[HN Gopher] Show HN: Enumerate Office365/Azure Domains
___________________________________________________________________
Show HN: Enumerate Office365/Azure Domains
Author : technion
Score : 19 points
Date : 2024-02-20 21:02 UTC (1 hours ago)
(HTM) web link (azure-enum.lolware.net)
(TXT) w3m dump (azure-enum.lolware.net)
| mdaniel wrote:
| since this seems to be some kind of brag site without any
| substance, there is a relevant gist that is the "local" version
| of this behavior https://gist.github.com/Mike-
| Crowley/5da3f3fd69519f06866d580... ("Query
| GetFederationInformation from AutoDiscover anonymously") and the
| official docs https://learn.microsoft.com/en-
| us/openspecs/exchange_server_...
| technion wrote:
| If you're interested in the local version or a "how does it
| work", I wrote this Ruby gem years ago for this functionality,
| which has been useful in a range of penetration testing
| engagements where "the Azure tenant" is within scope.
|
| https://rubygems.org/gems/azure_enum
|
| The Gem is virtually unused with the only feedback I had being
| "eww Ruby", so I made a web interface for an AWS lambda
| function. Perhaps some non tech people would be interested in
| seeing what companies work together behind the scenes.
|
| There's no intention of "bragging" here on a page that doesn't
| name me or any company or include any usage analytics.
| lloydatkinson wrote:
| That URL field is awful on mobile. I can't understand why people
| don't use the correct attributes to prevent URLs being
| "helpfully" spell corrected into something else.
| technion wrote:
| This is in the "I'm not a frontend person, I've literally never
| heard of any correct attributes beyond the ones I copied from
| the React-hook-form examples" category.
|
| If you can point to a specific change, send it to an issue and
| I'll do it:
|
| https://github.com/technion/azure-enum-frontend
___________________________________________________________________
(page generated 2024-02-20 23:00 UTC)