BlueMap

Firstly download AzureCli and Sign in:

Invoke-WebRequest -Uri https://aka.ms/installazurecliwindows -OutFile .\AzureCLI.msi; Start-Process msiexec.exe -Wait -ArgumentList '/I AzureCLI.msi /quiet'; rm .\AzureCLI.msi
python.exe .\bluemap.py
use Token/GenToken

Commands:

TYPE	Level	EXPLOIT	MODE
Information Gathering	Reader,Global Reader	Reader/ListAllUsers	Non-Interactive
Information Gathering	Reader,Global Reader	Reader/ExposedAppServiceApps	Non-Interactive
Information Gathering	Reader,Global Reader	Reader/ListAllAzureContainerRegistry	Non-Interactive
Information Gathering	Reader,Global Reader	Reader/ListAutomationAccounts	Non-Interactive
Discovery	Reader,Global Reader	Reader/DumpAllRunBooks	Interactive
Information Gathering	Reader,Global Reader	Reader/ListAllRunBooks	Non-Interactive
Information Gathering	Reader,Global Reader	Reader/ListAllVaults	Non-Interactive
Information Gathering	Reader,Global Reader	Reader/ListAppServiceSites	Non-Interactive
Information Gathering	Reader,Global Reader	Reader/ListVirtualMachines	Non-Interactive
Information Gathering	Reader,Global Reader	Reader/ListAllStorageAccounts	Non-Interactive
Discovery	Reader,Global Reader	Reader/ARMTemplatesDisclosure	Non-Interactive
Information Gathering	Reader,Global Reader	Reader/ListServicePrincipal	Non-Interactive
Discovery	Reader,Global Reader	Reader/abuseServicePrincipals	Interactive
Information Gathering	Contributor	Contributor/ListACRCredentials	Non-Interactive
Discovery	Contributor	Contributor/ReadVaultSecret	Interactive
RCE	Contributor	Contributor/RunCommandVM	Interactive
Lateral Movement	Contributor	Contributor/VMExtensionResetPwd	Interactive
RCE	Contributor	Contributor/VMExtensionExecution	Interactive
Information Gathering	Contributor	Contributor/VMDiskExport	Interactive
Discovery	Contributor	Contributor/DumpWebAppPublishProfile	Non-Interactive
Lateral Movement	GlobalAdministrator	GlobalAdministrator/elevateAccess	Interactive