GraphRunner
GraphRunner copied to clipboard
dafthack
A Post-exploitation Toolset for Interacting with the Microsoft Graph API
Hi Team, May I know if this script can be executed using the Global Reader role or must be a Global Administrator? Thank you,
The code previously returned all groups, not just security groups. This PR fixes #22
Hey! Is we use any other ClientID "d3590ed6-52b3-4102-aeff-aad2292ab01c", we can use to perform all the actions? In my case clientid d3590ed6-52b3-4102-aeff-aad2292ab01c (Microsoft office) is blocked by admin. I tryed powershell...
According to the name, `Get-SecurityGroups` should only return security groups. However, it **currently returns all Entra ID groups**. This is because the group filter is incorrectly applied in [the code](https://github.com/dafthack/GraphRunner/blob/7fd1cf20da7ac6160f1707aeed15035def82bdff/GraphRunner.ps1#L2408):...
I have created a Get-DirectoryRoles cmdlet for the Recon module to retrieve all the entra ID (directory) roles and their associated members, a switch exist to request only builtin roles...
Fixed the issue in Invoke-SearchMailbox when trying to download files
After Invoke-SearchMailbox retrieved the emails, when you want to download the content the download fail. I have found the issue and fixed it. It was because the ID used in...
Hey! I'm working on adding a module to GraphRunner for adding an email inbox rule. This is a common tactic used during business email compromise. How do you specify the...
Feature Request: The ability to run Get-UpdatebleGroups on only specific groups that have say a key word "test" or "admin", etc. May not be a big deal as most people...
Excellent work guys. Hats off to everyone who are involved with this project! Please check the screenshot and let me know if you I missed anything: 
