This repository contains all the material from the talk "Esoteric sub-domain enumeration techniques" given at Bugcrowd LevelUp 2017 virtual conference

Stars: ✭ 513 (+130.04%)

Mutual labels: osint, enumeration

Crosslinked

LinkedIn enumeration tool to extract valid employee names from an organization through search engine scraping

Stars: ✭ 223 (+0%)

Mutual labels: osint, enumeration

Onedrive

#1 Free OneDrive Client for Linux

Stars: ✭ 5,104 (+2188.79%)

Mutual labels: onedrive, office365

findcdn

findCDN is a tool created to help accurately identify what CDN a domain is using.

Stars: ✭ 64 (-71.3%)

Mutual labels: osint, enumeration

Office365FiddlerExtension

This Fiddler Extension is an Office 365 centric parser to efficiently troubleshoot Office 365 client application connectivity and functionality.

Stars: ✭ 23 (-89.69%)

Mutual labels: onedrive, office365

vbo365-rest

Unofficial Self-Service Web Portal for Veeam Backup for Microsoft Office 365

Stars: ✭ 44 (-80.27%)

Mutual labels: onedrive, office365

Sonarsearch

A MongoDB importer and API for Project Sonars DNS datasets

Stars: ✭ 297 (+33.18%)

Mutual labels: osint, enumeration

Firepower O365 Feed Parser

This is a Sample Script that can parse the O365 Web Service API and upload it to Firepower Management Center as Group Objects.

Stars: ✭ 56 (-74.89%)

Mutual labels: office365, o365

Amass

In-depth Attack Surface Mapping and Asset Discovery

Stars: ✭ 6,284 (+2717.94%)

Mutual labels: osint, enumeration

Phpspo

Office 365 Library for PHP. It allows to performs CRUD operations against Office 365 resources via an REST/OData based API

Stars: ✭ 198 (-11.21%)

Mutual labels: onedrive, office365

Intrec Pack

Intelligence and Reconnaissance Package/Bundle installer.

Stars: ✭ 177 (-20.63%)

Mutual labels: osint, enumeration

Office365 Rest Python Client

Office 365 & Microsoft Graph Library for Python

Stars: ✭ 289 (+29.6%)

Mutual labels: onedrive, office365

Microsoft365dsc

Manages, configures, extracts and monitors Microsoft 365 tenant configurations

Stars: ✭ 374 (+67.71%)

Mutual labels: onedrive, office365

vbo365-rest-self-service

Unofficial Self-Service Web Portal for Veeam Backup for Microsoft Office 365

Stars: ✭ 24 (-89.24%)

Mutual labels: onedrive, office365

AzureAD Autologon Brute

Brute force attack tool for Azure AD Autologon/Seamless SSO - Source: https://arstechnica.com/information-technology/2021/09/new-azure-active-directory-password-brute-forcing-flaw-has-no-fix/

Stars: ✭ 90 (-59.64%)

Mutual labels: enumeration, user-enumeration

View All Similar Projects ➔

onedrive_user_enum

enumerate valid onedrive users

overview:

OneDrive users have a file share URL with a known location:

https://acmecomputercompany-my.sharepoint.com/personal/lightmand_acmecomputercompany_com/_layouts/15/onedrive.aspx

In this instance, the username is 'lightmand' and the domain is 'acmecomputercompany.com'. If a user has logged into OneDrive, this path will exist and return a 403 status code. If they have not, or the user is invalid, it will return a 404.

The results may vary depending on how widely used OneDrive is within an org. Currently it is the most reliable user-enumeration method that I'm aware of (office365userenum no longer works, and the others like UhOh365 are unreliable). Further, it does not attempt a login and is much more passive, and should be undetectable to the target org. Microsoft will see the hits, but the target org won't.

usage:

python onedrive_enum.py -U users.txt -d acmecomputercompany.com

Flags:
    -d    target domain
    -T    tenant (optional: try running without specifying this flag first)
    -u    username to test
    -U    file containing usernames to test
    -o    output file (default: onedrive_enum.log)
    -v    verbose mode
    -t    threads (default: 10)

example:

> python onedrive_enum.py -U users.txt -d acmecomputercompany.com

+-----------------------------------------+
|           OneDrive Enumerator           |
|       2019 @nyxgeek - TrustedSec        |
+-----------------------------------------+

Reading users from file: users.txt
Connection to https://acmecomputercompany-my.sharepoint.com was successful...
Beginning enumeration of https://acmecomputercompany-my.sharepoint.com/personal/USER_acmecomputercompany_com/
[-] [404] not found acmecomputercompany.com - fakeuser
[-] [404] not found acmecomputercompany.com - fake.user
[-] [404] not found acmecomputercompany.com - westb
[+] [403] VALID ONEDRIVE FOR acmecomputercompany.com - westa
[-] [404] not found acmecomputercompany.com - westc
[+] [403] VALID ONEDRIVE FOR acmecomputercompany.com - lightmand
[-] [404] not found acmecomputercompany.com - admin
[-] [404] not found acmecomputercompany.com - crabapplee
[+] [403] VALID ONEDRIVE FOR acmecomputercompany.com - johns
[-] [404] not found acmecomputercompany.com - venturej
[-] [404] not found acmecomputercompany.com - stevens
[-] [404] not found acmecomputercompany.com - stevenf
>

Note: Users that are valid but who have not yet signed into OneDrive will return a 404 not found.

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

nyxgeek / onedrive_user_enum

Programming Languages

Labels

Projects that are alternatives of or similar to onedrive user enum

onedrive_user_enum

overview:

usage:

example:

Note: Users that are valid but who have not yet signed into OneDrive will return a 404 not found.