If you’re doing #cloud #security penetration testing and Azure is in scope, AZexec should already be in your toolkit! AZexec brings a NetExec-style workflow to Azure & Entra ID, finally giving cloud pentesters the same speed, clarity, and offensive ergonomics we’re used to on-prem. What makes it a must-have: - Unauthenticated & guest-based enumeration (yes, the Azure “null session” problem is very real) - Two-phase password spraying using Microsoft’s own APIs (stealthy, lockout-safe, MFA-aware) - Deep Entra ID & ARM reconnaissance: users, roles, apps, Key Vaults, storage, networks, VMs - Remote command execution across Azure VMs, Arc, MDE, and Intune - Credential extraction & token abuse tailored for cloud-native environments - NetExec-style output reporting (CSV / JSON / HTML) for clean ops and clean reports If you know CrackMapExec / NetExec, AZexec will feel instantly familiar, just adapted for how Azure actually works. Cloud attacks deserve cloud-native tooling. 🔗 GitHub: github.com/Logisek/AZexec #CloudSecurity #Azure #EntraID #Pentesting #RedTeam #OffensiveSecurity #AzureAD #NetExec #AZexec #Logisek

🚀 AZexec: New Release Out Now! Big update with a ton of new offensive capabilities added: - Lockscreen enumeration: detect Windows lockscreen accessibility backdoors - Intune enumeration: enumerate Endpoint Manager–managed devices and configuration - Password spraying: two-phase workflow with validated usernames to reduce lockouts - Local authentication mode: target cloud-only (non-federated) accounts - OAuth2 delegation enumeration: identify consent-based impersonation paths - Remote command execution: execute commands on Azure VMs and devices - PI execution method: execute as another user via process injection - Empire execution: deploy Empire stagers for C2 access - Meterpreter execution: deliver Metasploit payloads - Spidering: enumerate and optionally download files from storage, VMs, and devices - File transfer: get and put files across VMs, Arc devices, and Azure storage - Credential extraction: dump credentials via SAM, LSA, NTDS, tokens, DPAPI, and more - github.com/Logisek/AZexec #Azure #RedTeam #OffensiveSecurity #CloudSecurity #Pentesting #PenTest #Offsec #Infosec #Logisek

#AZexec update! New functionality has been added and the project now features a more modular, flexible structure. Check it out 👉 github.com/Logisek/AZexec AZX is a PowerShell-based Azure offensive tool designed to provide netexec-style output for cloud environments. It offers a familiar command-line interface for security professionals and administrators working with Azure & Entra ID. - logisek.com - Logisek #AZexec #RedTeam #OffensiveSecurity #Pentesting #OpenSource #Infosec #Offsec #PenTest #Cloud #Azure #Logisek

Introducing #AZexec – Azure Execution Tool (#AZX) A PowerShell-based Azure & Entra ID enumeration tool built to bring a netexec-style experience into cloud environments. AZX provides a clean, familiar command-line interface that helps security professionals, red teamers, and administrators efficiently enumerate and assess Azure/Entra ID environments, without the noise. --- ⚠️ AZexec is a work in progress, and more features, modules, and improvements are actively being developed and added as the project evolves. Whether you’re conducting offensive security testing, cloud security assessments, or simply need better visibility into Azure/Entra ID, AZexec is designed to feel intuitive, fast, and operator-friendly. 🔹 PowerShell-based 🔹 Azure & Entra ID focused 🔹 Netexec-style output for cloud workflows 🔹 Built for OffSec & BlueSec practitioners alike --- Get it on #GitHub: lnkd.in/d5iVyje6 Feedback, contributions, and testing are welcome. #Cybersecurity #Azure #EntraID #OffensiveSecurity #RedTeam #Pentesting #CloudSecurity #Infosec #Logisek