#exchange #windows #outlook
[ Attacking MS Exchange Web Interfaces ]
https://swarm.ptsecurity.com/attacking-ms-exchange-web-interfaces/
[ Attacking MS Exchange Web Interfaces ]
https://swarm.ptsecurity.com/attacking-ms-exchange-web-interfaces/
PT SWARM
Attacking MS Exchange Web Interfaces
Describing all the techniques for attacking MS Exchange in Q2 2020 and introducing a new one: the LDAP via Exchange attack
#outlook #persistence
article:
https://github.com/vivami/OutlookParasite
article:
https://vanmieghem.io/stealth-outlook-persistence/https://github.com/vivami/OutlookParasite
GitHub
GitHub - vivami/OutlookParasite: Outlook persistence using VSTO add-ins
Outlook persistence using VSTO add-ins. Contribute to vivami/OutlookParasite development by creating an account on GitHub.
#outlook #com
project that interacts with Outlook's COM object in order to perform a number of operations useful in red team engagements.
https://github.com/eksperience/KnockOutlook
project that interacts with Outlook's COM object in order to perform a number of operations useful in red team engagements.
https://github.com/eksperience/KnockOutlook
GitHub
GitHub - eksperience/KnockOutlook: A little tool to play with Outlook
A little tool to play with Outlook. Contribute to eksperience/KnockOutlook development by creating an account on GitHub.
#exchange #outlook #owa #version
Хорошая дока по верcиям Exchange (OWA) и идентификации применимых к ней уязвимостей. Почему бы майкрософту не сделать что-тоудобное подобное не понятно.
https://exchangeserverversions.blogspot.com/
Хорошая дока по верcиям Exchange (OWA) и идентификации применимых к ней уязвимостей. Почему бы майкрософту не сделать что-то
https://exchangeserverversions.blogspot.com/
#cve #outlook
Exploiting CVE-2023-23397: Microsoft Outlook Elevation of Privilege Vulnerability
Thanks to: @zimnyaatishina
UPD (poc):
- https://github.com/api0cradle/CVE-2023-23397-POC-Powershell
- https://github.com/sqrtZeroKnowledge/CVE-2023-23397_EXPLOIT_0DAY
https://www.mdsec.co.uk/2023/03/exploiting-cve-2023-23397-microsoft-outlook-elevation-of-privilege-vulnerability/
Exploiting CVE-2023-23397: Microsoft Outlook Elevation of Privilege Vulnerability
Thanks to: @zimnyaatishina
UPD (poc):
- https://github.com/api0cradle/CVE-2023-23397-POC-Powershell
- https://github.com/sqrtZeroKnowledge/CVE-2023-23397_EXPLOIT_0DAY
https://www.mdsec.co.uk/2023/03/exploiting-cve-2023-23397-microsoft-outlook-elevation-of-privilege-vulnerability/
#cve #outlook
Microsoft Outlook Information Disclosure Vulnerability (leak password hash / CVE-2023-35636)
https://github.com/duy-31/CVE-2023-35636
Microsoft Outlook Information Disclosure Vulnerability (leak password hash / CVE-2023-35636)
https://github.com/duy-31/CVE-2023-35636
#outlook #rce
Critical Microsoft Outlook Vulnerability Executes as Email is Opened
https://blog.morphisec.com/cve-2024-30103-microsoft-outlook-vulnerability
Critical Microsoft Outlook Vulnerability Executes as Email is Opened
https://blog.morphisec.com/cve-2024-30103-microsoft-outlook-vulnerability
#outlook #c2
[ Specula - Turning Outlook Into a C2 With One Registry Change ]
There exist a few singular Registry changes that any non-privileged user can make that transform the Outlook email client into a beaconing C2 agent. Given that outlook.exe is a trusted process, this allows an attacker persistent access to a network that we have found often goes unnoticed. This technique has been reported on before and despite that continues to be a weak point in many otherwise very well-guarded networks.
Blog (with detection and prevention guides): https://trustedsec.com/blog/specula-turning-outlook-into-a-c2-with-one-registry-change
Tool: https://github.com/trustedsec/specula
Wiki: https://github.com/trustedsec/specula/wiki
Written by Christopher Paschen and Oddvar Moe
As always great work by TrustedSec team! Webinar recording should be published soon and this post will be updated.
[ Specula - Turning Outlook Into a C2 With One Registry Change ]
There exist a few singular Registry changes that any non-privileged user can make that transform the Outlook email client into a beaconing C2 agent. Given that outlook.exe is a trusted process, this allows an attacker persistent access to a network that we have found often goes unnoticed. This technique has been reported on before and despite that continues to be a weak point in many otherwise very well-guarded networks.
Blog (with detection and prevention guides): https://trustedsec.com/blog/specula-turning-outlook-into-a-c2-with-one-registry-change
Tool: https://github.com/trustedsec/specula
Wiki: https://github.com/trustedsec/specula/wiki
Written by Christopher Paschen and Oddvar Moe
As always great work by TrustedSec team! Webinar recording should be published soon and this post will be updated.