M365_Groups_Enum is the all_groups.py
script allows to enumerate all Microsoft 365 Groups in a Azure AD tenant with their metadata:
All of this, even for private Groups! Read more about this on my blog article “Risks of Microsoft Teams and Microsoft 365 Groups”
The reporting.py
script will take the JSON output from all_groups.py
and generates a CSV files allowing to quickly identify sensitive private or public groups.
Installation
pip install -r requirements.txt
Usage
You will need a valid account on the tenant. Different authentication methods are supported:
python all_groups.py -u myuser@example.onmicrosoft.com -p MyPassw0rd
python all_groups.py –device-code
Other methods are also offered. You can read the ROADTools documentation or run the script without any argument to get help.
python all_groups.py
That’s all, you don’t need more options! The script output will be in all_groups.json
in the current directory.
Then, if you want a nicer and more concise output from this JSON, use reporting.py
to transform it:
python reporting.py
It automatically takes all_groups.json
in the current directory, and outputs to all_groups.csv
in the same directory.
Playwright-MCP (Model Context Protocol) is a cutting-edge tool designed to bridge the gap between AI…
JBDev is a specialized development tool designed to streamline the creation and debugging of jailbreak…
The Kereva LLM Code Scanner is an innovative static analysis tool tailored for Python applications…
Nuclei-Templates-Labs is a dynamic and comprehensive repository designed for security researchers, learners, and organizations to…
SSH-Stealer and RunAs-Stealer are malicious tools designed to stealthily harvest SSH credentials, enabling attackers to…
Control flow flattening is a common obfuscation technique used by OLLVM (Obfuscator-LLVM) to transform executable…