating system and doesn't require any external dependencies. Authentication Attack with AzureHoundAD supports several Authentication flows, including username or password, JWT, refresh token, service principal secret, and service principal certificate.
- AzureHound is a Go binary that collects data from AzureAD and AzureRM via the MS Graph and Azure REST APIs.
Get AzureHoundAD
Download the appropriate binary for your platform from one of our Releases.
The rolling release contains pre-built binaries that are automatically kept up-to-date with the main branch and can be downloaded from
here.
Warning: The rolling release may be unstable.
Compiling
- Go 1.21 or later
To build this project from source run the following:
sh
go build -ldflags="-s -w -X github.com/byt3n33dl3/AzureHoundAD/v2/constants.Version=`git describe tags --exact-match 2> /dev/null || git rev-parse HEAD`"
Usage
Print all Azure Tenant data to stdout
sh
❯ azurehound list -u "$USERNAME" -p "$PASSWORD" -t "$TENANT"
Print all Azure Tenant data to file
sh
❯ azurehound list -u "$USERNAME" -p "$PASSWORD" -t "$TENANT" -o "mytenant.json"
Configure and start data collection service for BloodHound Enterprise
```sh ❯ azurehound configure (follow prompts)
❯ azurehound start ```
Command Line
``` ❯ azurehound --help AzureHound vx.x.x Created by the BloodHound Enterprise team -
The official tool for collecting Azure data for BloodHound and BloodHound Enterprise
Usage: azurehound [command]
Available Commands: completion Generate the autocompletion script for the specified shell configure Configure AzureHound help Help about any command list Lists Azure Objects start Start Azure data collection service for BloodHound Enterprise
Flags: -c, --config string AzureHound configuration file (.config/azurehound/config.json) -h, --help help for azurehound --json Output logs as json -j, --jwt string Use an acquired JWT to authenticate into Azure --log-file string Output logs to this file --proxy string Sets the proxy URL for the AzureHound service -r, --refresh-token string Use an acquired refresh token to authenticate into Azure -v, --verbosity int AzureHound verbosity level (defaults to 0) [Min: -1, Max: 2] --version version for azurehound
Use "azurehound [command] --help" for more information about a command. ```
Thanks To
- C#
Published by byt3n33dl3 over 1 year ago