M365Pwned – Red Team GUI Toolkit for Microsoft 365 Exploitation via Graph API

cybersecuritynews.com

M365Pwned – Red Team GUI Toolkit for Microsoft 365 Exploitation via Graph API

cybersecuritynews.com

Resident PulserB to

Pulse of TruthEnglish · 5 hours ago

M365Pwned - Red Team GUI Toolkit for Microsoft 365 Exploitation via Graph API

cybersecuritynews.com

A red teamer operating under the handle OtterHacker has publicly released M365Pwned, a pair of WinForms GUI tools designed to enumerate, search, and exfiltrate data from Microsoft 365 environments using application-level OAuth tokens without requiring any user interaction. Built entirely in PowerShell 5.1 and leveraging the Microsoft Graph API, the toolkit presents a significant post-compromise […] The post M365Pwned – Red Team GUI Toolkit for Microsoft 365 Exploitation via Graph API appeared first on Cyber Security News.

You must log in or # to comment.

Chat

Pulse of Truth

pulse_of_truth

Create a post

You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !pulse_of_truth@infosec.pub

Cyber Security news and links to cyber security stories that could make you go hmmm. The content is exactly as it is consumed through RSS feeds and wont be edited (except for the occasional encoding errors).

This community is automagically fed by an instance of Dittybopper.

Visibility: Public

This community can be federated to other instances and be posted/commented in by their users.

56 users / day
304 users / week
1.04K users / month
2.89K users / 6 months
191 local subscribers
2.33K subscribers
4.93K Posts
3.51K Comments
Modlog

mods:
krogoth