0
  • Home
  • Blog
  • Stormspotter - Azure Red Team tool for graphing Azure and Azure Active Directory objects

Stormspotter - Azure Red Team tool for graphing Azure and Azure Active Directory objects

(444 views)

Stormspotter creates an “attack graph” of the resources in an Azure subscription. It enables red teams and pentesters to visualize the attack surface and pivot opportunities within a tenant, and supercharges your defenders to quickly orient and prioritize incident response work. It needs reader access to the subscription you wish to import and/or Directory. Read access to the Azure AD tenants. Getting Started Prerequisites Stormspotter is developed in Python 3.8. Install Neo4j. Currently, neo4j 4.0 may cause errors when launching Stormdash if you do not manually configure it with an SSL cert. Installation directions for your preferred operating system are located here, although you may prefer the ease of a docker container: docker run --name stormspotter -p7474:7474 -p7687:7687 -d --env NEO4J_AUTH=neo4j/[password] neo4j:3.5.18 Running Stormspotter In order to avoid conflicting packages, it is highly recommended to run Stormspotter in a virtual environment. Install the requirements From the repository (RECOMMENDED) git clone....

Read the rest of this story with a free account.

Already have an account? Sign in

May 22, 2020
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments
Get unlimited access

Become an Instructor

Become a Reviewer

Writing on Hakin9

LOOKING for a JOB in IT security?



© HAKIN9 MEDIA SP. Z O.O. SP. K. 2023

Download Free eBook

Step 1 of 4

Name(Required)

We’re committed to your privacy. Hakin9 uses the information you provide to us to contact you about our relevant content, products, and services. You may unsubscribe from these communications at any time. For more information, check out our Privacy Policy.