Top Tweets for #EvilMist

3 months ago

Master cloud security with EvilMist. Audit Entra ID, simulate attack paths, and identify MFA gaps with this powerful red teaming and penetration testing suite. #EvilMist #CloudSecurity #RedTeaming #Azure #EntraID #Pentesting #MFA #Infosec #EthicalHacking https://t.co/r2whmFLTmA

the_yellow_fall's tweet photo. Master cloud security with EvilMist. Audit Entra ID, simulate attack paths, and identify MFA gaps with this powerful red teaming and penetration testing suite.

#EvilMist #CloudSecurity #RedTeaming #Azure #EntraID #Pentesting #MFA #Infosec #EthicalHacking
https://t.co/r2whmFLTmA https://t.co/dXkAqWnryO

329

Logisek

@logisekict

5 months ago

#EvilMist Invoke-EntraEnum - Unauthenticated Azure/Entra ID Enumeration This release adds 12 new enumeration methods for Azure and Entra ID reconnaissance - all without requiring authentication. #Highlights - OneDrive User Enum - Federation Metadata - Extract X.509 signing certs, ADFS detection, token endpoints - Seamless SSO Detection - Find Autologon endpoints for undetectable enum - Azure Subdomain Discovery - Auto-discover Blob Storage, Key Vaults, SQL, App Services, and 20+ Azure resources - SharePoint/Teams Discovery - Enumerate tenant sites and public shares - EWS & Autodiscover Probes - V1 + V2 endpoint enumeration - Mail Security Analysis - Full DMARC, DKIM, MTA-STS, BIMI, TLS-RPT assessment - OAuth App Probe - Discover accessible apps via error analysis - Additional methods include: EWS endpoint probing, Lync discovery, and Tenant ID reversal. All passive and unauthenticated. PowerShell 7+. Part of the EvilMist toolkit: https://t.co/F7itV7yg0M #cybersecurity #infosec #redteam #pentesting #azure #cloudsecurity #EntraID #AzureAD #offensive #Logisek

284

Logisek

@logisekict

5 months ago

Massive #EvilMist Update: 13 New Azure & M365 Security Modules :) What's #New: #Microsoft #365 Security Coverage: - Teams Check - Federation abuse, guest persistence, shadow IT detection, anonymous meeting risks - Exchange Check - BEC attack vectors, inbox rule analysis, external forwarding, mailbox delegation audits - SharePoint Check - External sharing analysis, anonymous links, permission sprawl #Azure #Infrastructure Security: - Key Vault Check - Secret exposure risks, network security, purge protection, access policy analysis - Managed Identity Check - Privilege escalation paths, cross-subscription access, over-permissioned identities - Storage Account Check - Public access detection, network security, encryption status - Azure Attack Path Check - Cross-service attack paths (VM to Key Vault, cross-subscription pivots) #Identity & #Governance: - PIM Check - Just-In-Time access gaps, approval workflow analysis, permanent assignment detection - Sign-In Risk Check - Identity Protection signal analysis, risky user enumeration, attack pattern detection - OAuth Consent Check - Consent grant analysis, application permission review - Network Security Check - Azure network configuration assessment #Compliance & #Reporting: - Compliance Check - Multi-framework assessment (CIS, NIST 800-53, SOC 2, ISO 27001, GDPR) - Report Generator - Consolidated HTML executive dashboard with security scoring and trend analysis Check it out: https://t.co/F7itV7yg0M #CloudSecurity #Azure #Microsoft365 #RedTeam #BlueTeam #Pentesting #CyberSecurity #EntraID #AzureAD #InfoSec #Offsec #Logisek

202

Logisek

@logisekict

6 months ago

EvilMist update! New scripts have been added and the project now features a more modular, flexible structure for easier use. Check it out 👉 https://t.co/tnhMtHEH7L #EvilMist #RedTeam #OffensiveSecurity #Pentesting #OpenSource #Infosec #Offsec #PenTest #Cloud #Azure #Logisek

332

Logisek

@logisekict

7 months ago

#EvilMist: An Open-Source Toolkit for Cloud Penetration Testing and Red Teaming Cloud environments evolve fast, and so do the risks that come with identity-driven access, sprawling services, and complex permission models. EvilMist was built to make this space easier to explore, test, and secure. --- 🌫️ Introducing EvilMist EvilMist is an open-source collection of scripts and utilities designed to support cloud penetration testing and red-team operations. It focuses on one core goal: giving security teams a structured, repeatable way to uncover misconfigurations, map privilege-escalation paths, and simulate attacker behavior across modern cloud stacks. Instead of stitching together dozens of ad-hoc scripts or running cloud checks manually, EvilMist offers a unified approach that streamlines early recon through deeper attack-path modeling. --- 🧩 What EvilMist Brings - Automated discovery of weak or overly permissive configurations. - Enumeration routines built for cloud identity and access models. - Privilege-escalation path mapping to understand how attackers might pivot. - Simulated attack chains to validate real-world defensive coverage. - Modular design so teams can extend or integrate it with their internal tooling. Whether you’re performing an internal assessment, building your red-team playbooks, or validating cloud-hardening efforts, EvilMist is built to fit naturally into the workflow, no unnecessary complexity, no vendor lock-in. Just practical, open-source capability. --- Why It Matters #CloudSecurity isn’t just about knowing what’s deployed, it’s about understanding how identities, resources, and trust relationships interact. Many breaches still originate from simple misconfigurations or privilege paths no one knew existed. EvilMist helps teams find those blind spots early. By providing reproducible testing patterns, it empowers both #offensive and #defensive practitioners to validate assumptions, verify least-privilege models, and harden cloud environments with confidence. --- The project is open-source and available on GitHub: https://t.co/F7itV7yg0M - https://t.co/thWuQ5nVnK #CyberSecurity #RedTeam #PenTest #InfoSec #OffSec #CloudSecurity #OpenSource #CloudPentest #OffensiveSecurity #Logisek

logisekict's tweet photo. #EvilMist: An Open-Source Toolkit for Cloud Penetration Testing and Red Teaming

Cloud environments evolve fast, and so do the risks that come with identity-driven access, sprawling services, and complex permission models. EvilMist was built to make this space easier to explore, test, and secure.

---

🌫️ Introducing EvilMist

EvilMist is an open-source collection of scripts and utilities designed to support cloud penetration testing and red-team operations. It focuses on one core goal: giving security teams a structured, repeatable way to uncover misconfigurations, map privilege-escalation paths, and simulate attacker behavior across modern cloud stacks.

Instead of stitching together dozens of ad-hoc scripts or running cloud checks manually, EvilMist offers a unified approach that streamlines early recon through deeper attack-path modeling.

---

🧩 What EvilMist Brings

- Automated discovery of weak or overly permissive configurations.
- Enumeration routines built for cloud identity and access models.
- Privilege-escalation path mapping to understand how attackers might pivot.
- Simulated attack chains to validate real-world defensive coverage.
- Modular design so teams can extend or integrate it with their internal tooling.

Whether you’re performing an internal assessment, building your red-team playbooks, or validating cloud-hardening efforts, EvilMist is built to fit naturally into the workflow, no unnecessary complexity, no vendor lock-in. Just practical, open-source capability.

---

Why It Matters

#CloudSecurity isn’t just about knowing what’s deployed, it’s about understanding how identities, resources, and trust relationships interact. Many breaches still originate from simple misconfigurations or privilege paths no one knew existed.

EvilMist helps teams find those blind spots early. By providing reproducible testing patterns, it empowers both #offensive and #defensive practitioners to validate assumptions, verify least-privilege models, and harden cloud environments with confidence.

---

The project is open-source and available on GitHub: https://t.co/F7itV7yg0M

- https://t.co/thWuQ5nVnK

#CyberSecurity #RedTeam #PenTest #InfoSec #OffSec #CloudSecurity #OpenSource #CloudPentest #OffensiveSecurity #Logisek

181

🔲BIZMANIUM🔳 @ElementaryGirl1

over 3 years ago

🔴😈Nightmare Party😈🔴 #HopscotchSongs #Evil #Planets #Beatcats #Parody #BloodyMoon #Bloody #Demons #BlackWaterMist #Horror #Vampires #Darker #EvilMist #Devils #Fanart #NyaightmareParty #Poster #闇堕ち

ElementaryGirl1's tweet photo. 🔴😈Nightmare Party😈🔴

#HopscotchSongs #Evil #Planets #Beatcats #Parody #BloodyMoon #Bloody #Demons #BlackWaterMist #Horror #Vampires #Darker #EvilMist #Devils #Fanart
#NyaightmareParty #Poster #闇堕ち https://t.co/BPsNOGziwd

973

Top Tweets for #EvilMist

Last Seen Hashtags on Sotwe

Trends for you

Most Popular Users