_____ _ _____
| ____|_ __ | |_ _ __ __ _| ____|_ __ _ _ _ __ ___
| _| | '_ \| __| '__/ _` | _| | '_ \| | | | '_ ` _ \
| |___| | | | |_| | | (_| | |___| | | | |_| | | | | | |
|_____|_| |_|\__|_| \__,_|_____|_| |_|\__,_|_| |_| |_|
=======================================================
EntraEnum is a PowerShell-based tool designed to map various resources in Azure Active Directory environments (Entra ID). The tool allows penetration testers and system administrators to interact with Azure APIs, with support for device code (Phishing), using Faily Of Client IDs to request Access Tokens for various resources in the Azure environment.
-
Device Code Phishing:
- Generate device codes to phish access tokens from users.
-
FOCI Abuse:
- Obtaining an access token and refresh token for various resources using FOCI
Import-Module Invoke-EntraEnum.psm1If you see this error: 'API call failed: The remote server returned an error'. It means you sent too many requests, Wait 30 seconds and resend the request.
