From b9df1e41d6c218490dcf53a4bfaf1d4bb68c88df Mon Sep 17 00:00:00 2001
From: pe3zx <pe3zx@users.noreply.github.com>
Date: Fri, 1 Oct 2021 10:02:57 +0700
Subject: [PATCH] Add: treebuilder/aad-sso-enum-brute-spray to Credential
 Access section

---
 Offensive.md | 7 +++++--
 1 file changed, 5 insertions(+), 2 deletions(-)

diff --git a/Offensive.md b/Offensive.md
index 55d41fb..079a842 100644
--- a/Offensive.md
+++ b/Offensive.md
@@ -1745,13 +1745,16 @@ Some tools can be categorized in more than one category. But because the current
     </tr>
     <tr>
         <td><a href="https://github.com/SnaffCon/Snaffler">SnaffCon/Snaffler</a></td>
-        <td>Snaffler is a tool for pentesters to help find delicious candy needles (creds mostly, but it's flexible) in
-            a bunch of horrible boring haystacks (a massive Windows/AD environment).</td>
+        <td>Snaffler is a tool for pentesters to help find delicious candy needles (creds mostly, but it's flexible) in a bunch of horrible boring haystacks (a massive Windows/AD environment).</td>
     </tr>
     <tr>
         <td><a href="https://github.com/swisskyrepo/SharpLAPS">swisskyrepo/SharpLAPS</a></td>
         <td>Retrieve LAPS password from LDAP</td>
     </tr>
+    <tr>
+        <td><a href="https://github.com/treebuilder/aad-sso-enum-brute-spray">treebuilder/aad-sso-enum-brute-spray</a></td>
+        <td>POC of SecureWorks' recent Azure Active Directory password brute-forcing vuln</td>
+    </tr>
     <tr>
         <td><a href="https://github.com/uknowsec/SharpDecryptPwd">uknowsec/SharpDecryptPwd</a></td>
         <td>对密码已保存在 Windwos 系统上的部分程序进行解析,包括：Navicat,TeamViewer,FileZilla,WinSCP,Xmangager系列产品（Xshell,Xftp)。</td>