m365-entra-attack
CommunityValidate M365 creds and map CA defenses fast
Legal & Compliance#m365#entra id#password spray#conditional access#credential validation#aadsts#saml sso
AuthorCarlos-Reyes-UTP
Version1.0.0
Installs0
System Documentation
What problem does it solve?
It helps you determine whether M365/Entra credentials are valid and whether Conditional Access blocks usable authentication paths, so you can produce defensible findings instead of guesswork.
Core Features & Use Cases
- User/tenant discovery and recon for Entra attack surfaces: enumerate tenant context using owned domains and identify federation posture, SharePoint/OneDrive provisioning, and service-specific signals.
- Credential validation with AADSTS evidence: interpret Entra response codes to confirm password correctness even when CA blocks token issuance, including Smart Lockout-safe pacing and lockout differential detection for active external spraying.
- Conditional Access bypass-path assessment (where applicable): explore ROPC plus SAML SSO browser flows to capture definitive CA-block evidence and document CA policy identifiers as defender breadcrumbs.
Quick Start
Use the skill to run a single-attempt-per-user M365 credential validation plan against a target tenant, then corroborate any CA-block outcomes with an interactive SAML SSO flow.
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: m365-entra-attack Download link: https://github.com/Carlos-Reyes-UTP/Desarrollo-de-Sistema-de-Ventas-Empresas-de-Moda/archive/main.zip#m365-entra-attack Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.