TenantHunter is a small script to resolve domains to Azure AD tenants (and OAuth login portals) It is incredibly useful for pentesting companies or governments powered by the Azure ecosystem
Features:
- Resolves domain to tenant ID
- Resolves tenant ID to OAuth login portal
- More upcoming features but for now that's it
Python 3
requests
argparse
sys
termcolor
re
pyfiglet
You can install all of the dependencies by cloning the repository and running: pip install -r requirements.txt
Run normally: python3 tenanthunter.py -t example.com
Run in minimised mode (excludes full response): python3 tenanthunter.py -mt example.com
-tor--domain| Specifies the domain to find the tenant ID of-mor--minimal| Tells the script to run in minimal mode (excludes full response)
- Subdomain enumeration (Use crt.sh to find subdomains for the TLD and enumerate all of those to tenant IDs too)
- Save to file (Saves the results to a file)
This is to be used for educational purposes only blah blah (insert boilerplate shite here)
This code was proudly written and published under the +NIGGER license, a modified version of Daddy Stallmans GPL v3 license
All work was done by me, Lodzie Kotekya. You can find me on Telegram