From 71793800dd64b4f421a064009851781a1e20d348 Mon Sep 17 00:00:00 2001
From: pe3zx <pe3zx@users.noreply.github.com>
Date: Fri, 5 Feb 2021 14:25:06 +0700
Subject: [PATCH] Add dafthack/MSOLSpray to Credential Access section

---
 Offensive.md | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/Offensive.md b/Offensive.md
index 0a50df0..5eaea37 100644
--- a/Offensive.md
+++ b/Offensive.md
@@ -738,6 +738,10 @@ Some tools can be categorized in more than one category. But because the current
         <td><a href="https://github.com/byt3bl33d3r/SprayingToolkit">byt3bl33d3r/SprayingToolkit</a></td>
         <td>Scripts to make password spraying attacks against Lync/S4B, OWA & O365 a lot quicker, less painful and more efficient</td>
     </tr>
+    <tr>
+        <td><a href="https://github.com/dafthack/MSOLSpray">dafthack/MSOLSpray</a></td>
+        <td>A password spraying tool for Microsoft Online accounts (Azure/O365). The script logs if a user cred is valid, if MFA is enabled on the account, if a tenant doesn't exist, if a user doesn't exist, if the account is locked, or if the account is disabled.</td>
+    </tr>
     <tr>
         <td><a href="https://github.com/DanMcInerney/icebreaker">DanMcInerney/icebreaker</a></td>
         <td>Gets plaintext Active Directory credentials if you're on the internal network but outside the AD environment