AzureHound

Please go to BloodHound after gathering information with AzureHound.

Custom queries for finding interesting stuff https://hausec.com/2020/11/23/azurehound-cypher-cheatsheet/.

Prerequisites

  • Download newest release of AzureHound from Github.com
  • Download pre-AzureHound.ps1 from below

Usage

PS > .\pre-AzureHound.ps1 -FQDN "offsec.onmicrosoft.com"
To sign in, use a web browser to open the page https://microsoft.com/devicelogin and enter the code 1234 to authenticate.

Press any key to continue ...
Ready to run AzureHound.exe:
.\AzureHound.exe -r '0.AUc[...]A6Tw' list --tenant 'offsec.onmicrosoft.com' -o output.json

URL List