O365 Attack Toolkit – A Toolkit to Attack Office365
o365-attack-toolkit allows operators to perform an OAuth phishing attack and later on use the Microsoft Graph API to extract interesting information. Some of the implemented features are : Extraction of keyworded e-mails from Outlook. Creation of Outlook Rules. Extraction of files from OneDrive/Sharepoint. Injection of macros on Word documents. Architecture The toolkit consists of several […]