What's new
Carding Forum - Online Carding - Carders Forum - Hacking Forums

✨🔥 Welcome to SolFront.org 🔥✨

👋 Hello Guest! Welcome to SolFront, a growing online community featuring discussions, research, cybersecurity awareness, technology news, and educational content. Whether you're exploring a Carding Forum, learning about cybersecurity trends, or joining community discussions, there's always something new to discover.

🚀 Register your FREE account today! Unlock exclusive discussions, create your own topics, reply to threads, send private messages, and connect with members worldwide. Our community continues to grow with active discussions, industry insights, and member-driven content.

💬 Join Discussions • 📚 Learn & Explore • 🤝 Connect With Members • 🔒 Cybersecurity Awareness

🌟 Carding Forum • 🌟 Carders Forum • 🌟 Online Community • 🌟 Technology Discussions

🔥🔥 Become a Member Today & Experience the Full SolFront Community! 🔥🔥

O365-Attack-Toolkit - A Toolkit To Attack Office365

Anonymous

Anonymous

Moderator
Staff member
o365-attack-toolkit allows operators to perform an OAuth phishing attack and later on use the Microsoft Graph API to extract interesting information.
Some of the implemented features are :

  • Extraction of keyworded e-mails from Outlook.
  • Creation of Outlook Rules.
  • Extraction of files from OneDrive/Sharepoint.
  • Injection of macros on Word documents.
Architecture




o365-attack-toolkit_1_Architecture.png







The toolkit consists of several components
Phishing endpoint
The phishing endpoint is responsible for serving the HTML file that performs the OAuth token phishing.
Backend services
Afterward, the token will be used by the backend services to perform the defined attacks.
Management interface
The management interface can be utilized to inspect the extracted information from the Microsoft Graph API.
 
You must log in or register to reply here.
Back
Top