Skip to content

MSOL

Jump to bottom
knavesec edited this page Mar 22, 2021 · 3 revisions

Plugin Overview

The MSOL module is specific to managed Microsoft Online instances like Azure or a managed Office365 setup. This module can provide user enumeration and extra information about login attempts. If you want to spray Office365, you can use this module only if it is a Managed instance (not Federated).

This module was based off DaftHack's MSOLSpray tool, specifically the Python implementation of it here.

Unique Command Line Options

This plugin does not require any additional arguments.

Throttle Notes

Azure Smart Lockout can apply to rate limit requests, however I've only dealt with that for tools that do not rotate IP addresses. According to DaftHack's original MSOLSpray tool, he noted that it appeared to avoid getting blocked by Azure Smart Lockout during testing.

Example Command

python3 credmaster.py --access_key <key> --secret_access_key <key> \
    --plugin msol \
    -u userfile.txt -p passfile.txt -a useragents.txt -o outputfile \
    -t 5 -j 20 -m 10 -d 360 --passwordsperdelay 3

Overview

Home

Installation

Usage

Config File

Notifications

Fireprox Utilities

Plugins

Overview

OWA

EWS

O365

O365Enum

MSOL

Okta

FortinetVPN

HTTPBrute

ADFS

AzureSSO

GmailEnum

Misc

Development

Weekday Warrior

Throttle Evasion

Anonymity

Credits

Clone this wiki locally