Go365
Office 365 Exploiter
A tool designed to exploit vulnerabilities in Office 365 authentication systems
An Office365 User Attack Tool
621 stars
23 watching
101 forks
Language: Go
last commit: 8 months ago Related projects:
| Repository | Description | Stars |
|---|---|---|
| optiv/microsoft365_devicephish | A tool designed to demonstrate a vulnerability in Microsoft's OAuth Authorization Flow for phishing attacks | 92 |
 gremwell/o365enum | A tool for enumerating valid usernames from Office 365 using various authentication methods. | 243 |
 bromiley/olaf | An O365 investigation framework providing tools and analysis techniques for analyzing Office 365 logs to aid in security investigations. | 81 |
 rfunix/pompem | Automates searches for exploits and vulnerabilities across multiple databases | 984 |
 d35m0nd142/lfisuite | Automates Local File Inclusion vulnerability scanning and exploitation using various attack methods. | 1,699 |
 mdsecactivebreach/o365-attack-toolkit | A toolkit for simulating phishing attacks on Office 365 accounts | 1,037 |
 brompwnie/botb | A tool designed to analyze and exploit vulnerabilities in containers for pentesters and engineers | 638 |
 buffalowill/oxml_xxe | A tool for exploiting XXE vulnerabilities in various file formats | 1,038 |
 pwc-ir/office-365-extractor | A tool designed to extract and manage audit logs from Office 365 environments. | 257 |
 enjoiz/xxeinjector | Automates exploitation of XXE vulnerability using various methods to retrieve files and data from vulnerable applications. | 1,542 |
 orange-cyberdefense/fenrir-ocd | A tool designed to bypass wired 802.1x protection and grant access to target networks for penetration tests and offensive engagements. | 232 |
 atorrescogollo/offensive-tor-toolkit | A toolkit for utilizing Tor network for various exploitation and post-exploitation tasks. | 58 |
 alteredsecurity/365-stealer | A phishing simulation tool that automates illicit consent grant attacks on Azure AD using Python3 and PHP. | 452 |
 arimogi/google-dorks | A collection of tools and techniques for exploiting vulnerabilities in Google services | 45 |
 lmgsec/o365creeper | Script to validate Office 365 email addresses without requiring login credentials | 324 |