IF you get SCAMMED by someone please contact me for REFUND UIN:Verified1
Scammer ICQ Guy's be Careful now Russiancarders.ru All Team Scammer @RCGenesis 748292862 740630496

B̾l̾a̾c̾k̾-̾S̾t̾o̾n̾e̾

No.1 Verified Seller -B̾l̾a̾c̾k̾-̾S̾t̾o̾n̾e̾-
Verified Seller
Messages
1,823
Reaction score
153
Points
63
Level
0
Location
Russia
o365-attack-toolkit allows operators to perform an OAuth phishing attack and later on use the Microsoft Graph API to extract interesting information.
Some of the implemented features are :

  • Extraction of keyworded e-mails from Outlook.
  • Creation of Outlook Rules.
  • Extraction of files from OneDrive/Sharepoint.
  • Injection of macros on Word documents.
Architecture



o365-attack-toolkit_1_Architecture.png




The toolkit consists of several components
Phishing endpoint
The phishing endpoint is responsible for serving the HTML file that performs the OAuth token phishing.
Backend services
Afterward, the token will be used by the backend services to perform the defined attacks.
Management interface
The management interface can be utilized to inspect the extracted information from the Microsoft Graph API.
 
Top