GITBOOK-706: No subject

HackTricks-wiki · Nov 18, 2024 · 3c8fbbf · 3c8fbbf
1 parent c2536f4
commit 3c8fbbf
Show file tree

Hide file tree

Showing 4 changed files with 287 additions and 107 deletions.
diff --git a/SUMMARY.md b/SUMMARY.md
@@ -397,6 +397,7 @@
     * [Az - Device Code Authentication Phishing](pentesting-cloud/azure-security/az-unauthenticated-enum-and-initial-entry/az-device-code-authentication-phishing.md)
     * [Az - Password Spraying](pentesting-cloud/azure-security/az-unauthenticated-enum-and-initial-entry/az-password-spraying.md)
   * [Az - Services](pentesting-cloud/azure-security/az-services/README.md)
+    * [Az - Management Groups, Subscriptions & Resource Groups](pentesting-cloud/azure-security/az-services/az-management-groups-subscriptions-and-resource-groups.md)
     * [Az - ACR](pentesting-cloud/azure-security/az-services/az-acr.md)
     * [Az - Application Proxy](pentesting-cloud/azure-security/az-services/az-application-proxy.md)
     * [Az - ARM Templates / Deployments](pentesting-cloud/azure-security/az-services/az-arm-templates.md)
@@ -430,7 +431,7 @@
     * [Az - Primary Refresh Token (PRT)](pentesting-cloud/azure-security/az-lateral-movement-cloud-on-prem/az-primary-refresh-token-prt.md)
   * [Az - Persistence](pentesting-cloud/azure-security/az-persistence.md)
   * [Az - Device Registration](pentesting-cloud/azure-security/az-device-registration.md)
-  * [Az - AzureAD (AAD)](pentesting-cloud/azure-security/az-azuread/README.md)
+  * [Az - Entra ID (formerly AzureAD - AAD)](pentesting-cloud/azure-security/az-azuread/README.md)
     * [Az - Conditional Access Policies / MFA Bypass](pentesting-cloud/azure-security/az-azuread/az-conditional-access-policies-mfa-bypass.md)
     * [Az - Dynamic Groups Privesc](pentesting-cloud/azure-security/az-azuread/dynamic-groups.md)
 * [Digital Ocean Pentesting](pentesting-cloud/digital-ocean-pentesting/README.md)

diff --git a/pentesting-cloud/azure-security/README.md b/pentesting-cloud/azure-security/README.md
@@ -173,6 +173,36 @@ Use portal.azure.com and select the shell, or use shell.azure.com, for a bash or
 
 Azure DevOps is separate from Azure. It has repositories, pipelines (yaml or release), boards, wiki, and more. Variable Groups are used to store variable values and secrets.
 
+## Debug | MitM az cli
+
+Using the parameter **`--debug`** it's possible to see all the requests the tool **`az`** is sending:
+
+```bash
+az account management-group list --output table --debug
+```
+
+In order to do a **MitM** to the tool and **check all the requests** it's sending manually you can do:
+
+{% tabs %}
+{% tab title="Bash" %}
+```bash
+export ADAL_PYTHON_SSL_NO_VERIFY=1
+export AZURE_CLI_DISABLE_CONNECTION_VERIFICATION=1
+export HTTPS_PROXY="http://127.0.0.1:8080"
+export HTTP_PROXY="http://127.0.0.1:8080"
+```
+{% endtab %}
+
+{% tab title="PS" %}
+```bash
+$env:ADAL_PYTHON_SSL_NO_VERIFY=1
+$env:AZURE_CLI_DISABLE_CONNECTION_VERIFICATION=1
+$env:HTTPS_PROXY="http://127.0.0.1:8080"
+$env:HTTP_PROXY="http://127.0.0.1:8080"
+```
+{% endtab %}
+{% endtabs %}
+
 ## Automated Recon Tools
 
 ### [**ROADRecon**](https://github.com/dirkjanm/ROADtools)