-
Notifications
You must be signed in to change notification settings - Fork 23
Expand file tree
/
Copy pathasmRecon.ps1
More file actions
83 lines (73 loc) · 2.42 KB
/
asmRecon.ps1
File metadata and controls
83 lines (73 loc) · 2.42 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
# Windows Azure ASM Subscription Reconnaissance Script
# (C) 2018 Matt Burrough
# v1.0
# Requires the Azure PowerShell cmdlets be installed.
# See https://github.com/Azure/azure-powershell/ for details.
# Before running the script:
# * Run: Import-Module Azure
# * Authenticate to Azure in PowerShell
# * You may also need to run: Set-ExecutionPolicy -Scope Process Unrestricted
# Show subscription metadata
Write-Output (" Subscription ","==============")
Write-Output ("Get-AzureSubscription -Current")
Get-AzureSubscription -Current
# Display Websites
Write-Output ("", " Websites ","==========")
$sites = Get-AzureWebsite
Write-Output ("Get-AzureWebsite")
$sites
foreach ($site in $sites)
{
Write-Output ("Get-AzureWebsite -Name " + $site.Name)
Get-AzureWebsite -Name $site.Name
}
# Check out Virtual Machines
Write-Output ("", " VMs ","=====")
$vms = Get-AzureVM
Write-Output ("Get-AzureVM")
$vms
foreach ($vm in $vms)
{
Write-Output ("Get-AzureVM -ServiceName " + $vm.ServiceName)
Get-AzureVM -ServiceName $vm.ServiceName
}
# Enumerate Azure Storage
Write-Output ("", " Storage ","=========")
$SAs = Get-AzureStorageAccount
Write-Output ("Get-AzureStorageAccount")
$SAs
foreach ($sa in $SAs)
{
Write-Output ("Get-AzureStorageKey -StorageAccountName" + $sa.StorageAccountName)
Get-AzureStorageKey -StorageAccountName $sa.StorageAccountName
}
# Get Networking settings
Write-Output ("", " Networking ","============")
Write-Output ("Get-AzureReservedIP")
Get-AzureReservedIP
Write-Output ("", " Endpoints ","===========")
# Show Network Endpoints per VM
foreach ($vm in $vms)
{
Write-Output ("Get-AzureEndpoint " + $vm.ServiceName)
Get-AzureEndpoint -VM $vm
}
# Dump NSGs
Write-Output ("", " NSGs ","======")
foreach ($vm in $vms)
{
Write-Output ("NSG for " + $vm.ServiceName + ":")
Get-AzureNetworkSecurityGroupAssociation -VM $vm -ServiceName $vm.ServiceName
}
# Display SQL Info
Write-Output ("", " SQL ","=====")
$sqlServers = Get-AzureSqlDatabaseServer
Write-Output ("Get-AzureSqlDatabaseServer")
$sqlServers
foreach ($ss in $sqlServers)
{
Write-Output ("Get-AzureSqlDatabase -ServerName " + $ss.ServerName)
Get-AzureSqlDatabase -ServerName $ss.ServerName
Write-Output ("Get-AzureSqlDatabaseServerFirewallRule -ServerName " + $ss.ServerName)
Get-AzureSqlDatabaseServerFirewallRule -ServerName $ss.ServerName
}