MAAD AF Versions Save

MAAD Attack Framework - An attack tool for simple, fast & effective security testing of M365 & Entra ID (Azure AD).

v3.0

4 months ago

MAAD-AF v3 Fixes, Enhancements & New Features

  1. Improved tool workflow & menu that enables much faster and easier use of MAAD-AF and security testing.
  2. Improved and standardized output display that enhances readability. Large outputs are now displayed in a separate view that can be left active for future reference and do not clutter the main MAAD-AF session.
  3. Stability improvements
  4. Most in-module option selection is standardized to numbered selection. This makes it easier to select options and removes any need to copy/ paste options from list.
  5. New techniques across Recon, Compliance & several other modules.
  6. Improved & standardized tool layout. Input prompts / process info / tool instructions / error are color coded for quick interpretation of data.
  7. Many modules are updated to be more verbose in terms of informing executed actions.
  8. MAAD Credential Store (MCS) - New function that manages credentials across MAAD-AF. Automatically stores credentials when new credentials are harvested via actions like password reset or backdoor creation. Users can also add credentials manually to MCS. MCS also prompts for use of stored credentials across relevant modules for quick credential use.
  9. MAAD Commands - Introduction of quick actions that can be triggered by special keywords in MAAD Attack Arsenal menu. This allows users to quickly execute frequently used options without navigating through menus such as checking current access info, establishing new access, checking credential store, launch TOR, etc.
  10. Improved usability -
  • Set MAAD-AF tool defaults
  • Bypass Dependency check for faster launch
  • Set modules & tool configurations interactively directly within MAAD-AF
  • Established connections can persist across MAAD-AF termination (until PS session is terminated) so users can seamlessly use access established via MAAD-AF outside of the tool to execute other actions. MAAD-AF can't do everything we know :)
  1. Better logging - Still needs lots of improvement :)
  2. Improved overall code and modularity. Addition of many standard I/O functions for easier code contribution. Long way to go but its getting there 👍

v2.1

4 months ago

This release includes the following updates -

  • Added MAAD-AF Credential Store - Stores & manages credentials for use in MAAD-AF
  • Added MAAD-AF Commands - Shortcuts to execute frequently used functions
  • New & improved tool workflow
  • Includes new attack techniques
  • Stability improvement & bug fixes

v1.1

8 months ago

MAAD-AF v1.1

Overview

Stable version of first iteration of MAAD-AF.

New Contributors

Full Changelog: https://github.com/vectra-ai-research/MAAD-AF/commits/v1.1